Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/u30-Mx7mWmBpL5kozolzsgkrRtM.roa
File: u30-Mx7mWmBpL5kozolzsgkrRtM.roa (raw, json)
Hash identifier: JPmcNYq7Yg/ELIKH4IVrh9RH3dOWZJObvBlp9DJgEHg=
Subject key identifier: BB:7D:3E:33:1E:E6:5A:60:69:2F:99:28:CE:89:73:B2:09:2B:46:D3
Certificate issuer: /CN=d2ae5e338794e60d5d8b523bdb2b68ec4ac762ce
Certificate serial: 093B0BDE
Authority key identifier: D2:AE:5E:33:87:94:E6:0D:5D:8B:52:3B:DB:2B:68:EC:4A:C7:62:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/u30-Mx7mWmBpL5kozolzsgkrRtM.roa
Signing time: Sat 01 Jan 2022 08:55:13 +0000
ROA not before: Sat 01 Jan 2022 08:55:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35499
IP address blocks: 45.66.124.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154864606 (0x93b0bde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2ae5e338794e60d5d8b523bdb2b68ec4ac762ce
Validity
Not Before: Jan 1 08:55:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb7d3e331ee65a60692f9928ce8973b2092b46d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:16:d4:69:fa:37:72:dd:65:a7:49:15:dc:43:
3d:50:5b:6a:e0:e1:6b:c2:c4:ec:4b:c0:56:75:9a:
3c:9a:99:98:0e:1c:97:11:30:72:4b:09:c2:47:4f:
8b:33:9f:37:f0:6d:db:4f:2d:cd:f3:65:36:df:e7:
b0:d8:8a:f4:a3:aa:fb:30:e0:7e:4b:96:88:a9:37:
ab:6c:10:48:d5:15:db:75:e2:6b:3d:d9:80:f3:d7:
78:94:92:3a:4b:76:da:b0:29:cc:ad:b6:c2:af:b7:
49:95:cf:b6:1c:3b:aa:06:69:56:fe:ed:2d:40:47:
8c:3b:9b:6e:ab:42:f6:3d:02:24:92:76:02:94:23:
6f:79:6a:0f:31:1c:1a:bb:4c:41:94:38:9d:bd:75:
af:97:ef:29:c8:dc:32:c5:6e:68:98:1c:44:e3:15:
a9:cd:23:b1:32:ea:96:aa:d6:1e:80:a7:5f:ed:f2:
8f:73:6f:af:70:e6:a3:b3:c4:09:22:73:01:37:e4:
dc:ad:79:79:7a:98:23:cd:2c:46:57:b5:a1:d7:21:
32:4a:3f:c5:47:2e:bf:20:46:7b:ba:2a:e0:b5:dc:
22:af:3c:99:60:34:2d:d9:a2:25:51:34:28:96:5c:
58:4a:73:8a:58:f6:49:61:9f:8b:8b:21:51:d0:ac:
ce:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:7D:3E:33:1E:E6:5A:60:69:2F:99:28:CE:89:73:B2:09:2B:46:D3
X509v3 Authority Key Identifier:
keyid:D2:AE:5E:33:87:94:E6:0D:5D:8B:52:3B:DB:2B:68:EC:4A:C7:62:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/u30-Mx7mWmBpL5kozolzsgkrRtM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.124.0/22
Signature Algorithm: sha256WithRSAEncryption
72:6e:54:ee:33:d6:f3:eb:af:08:7a:80:8e:b9:e2:71:00:b8:
09:29:89:45:b0:b4:93:7b:f8:99:da:de:fe:0d:f0:fb:7b:3f:
cf:f2:a4:7f:4f:ee:37:11:2b:87:fa:93:87:ca:ad:71:4c:b7:
13:cb:14:7e:cb:6b:3d:f8:9d:57:8b:81:41:3d:87:ca:de:56:
a1:f8:3b:42:59:33:53:a4:0d:2c:96:bc:6b:98:01:39:5d:ca:
11:05:05:8b:3c:31:26:4e:9d:6b:f3:63:c0:0b:86:90:6f:93:
15:01:95:fc:f1:96:bf:4d:80:c1:9a:8d:03:49:97:d8:be:5e:
b9:9b:c8:75:dc:30:43:b2:7f:fb:0d:e8:73:ef:31:cd:3a:ac:
7d:db:3f:73:2f:5e:ac:6a:f8:55:4d:a2:54:7d:8e:26:db:87:
00:8d:13:66:0e:f7:2a:52:6d:8d:4b:09:41:37:58:02:76:17:
36:0a:72:62:8d:4d:dc:15:4d:a8:2c:7d:cf:c3:ba:59:e5:4f:
e7:67:8f:a2:fc:ad:8b:01:6a:30:73:28:bb:c2:34:ac:73:55:
22:f6:de:61:39:c8:e2:74:28:90:b9:2a:c0:2f:88:d9:a6:a4:
18:e1:be:79:11:bc:2f:e6:9d:74:11:ec:b1:a4:d7:7c:32:e2:
2f:5d:8d:99
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECTsL3jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
MmFlNWUzMzg3OTRlNjBkNWQ4YjUyM2JkYjJiNjhlYzRhYzc2MmNlMB4XDTIyMDEw
MTA4NTUxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmI3ZDNlMzMxZWU2
NWE2MDY5MmY5OTI4Y2U4OTczYjIwOTJiNDZkMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK4W1Gn6N3LdZadJFdxDPVBbauDha8LE7EvAVnWaPJqZmA4c
lxEwcksJwkdPizOfN/Bt208tzfNlNt/nsNiK9KOq+zDgfkuWiKk3q2wQSNUV23Xi
az3ZgPPXeJSSOkt22rApzK22wq+3SZXPthw7qgZpVv7tLUBHjDubbqtC9j0CJJJ2
ApQjb3lqDzEcGrtMQZQ4nb11r5fvKcjcMsVuaJgcROMVqc0jsTLqlqrWHoCnX+3y
j3Nvr3Dmo7PECSJzATfk3K15eXqYI80sRle1odchMko/xUcuvyBGe7oq4LXcIq88
mWA0LdmiJVE0KJZcWEpzilj2SWGfi4shUdCszoMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS7fT4zHuZaYGkvmSjOiXOyCStG0zAfBgNVHSMEGDAWgBTSrl4zh5TmDV2L
UjvbK2jsSsdizjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzBxNWVNNGVVNWcxZGkxSTcyeXRvN0VySFlzNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzIvZDVkZjAzLWI1ZWUtNGJmNy1hZWRmLThkOGU5ZWExNDMyNS8x
L3UzMC1NeDdtV21CcEw1a296b2x6c2drclJ0TS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzIv
ZDVkZjAzLWI1ZWUtNGJmNy1hZWRmLThkOGU5ZWExNDMyNS8xLzBxNWVNNGVVNWcx
ZGkxSTcyeXRvN0VySFlzNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi1CfDANBgkqhkiG9w0BAQsFAAOC
AQEAcm5U7jPW8+uvCHqAjrnicQC4CSmJRbC0k3v4mdre/g3w+3s/z/Kkf0/uNxEr
h/qTh8qtcUy3E8sUfstrPfidV4uBQT2Hyt5Wofg7QlkzU6QNLJa8a5gBOV3KEQUF
izwxJk6da/NjwAuGkG+TFQGV/PGWv02AwZqNA0mX2L5euZvIddwwQ7J/+w3oc+8x
zTqsfds/cy9erGr4VU2iVH2OJtuHAI0TZg73KlJtjUsJQTdYAnYXNgpyYo1N3BVN
qCx9z8O6WeVP52ePovytiwFqMHMou8I0rHNVIvbeYTnI4nQokLkqwC+I2aakGOG+
eRG8L+addBHssaTXfDLiL12NmQ==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:27 2023 by rpki-client on console.sobornost.net