Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/e-u4fn6iCOjTHZyyZ5qB8T8urYo.roa
File: e-u4fn6iCOjTHZyyZ5qB8T8urYo.roa (raw, json)
Hash identifier: tbUdN7mWyxfn/U+pwKp36bP2M1WHwxnPSwVdMQDan2w=
Subject key identifier: 7B:EB:B8:7E:7E:A2:08:E8:D3:1D:9C:B2:67:9A:81:F1:3F:2E:AD:8A
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 018321A8A397E20044B493F3D6EF94EC70FB
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/e-u4fn6iCOjTHZyyZ5qB8T8urYo.roa
Signing time: Fri 09 Sep 2022 09:50:43 +0000
ROA not before: Fri 09 Sep 2022 09:50:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 45.136.7.0/24 maxlen: 24
45.131.3.0/24 maxlen: 24
5.180.104.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:21:a8:a3:97:e2:00:44:b4:93:f3:d6:ef:94:ec:70:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Sep 9 09:50:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7bebb87e7ea208e8d31d9cb2679a81f13f2ead8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:03:35:eb:70:17:01:92:a3:14:af:41:db:c5:
ea:b0:de:69:21:ea:c5:8c:88:00:9f:f7:62:13:76:
0d:71:6c:f4:53:e0:74:1c:8d:17:d9:50:dd:30:4f:
80:32:d3:49:d9:5e:44:39:da:ba:ea:60:77:a5:3b:
26:28:9e:ab:a9:d6:04:56:9c:eb:01:d1:fd:cb:63:
f9:6e:ce:c7:e4:ed:5b:0a:fc:e0:9b:e1:f2:07:19:
74:64:77:d3:b1:de:f0:22:41:1d:97:8f:e7:c9:dd:
63:40:90:59:d2:62:ce:36:fe:c2:c9:e5:78:5b:8d:
56:b7:64:3d:e4:88:19:43:f0:41:79:ef:93:4b:b1:
96:27:de:ff:1c:b1:00:95:19:40:e5:a1:48:98:44:
2c:77:0f:8e:81:94:38:a6:03:3d:76:f9:5d:61:d9:
e7:c8:d5:de:b5:c1:fe:82:9b:66:59:b8:43:ed:8b:
08:59:1c:89:32:e3:ca:e2:25:b9:a7:3d:d4:f8:72:
0b:1b:aa:f5:34:55:7b:0a:56:3e:58:3b:a1:82:ce:
1f:eb:36:91:2f:9d:48:fc:04:a2:71:31:ff:a7:ed:
a4:a3:85:ce:8a:7b:fc:b6:eb:fe:f6:3d:fa:a8:ac:
dd:99:07:34:ad:a6:65:53:97:e5:f4:0a:aa:dd:fa:
84:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:EB:B8:7E:7E:A2:08:E8:D3:1D:9C:B2:67:9A:81:F1:3F:2E:AD:8A
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/e-u4fn6iCOjTHZyyZ5qB8T8urYo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.104.0/24
45.131.3.0/24
45.136.7.0/24
Signature Algorithm: sha256WithRSAEncryption
88:c9:7a:68:aa:0b:29:5f:f3:a7:6b:1b:95:8c:48:43:38:74:
fc:cb:6b:27:16:b9:af:28:55:32:19:c6:77:df:c2:1f:a5:1c:
32:fe:ed:e5:14:a5:4e:89:f4:2d:99:c2:26:c8:0c:a6:31:4e:
fc:45:f6:45:da:27:9a:c6:60:42:dc:97:4a:fd:06:3d:a3:f7:
3e:34:d5:3c:5f:e9:d1:42:b7:45:9a:d4:1c:33:81:cc:53:6c:
53:53:77:35:45:20:b6:22:a4:99:a3:b0:18:de:42:a5:17:3b:
c1:8f:62:fb:07:64:81:3a:56:d9:66:76:91:d4:fc:f3:4d:66:
67:fd:dc:3e:0f:22:02:26:73:11:7d:78:53:80:20:ea:0e:2e:
39:30:f3:f4:b8:f0:d0:3b:69:ba:d7:67:79:14:ab:91:d8:81:
e1:dd:6e:fa:78:c9:76:2c:c6:48:40:ad:c0:58:5b:ae:0e:5a:
df:9a:d0:b1:2d:76:c4:39:45:85:1e:5b:bc:b5:aa:1a:21:82:
0a:bd:20:31:23:cb:38:b6:8a:d7:ff:27:9f:a6:c4:c0:6a:21:
0c:24:c3:71:6f:73:f3:3d:a7:ea:24:89:1a:ea:6f:07:56:87:
ec:3b:96:13:62:e8:bd:02:ed:25:8c:c9:71:64:96:62:05:13:
a2:97:96:5a
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYMhqKOX4gBEtJPz1u+U7HD7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ4MDVmMTdjMmQ3MTMzZDJkYWQzYThkZjdlMzUzMTVlMzdl
ZjVkYWYwHhcNMjIwOTA5MDk1MDQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YmViYjg3ZTdlYTIwOGU4ZDMxZDljYjI2NzlhODFmMTNmMmVhZDhhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgQM163AXAZKjFK9B28XqsN5pIerF
jIgAn/diE3YNcWz0U+B0HI0X2VDdME+AMtNJ2V5EOdq66mB3pTsmKJ6rqdYEVpzr
AdH9y2P5bs7H5O1bCvzgm+HyBxl0ZHfTsd7wIkEdl4/nyd1jQJBZ0mLONv7CyeV4
W41Wt2Q95IgZQ/BBee+TS7GWJ97/HLEAlRlA5aFImEQsdw+OgZQ4pgM9dvldYdnn
yNXetcH+gptmWbhD7YsIWRyJMuPK4iW5pz3U+HILG6r1NFV7ClY+WDuhgs4f6zaR
L51I/ASicTH/p+2ko4XOinv8tuv+9j36qKzdmQc0raZlU5fl9Aqq3fqE+QIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFHvruH5+ogjo0x2csmeagfE/Lq2KMB8GA1UdIwQY
MBaAFEgF8XwtcTPS2tOo3341MV43712vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU0FYeGZDMXhNOUxhMDZqZmZqVXhYamZ2WGE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi84ZTA3ZGQtNGZlNS00ODIwLWJjYmUt
NWRkNmUyMmViYWIwLzEvZS11NGZuNmlDT2pUSFp5eVo1cUI4VDh1cllvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi84ZTA3ZGQtNGZlNS00ODIwLWJjYmUtNWRkNmUyMmViYWIw
LzEvU0FYeGZDMXhNOUxhMDZqZmZqVXhYamZ2WGE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQABbRoAwQA
LYMDAwQALYgHMA0GCSqGSIb3DQEBCwUAA4IBAQCIyXpoqgspX/OnaxuVjEhDOHT8
y2snFrmvKFUyGcZ338IfpRwy/u3lFKVOifQtmcImyAymMU78RfZF2ieaxmBC3JdK
/QY9o/c+NNU8X+nRQrdFmtQcM4HMU2xTU3c1RSC2IqSZo7AY3kKlFzvBj2L7B2SB
OlbZZnaR1PzzTWZn/dw+DyICJnMRfXhTgCDqDi45MPP0uPDQO2m612d5FKuR2IHh
3W76eMl2LMZIQK3AWFuuDlrfmtCxLXbEOUWFHlu8taoaIYIKvSAxI8s4torX/yef
psTAaiEMJMNxb3PzPafqJIka6m8HVofsO5YTYui9Au0ljMlxZJZiBROil5Za
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:26 2023 by rpki-client on console.sobornost.net