Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/68f44b-3675-4ad8-a0ca-74ba26aaf1f6/1/Dn1KNIpwwvPX2WD9PV6_6mb0hJw.roa
File: Dn1KNIpwwvPX2WD9PV6_6mb0hJw.roa (raw, json)
Hash identifier: Fxl5RgDYTJJnmJIc2JNgVzGXXdJzijQyhve8SavQflc=
Subject key identifier: 0E:7D:4A:34:8A:70:C2:F3:D7:D9:60:FD:3D:5E:BF:EA:66:F4:84:9C
Certificate issuer: /CN=36980b4863a4c0fc109e933a9f8f7892e42622f8
Certificate serial: 063A7D37
Authority key identifier: 36:98:0B:48:63:A4:C0:FC:10:9E:93:3A:9F:8F:78:92:E4:26:22:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpgLSGOkwPwQnpM6n494kuQmIvg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/68f44b-3675-4ad8-a0ca-74ba26aaf1f6/1/Dn1KNIpwwvPX2WD9PV6_6mb0hJw.roa
Signing time: Sat 01 Jan 2022 03:52:30 +0000
ROA not before: Sat 01 Jan 2022 03:52:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49619
IP address blocks: 45.130.24.0/22 maxlen: 31
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104496439 (0x63a7d37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36980b4863a4c0fc109e933a9f8f7892e42622f8
Validity
Not Before: Jan 1 03:52:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e7d4a348a70c2f3d7d960fd3d5ebfea66f4849c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ca:b1:eb:1a:78:de:32:87:7c:f3:56:fc:b9:
14:78:ab:2f:da:d4:c8:e8:fc:77:7f:a4:72:21:70:
10:50:34:bc:1f:3c:60:f5:a3:e8:a5:46:ff:77:1a:
e2:0d:74:51:f0:a2:cd:72:96:77:7a:d5:13:d8:ce:
c4:fb:7c:8a:a0:74:d8:60:7d:91:cf:25:0b:89:a9:
bd:0a:87:5f:39:ff:fe:f3:30:94:bd:33:8a:c8:ae:
84:40:47:8d:3c:5e:08:60:d1:5c:16:ec:29:eb:be:
4a:56:8e:e0:cc:63:e3:f6:cb:11:17:4d:b0:90:f9:
c1:d7:db:83:9e:8d:9e:29:9b:7f:58:b7:21:99:0c:
35:6d:13:e7:80:8e:ca:cd:c5:02:88:cd:7e:72:e5:
bb:68:c6:6e:86:77:e2:17:d5:42:db:f5:cd:49:b6:
ce:73:9b:bf:a8:3f:20:75:a0:2d:63:77:5d:ee:18:
03:c7:37:db:a0:bc:21:83:73:55:34:b4:dd:41:08:
a2:6e:ac:49:fc:57:01:db:98:f8:b6:5b:84:ad:01:
4b:e3:d0:d5:83:6d:80:5a:ba:2b:6e:f9:97:4d:99:
97:3c:6a:84:d6:95:0a:0f:c0:d6:9d:b8:f8:49:9c:
63:33:7a:5b:71:38:00:30:7b:d4:a4:bd:27:0e:c6:
83:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:7D:4A:34:8A:70:C2:F3:D7:D9:60:FD:3D:5E:BF:EA:66:F4:84:9C
X509v3 Authority Key Identifier:
keyid:36:98:0B:48:63:A4:C0:FC:10:9E:93:3A:9F:8F:78:92:E4:26:22:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpgLSGOkwPwQnpM6n494kuQmIvg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/68f44b-3675-4ad8-a0ca-74ba26aaf1f6/1/Dn1KNIpwwvPX2WD9PV6_6mb0hJw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/68f44b-3675-4ad8-a0ca-74ba26aaf1f6/1/NpgLSGOkwPwQnpM6n494kuQmIvg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.24.0/22
Signature Algorithm: sha256WithRSAEncryption
af:6c:4e:31:66:48:bd:c1:f3:4d:fa:f0:10:fe:6a:66:46:fb:
f7:51:35:f5:8f:00:ce:55:27:bf:b8:91:40:49:0f:de:f9:31:
b2:97:2e:61:5c:5b:a7:37:86:73:d9:2e:f5:61:d5:09:47:85:
ea:72:d0:e4:9e:c5:5f:c6:ae:c4:23:be:57:d6:08:6e:e3:fe:
a7:3a:50:08:7a:8f:55:c1:43:2a:86:be:1c:ab:9e:1e:74:fb:
0f:63:27:c8:fd:6c:76:31:f1:9c:d3:a5:9c:d0:80:09:36:97:
55:20:d9:f3:7e:72:ab:ca:e8:a9:f1:cb:b1:b1:9b:19:ff:c8:
80:bb:82:0e:9e:92:13:75:cd:31:84:96:ce:6e:1d:11:dd:99:
d9:c7:56:c1:73:f2:6e:f1:29:09:e4:99:d0:e3:52:1a:ae:d2:
b7:e7:9c:f6:f6:90:a3:d3:a3:9f:d8:df:9a:3c:3f:e6:e2:21:
71:41:42:fe:e6:a6:74:6e:bc:22:95:8b:0a:52:bf:78:e2:4b:
8a:26:78:a9:34:87:7d:58:3f:c5:d5:e1:49:74:08:27:8d:e2:
16:df:05:c8:da:32:cb:02:e0:de:9f:71:08:0c:11:7a:9f:44:
7a:32:0b:1b:18:c9:3d:55:ea:68:5f:5e:05:93:03:5a:bf:b9:
c2:55:d3:f0
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBjp9NzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
Njk4MGI0ODYzYTRjMGZjMTA5ZTkzM2E5ZjhmNzg5MmU0MjYyMmY4MB4XDTIyMDEw
MTAzNTIzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGU3ZDRhMzQ4YTcw
YzJmM2Q3ZDk2MGZkM2Q1ZWJmZWE2NmY0ODQ5YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMvKsesaeN4yh3zzVvy5FHirL9rUyOj8d3+kciFwEFA0vB88
YPWj6KVG/3ca4g10UfCizXKWd3rVE9jOxPt8iqB02GB9kc8lC4mpvQqHXzn//vMw
lL0zisiuhEBHjTxeCGDRXBbsKeu+SlaO4Mxj4/bLERdNsJD5wdfbg56Nnimbf1i3
IZkMNW0T54COys3FAojNfnLlu2jGboZ34hfVQtv1zUm2znObv6g/IHWgLWN3Xe4Y
A8c326C8IYNzVTS03UEIom6sSfxXAduY+LZbhK0BS+PQ1YNtgFq6K275l02Zlzxq
hNaVCg/A1p24+EmcYzN6W3E4ADB71KS9Jw7Gg2sCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQOfUo0inDC89fZYP09Xr/qZvSEnDAfBgNVHSMEGDAWgBQ2mAtIY6TA/BCe
kzqfj3iS5CYi+DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05wZ0xTR09rd1B3UW5wTTZuNDk0a3VRbUl2Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzAvNjhmNDRiLTM2NzUtNGFkOC1hMGNhLTc0YmEyNmFhZjFmNi8x
L0RuMUtOSXB3d3ZQWDJXRDlQVjZfNm1iMGhKdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzAv
NjhmNDRiLTM2NzUtNGFkOC1hMGNhLTc0YmEyNmFhZjFmNi8xL05wZ0xTR09rd1B3
UW5wTTZuNDk0a3VRbUl2Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi2CGDANBgkqhkiG9w0BAQsFAAOC
AQEAr2xOMWZIvcHzTfrwEP5qZkb791E19Y8AzlUnv7iRQEkP3vkxspcuYVxbpzeG
c9ku9WHVCUeF6nLQ5J7FX8auxCO+V9YIbuP+pzpQCHqPVcFDKoa+HKueHnT7D2Mn
yP1sdjHxnNOlnNCACTaXVSDZ835yq8roqfHLsbGbGf/IgLuCDp6SE3XNMYSWzm4d
Ed2Z2cdWwXPybvEpCeSZ0ONSGq7St+ec9vaQo9Ojn9jfmjw/5uIhcUFC/uamdG68
IpWLClK/eOJLiiZ4qTSHfVg/xdXhSXQIJ43iFt8FyNoyywLg3p9xCAwRep9EejIL
GxjJPVXqaF9eBZMDWr+5wlXT8A==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:53 2023 by rpki-client on console-ams.rpki-client.org