Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/911df1-1aca-40de-a248-8d51e765daec/1/B6Bo4v85jPQVNhub5aH2pUL2W4o.roa
File: B6Bo4v85jPQVNhub5aH2pUL2W4o.roa (raw, json)
Hash identifier: g19+udmlfZgg0v6w7P7m9ifs+jXIw2fMOwWn5JigoAU=
Subject key identifier: 07:A0:68:E2:FF:39:8C:F4:15:36:1B:9B:E5:A1:F6:A5:42:F6:5B:8A
Certificate issuer: /CN=be3e6903917c532a605ffb25e65f91158be6c0e6
Certificate serial: 06633CBF
Authority key identifier: BE:3E:69:03:91:7C:53:2A:60:5F:FB:25:E6:5F:91:15:8B:E6:C0:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vj5pA5F8UypgX_sl5l-RFYvmwOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/911df1-1aca-40de-a248-8d51e765daec/1/B6Bo4v85jPQVNhub5aH2pUL2W4o.roa
Signing time: Sat 01 Jan 2022 05:00:48 +0000
ROA not before: Sat 01 Jan 2022 05:00:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8896
IP address blocks: 45.138.236.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107166911 (0x6633cbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be3e6903917c532a605ffb25e65f91158be6c0e6
Validity
Not Before: Jan 1 05:00:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=07a068e2ff398cf415361b9be5a1f6a542f65b8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:94:60:94:0b:4c:80:94:52:22:a2:69:64:8c:
d4:35:ac:66:23:20:5d:78:c4:c6:5b:5c:9f:f3:87:
4e:3e:7b:d4:57:b5:22:c8:03:94:ec:9b:79:39:78:
79:d3:60:d9:35:8a:e0:cc:f4:62:86:54:58:e1:46:
d1:33:ba:cf:c1:f1:0e:09:41:34:1f:b4:80:4c:f7:
e4:46:ac:90:e2:8a:91:50:38:83:4d:a8:2e:79:3e:
7a:40:a4:d2:06:27:7b:98:14:44:7b:91:af:1c:c6:
a7:44:79:a8:dd:64:80:a7:e1:64:d7:86:26:1c:b1:
a1:bb:b4:fd:ad:61:f9:e1:43:e7:8a:4e:81:e2:ea:
df:1e:0a:5b:98:f2:50:b8:eb:a1:b3:ac:92:24:6f:
ec:31:a3:a6:62:42:6f:f8:04:4b:d7:4d:c3:e5:ed:
03:29:47:8d:0d:6c:b2:27:0c:6d:6b:0c:f2:77:d5:
16:de:cf:50:79:e7:2b:3e:c3:91:48:ce:66:c7:f1:
96:1c:c4:02:a2:0e:f3:3c:85:fc:6f:dc:74:cd:14:
65:fb:ea:64:75:b6:3e:bb:e2:94:bc:17:3b:85:6f:
68:04:b3:37:50:bf:68:02:42:45:4e:20:81:f4:7f:
98:a0:2b:86:79:1e:7c:11:5f:61:a3:51:5d:93:45:
d6:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:A0:68:E2:FF:39:8C:F4:15:36:1B:9B:E5:A1:F6:A5:42:F6:5B:8A
X509v3 Authority Key Identifier:
keyid:BE:3E:69:03:91:7C:53:2A:60:5F:FB:25:E6:5F:91:15:8B:E6:C0:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vj5pA5F8UypgX_sl5l-RFYvmwOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/911df1-1aca-40de-a248-8d51e765daec/1/B6Bo4v85jPQVNhub5aH2pUL2W4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/911df1-1aca-40de-a248-8d51e765daec/1/vj5pA5F8UypgX_sl5l-RFYvmwOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.236.0/22
Signature Algorithm: sha256WithRSAEncryption
45:e0:52:11:98:1a:e0:d7:7e:8a:33:e6:2c:ff:4d:6d:3c:17:
9d:da:72:2c:53:7f:bc:74:9f:ac:de:bd:12:3c:48:c5:73:39:
b7:da:93:e1:0c:ee:8d:f4:54:7f:f3:14:0a:75:6c:fe:82:e1:
30:df:5a:51:17:3b:80:3a:ab:3f:f2:1e:71:c1:9e:7e:c0:40:
b9:bd:45:2f:cb:79:87:be:74:12:f4:2c:37:23:40:52:d4:cf:
fc:fc:ae:70:a5:3d:a8:e3:99:4f:e2:b3:37:9f:5d:8e:bc:35:
b5:2c:2c:c9:e0:81:f4:81:cb:5a:bb:d4:8a:9a:62:e6:81:12:
69:51:2a:6a:c6:4b:db:0c:9a:2d:cd:ca:91:41:1e:c8:22:62:
00:bc:a5:66:31:ba:cd:2a:fa:96:18:e8:16:44:2f:5b:59:95:
06:e7:65:db:9c:ea:17:65:71:ca:11:30:a2:5e:ea:2c:a8:14:
00:a2:23:3f:65:25:7e:fa:c4:d2:c3:66:25:33:b4:fb:33:cd:
bf:03:c5:d4:64:01:40:8c:15:ad:1b:44:48:f7:4c:82:af:05:
bc:d9:73:01:43:ff:05:1d:c8:42:7c:4b:3e:76:de:83:81:be:
2f:cc:49:16:ea:47:fe:20:00:a9:d4:8c:f8:a6:48:ef:d7:e8:
6c:fb:68:6c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBmM8vzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ZTNlNjkwMzkxN2M1MzJhNjA1ZmZiMjVlNjVmOTExNThiZTZjMGU2MB4XDTIyMDEw
MTA1MDA0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDdhMDY4ZTJmZjM5
OGNmNDE1MzYxYjliZTVhMWY2YTU0MmY2NWI4YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMyUYJQLTICUUiKiaWSM1DWsZiMgXXjExltcn/OHTj571Fe1
IsgDlOybeTl4edNg2TWK4Mz0YoZUWOFG0TO6z8HxDglBNB+0gEz35EaskOKKkVA4
g02oLnk+ekCk0gYne5gURHuRrxzGp0R5qN1kgKfhZNeGJhyxobu0/a1h+eFD54pO
geLq3x4KW5jyULjrobOskiRv7DGjpmJCb/gES9dNw+XtAylHjQ1ssicMbWsM8nfV
Ft7PUHnnKz7DkUjOZsfxlhzEAqIO8zyF/G/cdM0UZfvqZHW2PrvilLwXO4VvaASz
N1C/aAJCRU4ggfR/mKArhnkefBFfYaNRXZNF1lcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQHoGji/zmM9BU2G5vlofalQvZbijAfBgNVHSMEGDAWgBS+PmkDkXxTKmBf
+yXmX5EVi+bA5jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ZqNXBBNUY4VXlwZ1hfc2w1bC1SRll2bXdPWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzYvOTExZGYxLTFhY2EtNDBkZS1hMjQ4LThkNTFlNzY1ZGFlYy8x
L0I2Qm80djg1alBRVk5odWI1YUgycFVMMlc0by5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzYv
OTExZGYxLTFhY2EtNDBkZS1hMjQ4LThkNTFlNzY1ZGFlYy8xL3ZqNXBBNUY4VXlw
Z1hfc2w1bC1SRll2bXdPWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi2K7DANBgkqhkiG9w0BAQsFAAOC
AQEAReBSEZga4Nd+ijPmLP9NbTwXndpyLFN/vHSfrN69EjxIxXM5t9qT4QzujfRU
f/MUCnVs/oLhMN9aURc7gDqrP/IeccGefsBAub1FL8t5h750EvQsNyNAUtTP/Pyu
cKU9qOOZT+KzN59djrw1tSwsyeCB9IHLWrvUippi5oESaVEqasZL2wyaLc3KkUEe
yCJiALylZjG6zSr6lhjoFkQvW1mVBudl25zqF2VxyhEwol7qLKgUAKIjP2UlfvrE
0sNmJTO0+zPNvwPF1GQBQIwVrRtESPdMgq8FvNlzAUP/BR3IQnxLPnbeg4G+L8xJ
FupH/iAAqdSM+KZI79fobPtobA==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:56 2023 by rpki-client on console.sobornost.net