Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/1f3f11-5499-4c7b-b2e4-051b8984866e/1/NDfLZAtq8yMO8s5XMqQNalDsvJQ.roa
File: NDfLZAtq8yMO8s5XMqQNalDsvJQ.roa (raw, json)
Hash identifier: duBcLQu/azrIHoDFzKQygjpypSNqxolgZaidtFk+kXg=
Subject key identifier: 34:37:CB:64:0B:6A:F3:23:0E:F2:CE:57:32:A4:0D:6A:50:EC:BC:94
Certificate issuer: /CN=054d4fe780fe45330780deb6ec384cb9493f2df2
Certificate serial: 030B0670
Authority key identifier: 05:4D:4F:E7:80:FE:45:33:07:80:DE:B6:EC:38:4C:B9:49:3F:2D:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BU1P54D-RTMHgN627DhMuUk_LfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/1f3f11-5499-4c7b-b2e4-051b8984866e/1/NDfLZAtq8yMO8s5XMqQNalDsvJQ.roa
Signing time: Sat 01 Jan 2022 13:00:43 +0000
ROA not before: Sat 01 Jan 2022 13:00:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203787
IP address blocks: 185.30.108.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51054192 (0x30b0670)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=054d4fe780fe45330780deb6ec384cb9493f2df2
Validity
Not Before: Jan 1 13:00:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3437cb640b6af3230ef2ce5732a40d6a50ecbc94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c6:04:67:c9:e2:e9:18:02:ba:16:36:db:aa:
d8:b1:a4:53:d4:c2:f4:95:31:3f:f3:82:f2:fe:33:
3d:9d:c0:e7:b7:ea:17:6d:83:63:25:98:71:20:27:
b0:a9:11:85:4e:ac:27:d3:e2:9c:b1:d1:1a:0c:f1:
e5:eb:fa:8e:6f:0f:64:26:73:7e:fe:7e:3b:4a:8e:
6f:85:3b:28:d3:0d:6a:26:23:b7:da:1a:b3:c3:9d:
3e:08:cc:5c:8d:3a:03:ae:f1:63:13:dc:01:3d:85:
fb:97:6e:7a:43:4e:b0:73:90:fe:32:ee:a2:25:58:
6f:11:fb:78:9b:38:5b:ee:62:85:0a:eb:2b:a2:f2:
58:6c:cf:0a:07:2a:92:7a:63:b5:d0:41:7c:53:ab:
1b:93:08:18:15:81:0a:cd:d0:9b:80:bd:1b:04:77:
ec:83:e2:da:88:bf:41:dd:3d:46:e9:5e:fa:eb:ce:
12:bf:c7:03:2a:17:51:29:10:01:7a:68:82:0d:f1:
5f:52:51:70:01:12:ac:6e:4c:ac:c5:3c:d4:3b:80:
4c:45:92:4b:b0:06:1d:c9:43:ac:65:f4:77:db:57:
5e:66:2f:e3:4b:98:ed:b6:4a:33:f7:99:89:c4:50:
b8:c0:c9:09:02:f8:0d:6b:91:ca:93:62:8d:7a:81:
bc:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:37:CB:64:0B:6A:F3:23:0E:F2:CE:57:32:A4:0D:6A:50:EC:BC:94
X509v3 Authority Key Identifier:
keyid:05:4D:4F:E7:80:FE:45:33:07:80:DE:B6:EC:38:4C:B9:49:3F:2D:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BU1P54D-RTMHgN627DhMuUk_LfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/1f3f11-5499-4c7b-b2e4-051b8984866e/1/NDfLZAtq8yMO8s5XMqQNalDsvJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/1f3f11-5499-4c7b-b2e4-051b8984866e/1/BU1P54D-RTMHgN627DhMuUk_LfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.30.108.0/22
Signature Algorithm: sha256WithRSAEncryption
52:67:90:fd:f5:0f:d0:4e:4a:19:1e:88:81:a4:73:df:b4:29:
ee:8d:77:75:92:f4:39:37:32:ee:4c:89:eb:c7:a0:2a:5e:f4:
27:9d:be:a5:be:91:2d:89:a2:68:2f:29:98:e1:30:85:c3:0b:
24:4b:2a:ba:27:06:21:73:8d:24:ab:25:2a:da:7a:22:6f:0a:
c4:e2:4b:b1:b6:43:22:b7:f7:b7:33:e3:b3:cd:10:a2:eb:4e:
9e:12:d6:b6:30:25:e8:f3:ba:24:51:79:6b:85:82:76:db:74:
a4:fc:0b:a4:5d:17:b4:e6:6d:e5:f5:28:e3:0b:4f:8f:d0:ac:
fe:a7:34:c0:9b:77:26:d5:b2:49:84:91:05:65:6b:d9:f4:57:
bf:74:ea:83:bd:aa:3b:c9:29:2b:5a:13:cc:06:92:44:92:64:
52:13:6a:a9:6a:34:31:eb:a8:73:a9:3f:73:06:a2:8a:df:ce:
cf:a4:c9:31:14:7a:a8:40:ea:ea:3f:e7:19:ac:c4:d0:7c:8c:
8a:1c:17:d6:8d:4c:b2:c7:d6:5e:57:d2:b8:f8:16:74:d8:3c:
40:0d:3d:c1:2f:d8:19:10:c3:3a:73:24:6d:70:2a:6f:5d:7a:
c7:bb:05:14:41:16:f3:cd:c5:26:7d:55:03:40:6c:bf:48:b2:
21:78:06:41
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAwsGcDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NTRkNGZlNzgwZmU0NTMzMDc4MGRlYjZlYzM4NGNiOTQ5M2YyZGYyMB4XDTIyMDEw
MTEzMDA0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzQzN2NiNjQwYjZh
ZjMyMzBlZjJjZTU3MzJhNDBkNmE1MGVjYmM5NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKDGBGfJ4ukYAroWNtuq2LGkU9TC9JUxP/OC8v4zPZ3A57fq
F22DYyWYcSAnsKkRhU6sJ9PinLHRGgzx5ev6jm8PZCZzfv5+O0qOb4U7KNMNaiYj
t9oas8OdPgjMXI06A67xYxPcAT2F+5duekNOsHOQ/jLuoiVYbxH7eJs4W+5ihQrr
K6LyWGzPCgcqknpjtdBBfFOrG5MIGBWBCs3Qm4C9GwR37IPi2oi/Qd09Rule+uvO
Er/HAyoXUSkQAXpogg3xX1JRcAESrG5MrMU81DuATEWSS7AGHclDrGX0d9tXXmYv
40uY7bZKM/eZicRQuMDJCQL4DWuRypNijXqBvNMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ0N8tkC2rzIw7yzlcypA1qUOy8lDAfBgNVHSMEGDAWgBQFTU/ngP5FMweA
3rbsOEy5ST8t8jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JVMVA1NEQtUlRNSGdONjI3RGhNdVVrX0xmSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWIvMWYzZjExLTU0OTktNGM3Yi1iMmU0LTA1MWI4OTg0ODY2ZS8x
L05EZkxaQXRxOHlNTzhzNVhNcVFOYWxEc3ZKUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWIv
MWYzZjExLTU0OTktNGM3Yi1iMmU0LTA1MWI4OTg0ODY2ZS8xL0JVMVA1NEQtUlRN
SGdONjI3RGhNdVVrX0xmSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArkebDANBgkqhkiG9w0BAQsFAAOC
AQEAUmeQ/fUP0E5KGR6IgaRz37Qp7o13dZL0OTcy7kyJ68egKl70J52+pb6RLYmi
aC8pmOEwhcMLJEsquicGIXONJKslKtp6Im8KxOJLsbZDIrf3tzPjs80QoutOnhLW
tjAl6PO6JFF5a4WCdtt0pPwLpF0XtOZt5fUo4wtPj9Cs/qc0wJt3JtWySYSRBWVr
2fRXv3Tqg72qO8kpK1oTzAaSRJJkUhNqqWo0Meuoc6k/cwaiit/Oz6TJMRR6qEDq
6j/nGazE0HyMihwX1o1MssfWXlfSuPgWdNg8QA09wS/YGRDDOnMkbXAqb116x7sF
FEEW883FJn1VA0Bsv0iyIXgGQQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:02 2023 by rpki-client on console-fra.rpki-client.org