Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/6ea8f7-cb4a-4e4e-ad79-ac87171f4e5c/1/mQ44jx-POpIVSzKijEtfEvT88oc.roa
File: mQ44jx-POpIVSzKijEtfEvT88oc.roa (raw, json)
Hash identifier: Um8rw7FgzTn4NhMVgc0MYG1BFyrM9Xw+47lkxALwOFs=
Subject key identifier: 99:0E:38:8F:1F:8F:3A:92:15:4B:32:A2:8C:4B:5F:12:F4:FC:F2:87
Certificate issuer: /CN=9eec34baf922028c3432f8f8f22bda6af86b77b2
Certificate serial: 08D65FDD
Authority key identifier: 9E:EC:34:BA:F9:22:02:8C:34:32:F8:F8:F2:2B:DA:6A:F8:6B:77:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nuw0uvkiAow0Mvj48ivaavhrd7I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/6ea8f7-cb4a-4e4e-ad79-ac87171f4e5c/1/mQ44jx-POpIVSzKijEtfEvT88oc.roa
Signing time: Mon 06 Jun 2022 15:28:22 +0000
ROA not before: Mon 06 Jun 2022 15:28:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207976
IP address blocks: 45.150.212.0/22 maxlen: 22
2a0f:100::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148266973 (0x8d65fdd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9eec34baf922028c3432f8f8f22bda6af86b77b2
Validity
Not Before: Jun 6 15:28:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=990e388f1f8f3a92154b32a28c4b5f12f4fcf287
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f0:10:9b:ec:69:5a:18:32:e9:6d:43:3a:b3:
e9:da:b5:2c:88:40:5b:ab:9c:3a:0d:21:58:f7:01:
08:61:57:12:f7:c5:75:15:7f:ac:35:bb:cb:a2:03:
3c:18:f1:91:3a:3d:e3:2c:7a:69:4e:93:d2:45:2d:
44:dd:ab:68:33:b2:bf:ed:95:cb:26:44:e3:57:d2:
83:33:ff:0a:ea:19:86:7e:fa:15:46:17:82:cc:b3:
d3:db:1d:f0:48:32:8f:7f:03:94:be:15:65:b4:00:
bf:d5:f6:1a:2f:31:04:db:91:62:a5:5b:e2:fd:44:
24:bd:1d:50:5f:88:10:00:d1:b4:d5:af:c8:24:2c:
6f:bc:88:52:8d:db:21:22:30:c8:d0:d8:76:55:88:
14:d7:b2:2d:59:23:04:0d:e4:89:ad:17:c0:e4:a7:
fd:aa:e7:06:f5:00:f8:9a:b0:f2:8b:a8:0d:63:d0:
ba:0d:cc:b7:35:c7:c8:b5:9c:92:38:45:54:74:e4:
79:3b:c3:61:51:42:97:7d:91:b4:6a:96:17:b2:ca:
a9:0b:03:6d:6f:eb:b9:13:7a:4e:56:6a:13:ea:ef:
0d:c6:f9:d1:ef:35:85:c4:25:d0:6c:d3:0d:e2:91:
3a:7a:54:ee:65:28:24:3d:f2:ab:55:4c:8b:4c:3c:
d6:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:0E:38:8F:1F:8F:3A:92:15:4B:32:A2:8C:4B:5F:12:F4:FC:F2:87
X509v3 Authority Key Identifier:
keyid:9E:EC:34:BA:F9:22:02:8C:34:32:F8:F8:F2:2B:DA:6A:F8:6B:77:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nuw0uvkiAow0Mvj48ivaavhrd7I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/6ea8f7-cb4a-4e4e-ad79-ac87171f4e5c/1/mQ44jx-POpIVSzKijEtfEvT88oc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/6ea8f7-cb4a-4e4e-ad79-ac87171f4e5c/1/nuw0uvkiAow0Mvj48ivaavhrd7I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.212.0/22
IPv6:
2a0f:100::/29
Signature Algorithm: sha256WithRSAEncryption
0b:d6:88:c6:10:d2:ef:db:ee:9d:f7:03:8a:18:85:4e:f5:c1:
9c:a1:1f:04:8a:f9:2a:42:85:ee:57:8c:c3:3e:c8:f4:95:d0:
17:e7:77:aa:07:f9:e9:0a:a1:1d:cc:1b:c5:a1:52:d0:40:b0:
f9:39:64:04:15:fa:1c:e6:90:bc:43:9c:8c:66:df:2e:27:25:
d1:19:ca:a4:23:c8:6c:21:9c:ca:2e:2a:b6:56:9a:eb:8d:55:
f0:fa:8c:d1:8f:99:d8:b8:58:06:27:ee:68:3a:0f:ba:30:3b:
0c:46:0b:38:39:77:b8:ce:24:15:d0:73:bf:50:ee:2e:83:5d:
62:a5:5a:f1:d7:72:f2:87:53:d6:7f:a5:17:b0:96:d3:52:8f:
7c:01:40:0d:96:df:2b:c6:73:5a:0b:ec:dd:92:82:f1:ca:63:
3d:12:89:5b:ed:fa:f9:a1:d5:66:55:76:b8:a9:47:a3:4d:73:
13:60:f3:15:03:2a:12:df:5f:23:8f:9e:6c:66:9c:99:9e:7f:
2a:c1:25:5d:e1:a3:cc:c4:08:c4:c0:69:29:56:6f:96:4a:18:
51:bb:b9:c7:bf:0f:c8:65:93:97:ce:77:c6:5c:de:5a:4f:e8:
9f:d3:1b:3f:3a:c9:57:1c:ae:96:39:6f:28:a5:76:3c:e4:3f:
24:dd:7d:eb
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIECNZf3TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ZWVjMzRiYWY5MjIwMjhjMzQzMmY4ZjhmMjJiZGE2YWY4NmI3N2IyMB4XDTIyMDYw
NjE1MjgyMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTkwZTM4OGYxZjhm
M2E5MjE1NGIzMmEyOGM0YjVmMTJmNGZjZjI4NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKrwEJvsaVoYMultQzqz6dq1LIhAW6ucOg0hWPcBCGFXEvfF
dRV/rDW7y6IDPBjxkTo94yx6aU6T0kUtRN2raDOyv+2VyyZE41fSgzP/CuoZhn76
FUYXgsyz09sd8Egyj38DlL4VZbQAv9X2Gi8xBNuRYqVb4v1EJL0dUF+IEADRtNWv
yCQsb7yIUo3bISIwyNDYdlWIFNeyLVkjBA3kia0XwOSn/arnBvUA+Jqw8ouoDWPQ
ug3MtzXHyLWckjhFVHTkeTvDYVFCl32RtGqWF7LKqQsDbW/ruRN6TlZqE+rvDcb5
0e81hcQl0GzTDeKROnpU7mUoJD3yq1VMi0w81mcCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBSZDjiPH486khVLMqKMS18S9PzyhzAfBgNVHSMEGDAWgBSe7DS6+SICjDQy
+PjyK9pq+Gt3sjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L251dzB1dmtpQW93ME12ajQ4aXZhYXZocmQ3SS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzQvNmVhOGY3LWNiNGEtNGU0ZS1hZDc5LWFjODcxNzFmNGU1Yy8x
L21RNDRqeC1QT3BJVlN6S2lqRXRmRXZUODhvYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzQv
NmVhOGY3LWNiNGEtNGU0ZS1hZDc5LWFjODcxNzFmNGU1Yy8xL251dzB1dmtpQW93
ME12ajQ4aXZhYXZocmQ3SS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAi2W1DANBAIAAjAHAwUDKg8BADAN
BgkqhkiG9w0BAQsFAAOCAQEAC9aIxhDS79vunfcDihiFTvXBnKEfBIr5KkKF7leM
wz7I9JXQF+d3qgf56QqhHcwbxaFS0ECw+TlkBBX6HOaQvEOcjGbfLicl0RnKpCPI
bCGcyi4qtlaa641V8PqM0Y+Z2LhYBifuaDoPujA7DEYLODl3uM4kFdBzv1DuLoNd
YqVa8ddy8odT1n+lF7CW01KPfAFADZbfK8ZzWgvs3ZKC8cpjPRKJW+36+aHVZlV2
uKlHo01zE2DzFQMqEt9fI4+ebGacmZ5/KsElXeGjzMQIxMBpKVZvlkoYUbu5x78P
yGWTl853xlzeWk/on9MbPzrJVxyuljlvKKV2POQ/JN196w==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:33 2023 by rpki-client on console-fra.rpki-client.org