Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/0d362c-f863-4d40-80bd-85fc5fd90fd8/1/NOPOIVZwIdrWezWx8M3dauYmdBg.roa
File: NOPOIVZwIdrWezWx8M3dauYmdBg.roa (raw, json)
Hash identifier: glHmLh0dUFEx1N67kBiEpZiZNh135U6Xqq5GnwdI82o=
Subject key identifier: 34:E3:CE:21:56:70:21:DA:D6:7B:35:B1:F0:CD:DD:6A:E6:26:74:18
Certificate issuer: /CN=127af6c693573a2270c9237875456c2df0b503c2
Certificate serial: 01852B73C71A2AFAE050E3AB04415A8CF043
Authority key identifier: 12:7A:F6:C6:93:57:3A:22:70:C9:23:78:75:45:6C:2D:F0:B5:03:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Enr2xpNXOiJwySN4dUVsLfC1A8I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/0d362c-f863-4d40-80bd-85fc5fd90fd8/1/NOPOIVZwIdrWezWx8M3dauYmdBg.roa
Signing time: Mon 19 Dec 2022 17:34:46 +0000
ROA not before: Mon 19 Dec 2022 17:34:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208296
IP address blocks: 45.141.40.0/22 maxlen: 24
2a13:5b40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2b:73:c7:1a:2a:fa:e0:50:e3:ab:04:41:5a:8c:f0:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=127af6c693573a2270c9237875456c2df0b503c2
Validity
Not Before: Dec 19 17:34:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=34e3ce21567021dad67b35b1f0cddd6ae6267418
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:b7:07:4a:19:37:cc:53:3f:77:f5:b6:e9:71:
ea:03:76:d5:9f:b8:48:e8:73:65:22:fe:c0:71:87:
93:cd:50:a1:a3:68:33:07:c9:15:8a:19:ea:91:3b:
7c:3d:5b:1e:f2:24:ac:ce:f9:34:af:f1:aa:e3:aa:
77:2d:25:01:cb:de:a4:bb:b0:eb:63:3a:f4:98:83:
cd:a9:87:10:88:99:44:82:92:ed:56:77:5d:88:1b:
40:3d:9a:64:68:37:8c:ef:e1:45:24:f2:6f:5d:a9:
2b:8c:32:db:a4:3e:80:25:82:c7:f7:26:21:d4:15:
bc:bc:4e:a5:ec:76:6f:ac:ee:d6:02:40:8f:82:85:
25:d0:24:fe:e4:05:ed:c1:bd:9f:30:4a:08:29:d9:
f5:f3:95:2e:53:44:86:36:23:2f:bf:cb:e0:e1:59:
91:80:61:c9:01:65:2c:bc:75:6c:25:1e:78:a7:99:
00:a4:51:2b:e0:b4:21:88:d3:44:e0:b8:0a:8e:a3:
61:fc:f4:b8:41:79:32:69:fe:77:37:bc:8d:57:6d:
aa:c7:63:4e:2c:90:9e:c1:2d:0a:88:7e:7c:5c:f9:
e0:e1:f7:09:df:7e:e0:9c:e7:44:6e:97:cf:c9:5c:
22:5b:c9:85:6b:0f:79:f1:fe:0b:03:1c:84:c6:d1:
2b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:E3:CE:21:56:70:21:DA:D6:7B:35:B1:F0:CD:DD:6A:E6:26:74:18
X509v3 Authority Key Identifier:
keyid:12:7A:F6:C6:93:57:3A:22:70:C9:23:78:75:45:6C:2D:F0:B5:03:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Enr2xpNXOiJwySN4dUVsLfC1A8I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/0d362c-f863-4d40-80bd-85fc5fd90fd8/1/NOPOIVZwIdrWezWx8M3dauYmdBg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/0d362c-f863-4d40-80bd-85fc5fd90fd8/1/Enr2xpNXOiJwySN4dUVsLfC1A8I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.40.0/22
IPv6:
2a13:5b40::/29
Signature Algorithm: sha256WithRSAEncryption
35:a2:b8:d6:2b:04:a4:c1:50:5d:b4:e7:f7:f7:17:42:da:a5:
af:88:e2:e8:c2:01:c7:ee:e4:84:fa:1f:b4:8d:b7:06:a4:89:
35:3a:10:b2:2d:bf:4d:b2:03:18:81:87:25:e4:1f:b9:3b:08:
ad:4b:08:62:d4:62:dd:d2:10:ea:8c:db:60:f0:25:b8:21:96:
36:ca:6c:72:47:b8:18:90:a4:45:71:18:f6:d7:19:d6:c8:bf:
0b:37:1c:b0:56:40:cf:be:38:be:6e:c8:61:49:01:d5:bd:bd:
d4:d9:44:ef:2f:e3:bc:af:12:bf:d8:29:21:0d:34:5e:40:c6:
69:ac:89:b9:48:5a:ee:bd:e8:92:80:51:4d:a5:07:a2:24:2e:
2d:d1:bd:82:2c:3a:42:b6:6d:47:c2:d7:3e:7f:94:1f:20:c2:
7a:ac:86:a0:7b:e9:43:b1:f5:2d:6b:fa:05:75:b8:6a:54:ff:
bf:67:b8:fe:b2:c9:d2:7b:54:ce:19:c6:65:72:4a:d6:1d:8b:
57:84:1a:f3:3c:58:cb:f6:9b:f5:40:87:da:2d:20:94:ad:b9:
48:55:5b:1a:80:37:bf:75:ae:65:bc:48:fb:e3:74:7a:14:45:
f9:c8:fb:b9:12:e1:16:2b:4a:eb:ac:4a:1c:cb:61:f2:8c:0b:
8a:af:26:41
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYUrc8caKvrgUOOrBEFajPBDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEyN2FmNmM2OTM1NzNhMjI3MGM5MjM3ODc1NDU2YzJkZjBi
NTAzYzIwHhcNMjIxMjE5MTczNDQ2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNGUzY2UyMTU2NzAyMWRhZDY3YjM1YjFmMGNkZGQ2YWU2MjY3NDE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgrcHShk3zFM/d/W26XHqA3bVn7hI
6HNlIv7AcYeTzVCho2gzB8kVihnqkTt8PVse8iSszvk0r/Gq46p3LSUBy96ku7Dr
Yzr0mIPNqYcQiJlEgpLtVnddiBtAPZpkaDeM7+FFJPJvXakrjDLbpD6AJYLH9yYh
1BW8vE6l7HZvrO7WAkCPgoUl0CT+5AXtwb2fMEoIKdn185UuU0SGNiMvv8vg4VmR
gGHJAWUsvHVsJR54p5kApFEr4LQhiNNE4LgKjqNh/PS4QXkyaf53N7yNV22qx2NO
LJCewS0KiH58XPng4fcJ337gnOdEbpfPyVwiW8mFaw958f4LAxyExtErQQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFDTjziFWcCHa1ns1sfDN3WrmJnQYMB8GA1UdIwQY
MBaAFBJ69saTVzoicMkjeHVFbC3wtQPCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRW5yMnhwTlhPaUp3eVNONGRVVnNMZkMxQThJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy8wZDM2MmMtZjg2My00ZDQwLTgwYmQt
ODVmYzVmZDkwZmQ4LzEvTk9QT0lWWndJZHJXZXpXeDhNM2RhdVltZEJnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy8wZDM2MmMtZjg2My00ZDQwLTgwYmQtODVmYzVmZDkwZmQ4
LzEvRW5yMnhwTlhPaUp3eVNONGRVVnNMZkMxQThJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCLY0oMA0E
AgACMAcDBQMqE1tAMA0GCSqGSIb3DQEBCwUAA4IBAQA1orjWKwSkwVBdtOf39xdC
2qWviOLowgHH7uSE+h+0jbcGpIk1OhCyLb9NsgMYgYcl5B+5OwitSwhi1GLd0hDq
jNtg8CW4IZY2ymxyR7gYkKRFcRj21xnWyL8LNxywVkDPvji+bshhSQHVvb3U2UTv
L+O8rxK/2CkhDTReQMZprIm5SFruveiSgFFNpQeiJC4t0b2CLDpCtm1Hwtc+f5Qf
IMJ6rIage+lDsfUta/oFdbhqVP+/Z7j+ssnSe1TOGcZlckrWHYtXhBrzPFjL9pv1
QIfaLSCUrblIVVsagDe/da5lvEj743R6FEX5yPu5EuEWK0rrrEocy2HyjAuKryZB
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:35 2023 by rpki-client on console-fra.rpki-client.org