Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/7e7ee7-1bd4-4435-871f-6cf8e567ff1c/1/mp0oay2_M6REzG7IIkogOyOtwH8.roa
File: mp0oay2_M6REzG7IIkogOyOtwH8.roa (raw, json)
Hash identifier: ayUyMdEyE2UGjscSyn3E7KKPKQDXRt6neFLWYHytoKE=
Subject key identifier: 9A:9D:28:6B:2D:BF:33:A4:44:CC:6E:C8:22:4A:20:3B:23:AD:C0:7F
Certificate issuer: /CN=b4d73a6ad77a8f859b403db2ce715e82d1cf32fe
Certificate serial: 08C7CE9F
Authority key identifier: B4:D7:3A:6A:D7:7A:8F:85:9B:40:3D:B2:CE:71:5E:82:D1:CF:32:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tNc6atd6j4WbQD2yznFegtHPMv4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/7e7ee7-1bd4-4435-871f-6cf8e567ff1c/1/mp0oay2_M6REzG7IIkogOyOtwH8.roa
Signing time: Tue 10 May 2022 11:52:01 +0000
ROA not before: Tue 10 May 2022 11:52:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59592
IP address blocks: 45.146.136.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147312287 (0x8c7ce9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4d73a6ad77a8f859b403db2ce715e82d1cf32fe
Validity
Not Before: May 10 11:52:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a9d286b2dbf33a444cc6ec8224a203b23adc07f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:a1:88:3e:ce:fd:d4:a0:78:82:4c:a4:c8:ce:
34:0e:b9:26:c0:83:de:d7:35:91:21:f0:c8:d5:c3:
be:06:be:6b:f6:3e:1c:d1:a6:75:17:bf:d5:ae:5f:
98:e6:15:b7:27:3e:9a:e5:25:43:05:82:f1:9e:63:
77:66:20:1e:38:78:08:f4:b4:22:e1:be:1e:ae:a0:
2c:58:59:0f:c5:f8:c6:57:53:95:02:27:71:de:99:
d6:d6:af:d8:11:8d:81:e8:d8:a2:0f:4a:46:da:b3:
14:c1:56:9f:f6:ea:e2:bc:33:d5:ad:3f:55:34:2c:
5a:37:7f:cb:88:67:16:f6:a7:84:e7:ce:39:79:dc:
0d:2b:26:af:66:a8:3c:27:a7:fa:50:f6:88:f0:8f:
4c:9e:42:af:e1:d7:9f:58:77:97:37:4e:eb:b5:86:
e2:b9:e2:0c:16:ed:b3:1a:f7:aa:45:b2:39:ca:a1:
72:d3:50:7c:eb:1a:1e:b1:b0:e8:9b:cc:aa:bc:36:
f8:d5:2b:5c:85:0c:44:5f:14:75:fc:e4:1b:b1:b3:
bf:cd:e3:b8:a4:d8:57:f3:db:7b:70:1e:06:4f:fd:
7c:e3:9a:d1:a7:d0:24:81:9e:35:4e:7d:5f:41:a3:
7f:1a:8c:5d:5c:bd:f4:f2:af:9d:15:f6:4f:d5:5d:
1d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:9D:28:6B:2D:BF:33:A4:44:CC:6E:C8:22:4A:20:3B:23:AD:C0:7F
X509v3 Authority Key Identifier:
keyid:B4:D7:3A:6A:D7:7A:8F:85:9B:40:3D:B2:CE:71:5E:82:D1:CF:32:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tNc6atd6j4WbQD2yznFegtHPMv4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/7e7ee7-1bd4-4435-871f-6cf8e567ff1c/1/mp0oay2_M6REzG7IIkogOyOtwH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/7e7ee7-1bd4-4435-871f-6cf8e567ff1c/1/tNc6atd6j4WbQD2yznFegtHPMv4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.136.0/22
Signature Algorithm: sha256WithRSAEncryption
67:00:6e:03:6a:d3:74:4f:ec:44:8f:06:ed:cb:49:77:d8:f5:
37:57:c4:58:50:6e:ba:eb:46:35:e7:98:2c:a0:5e:33:82:aa:
04:66:29:34:25:ed:79:7b:53:2c:51:2c:92:72:0d:52:07:b8:
20:1f:56:d9:a6:9f:8d:0e:5a:4c:24:06:68:85:1c:d6:4d:a7:
7e:2f:ee:43:f7:d1:17:24:2c:ee:16:f3:ce:9f:cd:3c:1a:11:
d3:2d:f7:8e:c4:4a:3f:08:88:7f:d6:9b:01:ea:3c:6b:89:0b:
46:76:73:02:51:30:86:96:fe:7d:ff:ab:f1:a2:1c:62:b7:3d:
de:0c:e9:26:a9:26:e4:86:81:71:40:fd:d9:51:f1:89:f8:3e:
d4:ab:b1:23:6f:3d:93:d1:e7:56:94:e1:db:7d:13:b0:df:bb:
5f:40:5e:d7:d9:30:79:98:2c:d3:a1:4e:a4:47:3d:c1:b8:2d:
34:88:ef:9f:30:17:90:c6:ef:93:d5:a6:2b:f3:af:6e:6c:5f:
db:39:89:f8:44:ae:8b:de:f1:1e:97:e2:ec:57:27:f9:06:ef:
ed:b8:9c:50:10:7f:57:76:dc:54:7f:bb:1f:f2:8c:b7:ac:12:
ad:cb:d0:b1:8e:7d:3b:fa:39:dc:b2:5a:8c:de:e3:ec:21:d3:
e3:6c:06:92
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECMfOnzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NGQ3M2E2YWQ3N2E4Zjg1OWI0MDNkYjJjZTcxNWU4MmQxY2YzMmZlMB4XDTIyMDUx
MDExNTIwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWE5ZDI4NmIyZGJm
MzNhNDQ0Y2M2ZWM4MjI0YTIwM2IyM2FkYzA3ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIyhiD7O/dSgeIJMpMjONA65JsCD3tc1kSHwyNXDvga+a/Y+
HNGmdRe/1a5fmOYVtyc+muUlQwWC8Z5jd2YgHjh4CPS0IuG+Hq6gLFhZD8X4xldT
lQIncd6Z1tav2BGNgejYog9KRtqzFMFWn/bq4rwz1a0/VTQsWjd/y4hnFvanhOfO
OXncDSsmr2aoPCen+lD2iPCPTJ5Cr+HXn1h3lzdO67WG4rniDBbtsxr3qkWyOcqh
ctNQfOsaHrGw6JvMqrw2+NUrXIUMRF8UdfzkG7Gzv83juKTYV/Pbe3AeBk/9fOOa
0afQJIGeNU59X0GjfxqMXVy99PKvnRX2T9VdHd8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSanShrLb8zpETMbsgiSiA7I63AfzAfBgNVHSMEGDAWgBS01zpq13qPhZtA
PbLOcV6C0c8y/jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ROYzZhdGQ2ajRXYlFEMnl6bkZlZ3RIUE12NC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGUvN2U3ZWU3LTFiZDQtNDQzNS04NzFmLTZjZjhlNTY3ZmYxYy8x
L21wMG9heTJfTTZSRXpHN0lJa29nT3lPdHdIOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGUv
N2U3ZWU3LTFiZDQtNDQzNS04NzFmLTZjZjhlNTY3ZmYxYy8xL3ROYzZhdGQ2ajRX
YlFEMnl6bkZlZ3RIUE12NC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi2SiDANBgkqhkiG9w0BAQsFAAOC
AQEAZwBuA2rTdE/sRI8G7ctJd9j1N1fEWFBuuutGNeeYLKBeM4KqBGYpNCXteXtT
LFEsknINUge4IB9W2aafjQ5aTCQGaIUc1k2nfi/uQ/fRFyQs7hbzzp/NPBoR0y33
jsRKPwiIf9abAeo8a4kLRnZzAlEwhpb+ff+r8aIcYrc93gzpJqkm5IaBcUD92VHx
ifg+1KuxI289k9HnVpTh230TsN+7X0Be19kweZgs06FOpEc9wbgtNIjvnzAXkMbv
k9WmK/Ovbmxf2zmJ+ESui97xHpfi7Fcn+Qbv7bicUBB/V3bcVH+7H/KMt6wSrcvQ
sY59O/o53LJajN7j7CHT42wGkg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:14 2024 by rpki-client on console-ams.rpki-client.org