Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/ce24e2-68be-47d7-950b-c6b8800aa858/1/gqMz25AeJqR2aJVQHHXVrX0C1lg.roa
File: gqMz25AeJqR2aJVQHHXVrX0C1lg.roa (raw, json)
Hash identifier: 5XzHRhrGWrE2W+boG4G2CFHSv51GXTbSFvuAFiB5a2U=
Subject key identifier: 82:A3:33:DB:90:1E:26:A4:76:68:95:50:1C:75:D5:AD:7D:02:D6:58
Certificate issuer: /CN=81696a81372357b5f1ed7c82ccaa993a980d54e7
Certificate serial: 07AFA44E
Authority key identifier: 81:69:6A:81:37:23:57:B5:F1:ED:7C:82:CC:AA:99:3A:98:0D:54:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gWlqgTcjV7Xx7XyCzKqZOpgNVOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/ce24e2-68be-47d7-950b-c6b8800aa858/1/gqMz25AeJqR2aJVQHHXVrX0C1lg.roa
Signing time: Sat 01 Jan 2022 15:57:18 +0000
ROA not before: Sat 01 Jan 2022 15:57:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200697
IP address blocks: 45.134.241.0/24 maxlen: 24
45.134.243.0/24 maxlen: 24
45.134.240.0/24 maxlen: 24
2a07:4680::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128951374 (0x7afa44e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81696a81372357b5f1ed7c82ccaa993a980d54e7
Validity
Not Before: Jan 1 15:57:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82a333db901e26a4766895501c75d5ad7d02d658
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:ea:8b:1f:fd:c2:f7:6d:7a:41:83:b1:24:d0:
2e:6e:7f:2b:0b:53:88:aa:22:8b:b5:44:1b:3c:e6:
5d:72:89:7b:cc:77:6f:ef:da:91:5c:fc:fb:a4:40:
89:ee:ad:d6:76:5d:2b:5e:6a:bb:b0:b8:ee:a5:ef:
91:38:36:65:57:da:51:77:e4:60:56:f4:bc:75:12:
4d:d4:f8:4a:96:1d:63:ba:48:2d:9b:9a:c2:56:dd:
3a:9e:aa:3a:56:ac:bc:63:8c:c6:ca:e0:47:dd:06:
c7:7d:62:f9:78:42:08:c3:b3:e5:47:4e:3d:6b:5c:
6d:ba:2a:5a:c0:1c:9e:60:e4:c3:cc:95:99:f1:29:
0b:53:be:e9:5a:1e:d2:aa:29:89:ce:ea:1c:b9:5d:
1e:ea:a2:8d:09:da:59:66:4a:ab:2b:65:95:f0:ad:
e4:70:72:55:54:b8:de:3b:7f:55:d3:55:d4:12:29:
29:d9:37:22:f9:83:b9:5a:3b:ac:ad:7b:8d:c2:40:
60:f7:94:0e:da:30:62:d0:a1:98:42:88:c7:bc:7f:
b8:8e:be:a8:2f:0e:17:05:2a:9d:34:a3:6c:d8:2e:
a7:b4:98:d5:a5:8b:2f:65:40:52:fd:6c:e2:9c:0e:
41:ea:1c:a2:f3:8b:fa:98:d9:ee:eb:58:6f:9d:7e:
7d:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:A3:33:DB:90:1E:26:A4:76:68:95:50:1C:75:D5:AD:7D:02:D6:58
X509v3 Authority Key Identifier:
keyid:81:69:6A:81:37:23:57:B5:F1:ED:7C:82:CC:AA:99:3A:98:0D:54:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gWlqgTcjV7Xx7XyCzKqZOpgNVOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ce24e2-68be-47d7-950b-c6b8800aa858/1/gqMz25AeJqR2aJVQHHXVrX0C1lg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ce24e2-68be-47d7-950b-c6b8800aa858/1/gWlqgTcjV7Xx7XyCzKqZOpgNVOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.240.0/23
45.134.243.0/24
IPv6:
2a07:4680::/32
Signature Algorithm: sha256WithRSAEncryption
4c:44:d1:55:68:d7:15:47:cc:d5:8c:f9:3e:0b:93:71:b3:e2:
7e:dd:71:43:c7:ff:19:17:0d:04:45:b6:69:12:b1:42:45:b2:
e3:74:45:4f:bb:ae:0a:78:89:04:99:07:ea:ea:15:08:85:5f:
c7:12:c7:e9:21:84:d3:80:fe:91:61:c5:4b:ba:b4:84:bd:9e:
eb:0d:6e:70:da:cc:4e:6c:f0:8f:02:7b:e5:a7:10:8b:ce:05:
6c:58:c3:46:80:65:2b:bf:df:b6:5b:38:1d:21:85:6e:f5:1d:
79:9e:9e:0a:f5:c4:17:b2:7e:e2:3a:85:b5:06:29:a1:73:bf:
ff:e9:57:ed:06:7c:57:4f:55:89:e7:3c:07:d7:fe:3a:e5:ce:
8d:df:af:0d:bc:26:42:61:cc:4e:ce:c4:03:b6:ff:db:09:fc:
8c:35:85:b1:3e:ac:a2:12:57:38:e6:59:bb:ee:f8:c4:f4:80:
f8:23:fd:64:c8:5c:37:e5:a5:7b:26:96:af:48:c1:9a:82:1c:
5d:8b:98:f9:5d:7f:a9:cf:a0:c4:9e:1e:3f:28:ae:95:5b:73:
87:de:ba:32:48:33:1e:6c:fe:26:25:fb:d8:af:1f:2a:ef:b7:
2d:4e:78:84:4f:7f:e3:da:d5:31:2d:ae:35:6e:f3:6e:01:c9:
e5:17:5b:1f
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEB6+kTjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MTY5NmE4MTM3MjM1N2I1ZjFlZDdjODJjY2FhOTkzYTk4MGQ1NGU3MB4XDTIyMDEw
MTE1NTcxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODJhMzMzZGI5MDFl
MjZhNDc2Njg5NTUwMWM3NWQ1YWQ3ZDAyZDY1ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIDqix/9wvdtekGDsSTQLm5/KwtTiKoii7VEGzzmXXKJe8x3
b+/akVz8+6RAie6t1nZdK15qu7C47qXvkTg2ZVfaUXfkYFb0vHUSTdT4SpYdY7pI
LZuawlbdOp6qOlasvGOMxsrgR90Gx31i+XhCCMOz5UdOPWtcbboqWsAcnmDkw8yV
mfEpC1O+6Voe0qopic7qHLldHuqijQnaWWZKqytllfCt5HByVVS43jt/VdNV1BIp
Kdk3IvmDuVo7rK17jcJAYPeUDtowYtChmEKIx7x/uI6+qC8OFwUqnTSjbNgup7SY
1aWLL2VAUv1s4pwOQeocovOL+pjZ7utYb51+fQUCAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBSCozPbkB4mpHZolVAcddWtfQLWWDAfBgNVHSMEGDAWgBSBaWqBNyNXtfHt
fILMqpk6mA1U5zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2dXbHFnVGNqVjdYeDdYeUN6S3FaT3BnTlZPYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODYvY2UyNGUyLTY4YmUtNDdkNy05NTBiLWM2Yjg4MDBhYTg1OC8x
L2dxTXoyNUFlSnFSMmFKVlFISFhWclgwQzFsZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODYv
Y2UyNGUyLTY4YmUtNDdkNy05NTBiLWM2Yjg4MDBhYTg1OC8xL2dXbHFnVGNqVjdY
eDdYeUN6S3FaT3BnTlZPYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEAS2G8AMEAC2G8zANBAIAAjAHAwUA
KgdGgDANBgkqhkiG9w0BAQsFAAOCAQEATETRVWjXFUfM1Yz5PguTcbPift1xQ8f/
GRcNBEW2aRKxQkWy43RFT7uuCniJBJkH6uoVCIVfxxLH6SGE04D+kWHFS7q0hL2e
6w1ucNrMTmzwjwJ75acQi84FbFjDRoBlK7/ftls4HSGFbvUdeZ6eCvXEF7J+4jqF
tQYpoXO//+lX7QZ8V09Viec8B9f+OuXOjd+vDbwmQmHMTs7EA7b/2wn8jDWFsT6s
ohJXOOZZu+74xPSA+CP9ZMhcN+WleyaWr0jBmoIcXYuY+V1/qc+gxJ4ePyiulVtz
h966MkgzHmz+JiX72K8fKu+3LU54hE9/49rVMS2uNW7zbgHJ5RdbHw==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:41 2023 by rpki-client on console.sobornost.net