Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/a67996-54f1-4f1e-a760-8e0d5293aac8/1/NlJtT-pJMeuRrjiEkJQDbiiEWk8.roa
File: NlJtT-pJMeuRrjiEkJQDbiiEWk8.roa (raw, json)
Hash identifier: uF0VQBO8MrYhVbd9dUVhbJM3vlLVMK29qDIvJjIstfw=
Subject key identifier: 36:52:6D:4F:EA:49:31:EB:91:AE:38:84:90:94:03:6E:28:84:5A:4F
Certificate issuer: /CN=d2ba2618ab4b6042ee25c4679e0775e4306d71c6
Certificate serial: 0116EBD9
Authority key identifier: D2:BA:26:18:AB:4B:60:42:EE:25:C4:67:9E:07:75:E4:30:6D:71:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0romGKtLYELuJcRnngd15DBtccY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/a67996-54f1-4f1e-a760-8e0d5293aac8/1/NlJtT-pJMeuRrjiEkJQDbiiEWk8.roa
Signing time: Sat 01 Jan 2022 06:56:23 +0000
ROA not before: Sat 01 Jan 2022 06:56:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 45.145.176.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18279385 (0x116ebd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2ba2618ab4b6042ee25c4679e0775e4306d71c6
Validity
Not Before: Jan 1 06:56:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=36526d4fea4931eb91ae38849094036e28845a4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e6:75:87:a2:e0:1c:a4:29:d8:da:74:a3:ed:
97:75:97:bf:ce:82:bc:22:94:a1:4c:a9:00:a6:10:
f6:27:08:b6:2f:c5:d1:85:5c:58:6e:b4:c7:10:da:
d0:c9:2e:3f:cf:9f:a4:07:d3:f6:38:a8:89:43:f0:
d5:45:51:23:4b:57:2c:38:f3:89:a1:4c:4c:eb:88:
02:64:7a:4f:60:c3:81:64:08:ae:20:f8:81:19:bb:
9d:08:7a:8e:e0:0b:18:a5:25:41:0d:de:46:09:c1:
3c:7c:95:65:53:bf:c2:f3:f9:25:73:a2:2e:5a:53:
1e:69:f8:a0:c4:1f:dd:06:5f:e5:5d:9f:c3:6d:a8:
75:82:c9:d8:83:96:a0:ff:d1:ce:af:70:97:b5:9c:
06:8c:6c:2d:33:4d:10:78:e2:1f:0d:cd:81:4a:2d:
44:12:21:fb:3c:4e:b9:5f:79:4b:ba:f3:65:0d:64:
7f:86:84:ae:6e:aa:c5:38:0f:1a:06:61:50:cf:ee:
b8:3b:80:98:55:c9:50:32:51:d4:72:61:04:c2:65:
89:4b:14:f3:78:b4:77:40:25:4b:c9:ab:5c:1e:19:
22:6c:e9:a4:09:70:90:bd:f8:e2:07:9c:a1:09:9f:
17:32:49:15:6a:c2:fb:f4:90:a9:d0:1e:6d:ec:88:
7c:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:52:6D:4F:EA:49:31:EB:91:AE:38:84:90:94:03:6E:28:84:5A:4F
X509v3 Authority Key Identifier:
keyid:D2:BA:26:18:AB:4B:60:42:EE:25:C4:67:9E:07:75:E4:30:6D:71:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0romGKtLYELuJcRnngd15DBtccY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/a67996-54f1-4f1e-a760-8e0d5293aac8/1/NlJtT-pJMeuRrjiEkJQDbiiEWk8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/a67996-54f1-4f1e-a760-8e0d5293aac8/1/0romGKtLYELuJcRnngd15DBtccY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.176.0/22
Signature Algorithm: sha256WithRSAEncryption
b0:28:8c:ab:15:c7:be:ea:37:35:f0:57:27:66:1f:bd:8f:5e:
39:33:43:28:5a:9a:75:b8:e9:1b:12:5f:48:24:9a:96:96:01:
29:7a:70:4c:55:97:57:e3:18:d4:2d:62:c2:6f:c2:61:0d:20:
05:d3:97:93:61:67:fb:52:6e:8d:b3:46:30:56:e6:33:43:c9:
bd:af:8b:b5:5b:f5:77:4c:ca:81:51:ac:75:d3:ff:77:58:c4:
a3:01:bf:5b:c2:5d:6f:b3:22:41:19:c4:78:4a:39:e5:8f:a6:
da:26:0f:a5:3b:89:94:92:43:07:6d:a1:9d:a7:25:30:4f:86:
67:bd:66:d8:d4:e6:cc:db:c1:0c:91:08:7d:14:6e:c9:35:16:
9f:5d:92:71:21:4a:b6:71:96:ac:3c:99:41:a6:4a:fb:70:23:
b2:09:46:04:29:38:5e:5b:50:78:7d:d6:3d:33:61:fc:b1:c9:
ef:7a:ad:d8:36:81:75:5a:1d:a3:3c:07:ee:8a:19:da:42:7c:
53:cb:91:9d:bf:0a:86:89:2e:1d:a5:45:e6:fa:2f:5e:35:4d:
e2:35:0d:a5:c0:5d:ae:81:32:1d:9c:3e:4a:fb:3c:ac:2a:29:
f6:29:44:cb:32:e1:85:63:09:63:af:c8:96:7d:83:fd:97:74:
bd:d3:1a:c6
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEARbr2TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
MmJhMjYxOGFiNGI2MDQyZWUyNWM0Njc5ZTA3NzVlNDMwNmQ3MWM2MB4XDTIyMDEw
MTA2NTYyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzY1MjZkNGZlYTQ5
MzFlYjkxYWUzODg0OTA5NDAzNmUyODg0NWE0ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANPmdYei4BykKdjadKPtl3WXv86CvCKUoUypAKYQ9icIti/F
0YVcWG60xxDa0MkuP8+fpAfT9jioiUPw1UVRI0tXLDjziaFMTOuIAmR6T2DDgWQI
riD4gRm7nQh6juALGKUlQQ3eRgnBPHyVZVO/wvP5JXOiLlpTHmn4oMQf3QZf5V2f
w22odYLJ2IOWoP/Rzq9wl7WcBoxsLTNNEHjiHw3NgUotRBIh+zxOuV95S7rzZQ1k
f4aErm6qxTgPGgZhUM/uuDuAmFXJUDJR1HJhBMJliUsU83i0d0AlS8mrXB4ZImzp
pAlwkL344gecoQmfFzJJFWrC+/SQqdAebeyIfNcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ2Um1P6kkx65GuOISQlANuKIRaTzAfBgNVHSMEGDAWgBTSuiYYq0tgQu4l
xGeeB3XkMG1xxjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzByb21HS3RMWUVMdUpjUm5uZ2QxNURCdGNjWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjkvYTY3OTk2LTU0ZjEtNGYxZS1hNzYwLThlMGQ1MjkzYWFjOC8x
L05sSnRULXBKTWV1UnJqaUVrSlFEYmlpRVdrOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjkv
YTY3OTk2LTU0ZjEtNGYxZS1hNzYwLThlMGQ1MjkzYWFjOC8xLzByb21HS3RMWUVM
dUpjUm5uZ2QxNURCdGNjWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi2RsDANBgkqhkiG9w0BAQsFAAOC
AQEAsCiMqxXHvuo3NfBXJ2YfvY9eOTNDKFqadbjpGxJfSCSalpYBKXpwTFWXV+MY
1C1iwm/CYQ0gBdOXk2Fn+1JujbNGMFbmM0PJva+LtVv1d0zKgVGsddP/d1jEowG/
W8Jdb7MiQRnEeEo55Y+m2iYPpTuJlJJDB22hnaclME+GZ71m2NTmzNvBDJEIfRRu
yTUWn12ScSFKtnGWrDyZQaZK+3AjsglGBCk4XltQeH3WPTNh/LHJ73qt2DaBdVod
ozwH7ooZ2kJ8U8uRnb8KhokuHaVF5vovXjVN4jUNpcBdroEyHZw+Svs8rCop9ilE
yzLhhWMJY6/Iln2D/Zd0vdMaxg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:39 2023 by rpki-client on console-fra.rpki-client.org