Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/0a3a0f-60f8-4a1c-bba0-7b880c063367/1/Phsflj3B75jbiuysMTDWiQw7LdE.roa
File: Phsflj3B75jbiuysMTDWiQw7LdE.roa (raw, json)
Hash identifier: tgrSGM4+a9vDuWZeTx5XySWwIEa9GYT5EsuOvGrLqlg=
Subject key identifier: 3E:1B:1F:96:3D:C1:EF:98:DB:8A:EC:AC:31:30:D6:89:0C:3B:2D:D1
Certificate issuer: /CN=3406d2c439ccbcb78a82d5cb2b4c3ff6e9934b96
Certificate serial: 06A95546
Authority key identifier: 34:06:D2:C4:39:CC:BC:B7:8A:82:D5:CB:2B:4C:3F:F6:E9:93:4B:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NAbSxDnMvLeKgtXLK0w_9umTS5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/0a3a0f-60f8-4a1c-bba0-7b880c063367/1/Phsflj3B75jbiuysMTDWiQw7LdE.roa
Signing time: Sat 01 Jan 2022 00:56:09 +0000
ROA not before: Sat 01 Jan 2022 00:56:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8100
IP address blocks: 45.87.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111760710 (0x6a95546)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3406d2c439ccbcb78a82d5cb2b4c3ff6e9934b96
Validity
Not Before: Jan 1 00:56:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e1b1f963dc1ef98db8aecac3130d6890c3b2dd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:12:a7:f2:53:b6:47:f3:54:52:3c:21:f1:c8:
3a:8c:e5:5f:48:e1:4b:9e:4f:3e:b3:a0:88:37:a4:
05:08:8d:fd:b6:89:18:46:dd:19:9c:89:82:d3:e6:
20:4d:19:77:43:a0:48:72:5c:44:25:79:e1:c4:71:
d6:c5:5f:a4:fa:7c:d6:95:32:32:1d:7e:0d:4e:b0:
c4:8c:dc:ca:bc:03:f4:1e:df:c0:73:79:e9:2b:87:
52:98:28:97:90:e2:4b:04:65:83:d1:6d:01:91:a1:
9e:02:76:4f:88:34:13:a4:a9:e1:19:b3:74:62:7a:
0b:53:71:f8:d5:ab:15:98:3b:8a:83:33:e9:5f:ab:
d0:7c:02:6a:1a:a4:9f:72:3b:dc:50:5c:0c:bb:41:
69:72:25:93:36:58:03:9d:b2:4f:e9:33:0c:77:bc:
0a:f5:c8:1e:7a:7c:13:d8:8b:ac:92:79:0c:7b:b7:
e8:84:ef:00:03:78:cb:f7:50:59:ee:c8:cd:bc:de:
f3:e7:55:d7:fb:39:3a:3e:63:2a:6e:10:ab:3a:73:
93:d5:5b:b2:db:fc:3e:0a:47:9c:9a:fc:88:cb:07:
b0:69:36:c0:a0:b4:8a:72:50:d7:52:f9:65:c0:11:
62:ae:dd:f8:01:2c:a0:41:cc:9f:2f:b7:b4:8d:16:
0d:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:1B:1F:96:3D:C1:EF:98:DB:8A:EC:AC:31:30:D6:89:0C:3B:2D:D1
X509v3 Authority Key Identifier:
keyid:34:06:D2:C4:39:CC:BC:B7:8A:82:D5:CB:2B:4C:3F:F6:E9:93:4B:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NAbSxDnMvLeKgtXLK0w_9umTS5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/0a3a0f-60f8-4a1c-bba0-7b880c063367/1/Phsflj3B75jbiuysMTDWiQw7LdE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/0a3a0f-60f8-4a1c-bba0-7b880c063367/1/NAbSxDnMvLeKgtXLK0w_9umTS5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.61.0/24
Signature Algorithm: sha256WithRSAEncryption
97:7d:b1:b1:5f:c6:92:7a:57:82:8d:fe:66:b2:99:4d:77:a2:
29:db:9c:42:24:d6:36:53:59:8b:93:36:5f:cf:6d:b9:0c:91:
b4:a6:8d:28:c0:d0:7d:a1:7e:ed:95:29:e0:8f:f5:31:37:46:
ce:11:40:a2:9c:43:c7:3b:46:78:73:a0:0c:9f:55:5e:1b:c7:
f9:55:64:95:6b:50:ce:04:00:e1:a0:67:a9:be:08:aa:af:64:
ea:49:c6:d7:30:85:b7:75:42:88:4c:16:61:5e:92:3d:1c:20:
e0:a2:c1:49:58:1d:73:d0:df:eb:d0:c5:a7:6d:ec:3a:cc:c7:
ff:2d:fa:c1:42:e5:84:92:43:94:c8:53:42:34:7b:39:97:d4:
aa:35:04:bc:81:85:4a:5d:80:f7:e1:ea:e9:ad:cd:c5:66:45:
c3:d3:66:13:37:04:98:c0:64:40:6e:12:9e:4c:10:b4:c6:ee:
81:ef:1b:6d:59:90:30:db:bd:4a:87:a4:59:0e:45:4b:cf:0f:
38:e2:e9:98:b8:1b:91:c9:65:b4:ee:ec:aa:9e:46:ff:2c:e4:
d1:7f:23:a4:e5:23:f6:c2:2c:65:14:0d:6f:77:08:65:26:34:
59:17:8b:72:49:43:a6:ee:25:ed:ea:47:6c:3d:fc:8e:a3:56:
1a:df:e4:ff
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBqlVRjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NDA2ZDJjNDM5Y2NiY2I3OGE4MmQ1Y2IyYjRjM2ZmNmU5OTM0Yjk2MB4XDTIyMDEw
MTAwNTYwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2UxYjFmOTYzZGMx
ZWY5OGRiOGFlY2FjMzEzMGQ2ODkwYzNiMmRkMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN4Sp/JTtkfzVFI8IfHIOozlX0jhS55PPrOgiDekBQiN/baJ
GEbdGZyJgtPmIE0Zd0OgSHJcRCV54cRx1sVfpPp81pUyMh1+DU6wxIzcyrwD9B7f
wHN56SuHUpgol5DiSwRlg9FtAZGhngJ2T4g0E6Sp4RmzdGJ6C1Nx+NWrFZg7ioMz
6V+r0HwCahqkn3I73FBcDLtBaXIlkzZYA52yT+kzDHe8CvXIHnp8E9iLrJJ5DHu3
6ITvAAN4y/dQWe7Izbze8+dV1/s5Oj5jKm4Qqzpzk9Vbstv8PgpHnJr8iMsHsGk2
wKC0inJQ11L5ZcARYq7d+AEsoEHMny+3tI0WDRUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ+Gx+WPcHvmNuK7KwxMNaJDDst0TAfBgNVHSMEGDAWgBQ0BtLEOcy8t4qC
1csrTD/26ZNLljAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05BYlN4RG5NdkxlS2d0WExLMHdfOXVtVFM1WS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDEvMGEzYTBmLTYwZjgtNGExYy1iYmEwLTdiODgwYzA2MzM2Ny8x
L1Boc2ZsajNCNzVqYml1eXNNVERXaVF3N0xkRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDEv
MGEzYTBmLTYwZjgtNGExYy1iYmEwLTdiODgwYzA2MzM2Ny8xL05BYlN4RG5Ndkxl
S2d0WExLMHdfOXVtVFM1WS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC1XPTANBgkqhkiG9w0BAQsFAAOC
AQEAl32xsV/GknpXgo3+ZrKZTXeiKducQiTWNlNZi5M2X89tuQyRtKaNKMDQfaF+
7ZUp4I/1MTdGzhFAopxDxztGeHOgDJ9VXhvH+VVklWtQzgQA4aBnqb4Iqq9k6knG
1zCFt3VCiEwWYV6SPRwg4KLBSVgdc9Df69DFp23sOszH/y36wULlhJJDlMhTQjR7
OZfUqjUEvIGFSl2A9+Hq6a3NxWZFw9NmEzcEmMBkQG4SnkwQtMbuge8bbVmQMNu9
SoekWQ5FS88POOLpmLgbkclltO7sqp5G/yzk0X8jpOUj9sIsZRQNb3cIZSY0WReL
cklDpu4l7epHbD38jqNWGt/k/w==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:21 2023 by rpki-client on console.sobornost.net