Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/2ae7c3-98a5-4cda-9bae-ba645f19915a/1/nKYWvUoKpvUCSYEpgry_EAjh5QQ.roa
File: nKYWvUoKpvUCSYEpgry_EAjh5QQ.roa (raw, json)
Hash identifier: J7MoS3K3JgLzroswSwkxLIVWDxlNxe5tf3hVDWO2CM4=
Subject key identifier: 9C:A6:16:BD:4A:0A:A6:F5:02:49:81:29:82:BC:BF:10:08:E1:E5:04
Certificate issuer: /CN=e88c04771e2bfac8f60f1b4c9cbd093aafea974e
Certificate serial: 05690E9D
Authority key identifier: E8:8C:04:77:1E:2B:FA:C8:F6:0F:1B:4C:9C:BD:09:3A:AF:EA:97:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6IwEdx4r-sj2DxtMnL0JOq_ql04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/2ae7c3-98a5-4cda-9bae-ba645f19915a/1/nKYWvUoKpvUCSYEpgry_EAjh5QQ.roa
Signing time: Sat 01 Jan 2022 07:02:05 +0000
ROA not before: Sat 01 Jan 2022 07:02:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212362
IP address blocks: 45.129.105.0/24 maxlen: 24
2a0e:47c6::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90771101 (0x5690e9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e88c04771e2bfac8f60f1b4c9cbd093aafea974e
Validity
Not Before: Jan 1 07:02:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ca616bd4a0aa6f50249812982bcbf1008e1e504
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:bf:b2:e8:57:45:d4:4d:4c:5f:9a:60:40:56:
36:22:cb:11:1f:56:47:bd:fc:c8:05:9f:6c:44:ab:
0e:69:17:17:38:15:65:79:2d:98:56:d3:f3:62:7a:
fd:06:e9:da:94:c3:dc:09:5c:56:16:23:ec:36:19:
70:ad:45:10:fe:6f:18:9b:c9:a6:a6:d0:96:db:dd:
80:4a:73:b7:07:98:b5:20:77:38:62:a2:ee:4c:e5:
9c:33:a5:7e:f0:ae:7f:62:5d:d7:e2:9e:eb:39:74:
2f:18:7d:d7:87:e6:8b:43:e5:79:9c:ba:61:b8:79:
c5:45:9b:43:f6:6c:af:35:fc:48:d0:1e:da:2b:1d:
5c:09:c8:53:58:09:37:4d:ac:f9:e7:68:c9:16:dd:
ee:61:d2:2e:e2:ee:2e:e6:52:25:27:c9:46:ab:3e:
1e:dd:49:25:48:32:bd:20:06:ae:43:8a:c3:b3:fa:
38:4a:f7:0b:de:35:b1:43:40:2c:ff:11:df:10:2e:
9e:15:6c:ba:65:5a:f6:ba:8e:bb:7d:d3:91:6c:65:
0f:03:6d:36:a9:cc:98:14:f1:3d:ef:8b:36:47:d3:
d7:99:8f:7f:ee:ff:e1:0d:a1:5e:c4:0d:68:54:62:
ba:d4:85:37:88:a3:de:b2:0e:d8:f0:58:b2:01:cd:
f5:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:A6:16:BD:4A:0A:A6:F5:02:49:81:29:82:BC:BF:10:08:E1:E5:04
X509v3 Authority Key Identifier:
keyid:E8:8C:04:77:1E:2B:FA:C8:F6:0F:1B:4C:9C:BD:09:3A:AF:EA:97:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6IwEdx4r-sj2DxtMnL0JOq_ql04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/2ae7c3-98a5-4cda-9bae-ba645f19915a/1/nKYWvUoKpvUCSYEpgry_EAjh5QQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/2ae7c3-98a5-4cda-9bae-ba645f19915a/1/6IwEdx4r-sj2DxtMnL0JOq_ql04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.105.0/24
IPv6:
2a0e:47c6::/32
Signature Algorithm: sha256WithRSAEncryption
1a:12:68:d8:06:93:41:2e:89:bb:00:37:fc:2d:69:24:65:3f:
57:34:b0:c3:6c:1a:bd:bf:43:15:71:23:ae:fc:77:5c:cc:85:
84:fd:09:87:50:da:f3:76:dc:a5:ba:86:a6:b0:fb:44:25:84:
73:95:6f:c6:ed:67:3e:bc:a8:c0:f4:15:26:bf:63:12:09:f1:
8f:61:bf:a2:ed:05:5f:06:f8:40:2a:8b:7c:9b:8b:bb:37:87:
67:b3:fb:c7:d0:b7:2f:8d:86:b5:b5:de:a0:7c:01:15:86:13:
0d:1b:4b:21:ce:dc:57:94:17:88:f6:bb:ea:94:46:ca:43:b5:
86:ae:b1:bf:3c:3b:77:0c:7b:ac:64:f4:84:2a:db:7b:72:5c:
99:1b:83:2e:98:57:d8:41:38:69:60:10:e5:f1:fe:1d:22:c1:
a7:ee:ed:31:4e:48:9d:63:9b:e9:cf:47:59:9e:69:0c:c3:b7:
e3:4f:92:91:31:dd:59:43:50:84:6d:7c:d8:97:e8:b9:dc:31:
59:26:85:ea:83:e0:fc:0d:b6:82:25:60:93:5b:35:74:d0:af:
f3:28:c6:1c:df:ba:01:ca:14:29:bf:34:b3:dd:8d:35:cf:0e:
6d:f8:3c:a4:97:f4:e1:0e:40:e6:29:2e:12:74:9d:94:b4:6e:
dd:5e:35:08
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEBWkOnTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
ODhjMDQ3NzFlMmJmYWM4ZjYwZjFiNGM5Y2JkMDkzYWFmZWE5NzRlMB4XDTIyMDEw
MTA3MDIwNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWNhNjE2YmQ0YTBh
YTZmNTAyNDk4MTI5ODJiY2JmMTAwOGUxZTUwNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK+/suhXRdRNTF+aYEBWNiLLER9WR738yAWfbESrDmkXFzgV
ZXktmFbT82J6/Qbp2pTD3AlcVhYj7DYZcK1FEP5vGJvJpqbQltvdgEpztweYtSB3
OGKi7kzlnDOlfvCuf2Jd1+Ke6zl0Lxh914fmi0PleZy6Ybh5xUWbQ/ZsrzX8SNAe
2isdXAnIU1gJN02s+edoyRbd7mHSLuLuLuZSJSfJRqs+Ht1JJUgyvSAGrkOKw7P6
OEr3C941sUNALP8R3xAunhVsumVa9rqOu33TkWxlDwNtNqnMmBTxPe+LNkfT15mP
f+7/4Q2hXsQNaFRiutSFN4ij3rIO2PBYsgHN9bsCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBScpha9Sgqm9QJJgSmCvL8QCOHlBDAfBgNVHSMEGDAWgBTojAR3Hiv6yPYP
G0ycvQk6r+qXTjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzZJd0VkeDRyLXNqMkR4dE1uTDBKT3FfcWwwNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2IvMmFlN2MzLTk4YTUtNGNkYS05YmFlLWJhNjQ1ZjE5OTE1YS8x
L25LWVd2VW9LcHZVQ1NZRXBncnlfRUFqaDVRUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Iv
MmFlN2MzLTk4YTUtNGNkYS05YmFlLWJhNjQ1ZjE5OTE1YS8xLzZJd0VkeDRyLXNq
MkR4dE1uTDBKT3FfcWwwNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAC2BaTANBAIAAjAHAwUAKg5HxjAN
BgkqhkiG9w0BAQsFAAOCAQEAGhJo2AaTQS6JuwA3/C1pJGU/VzSww2wavb9DFXEj
rvx3XMyFhP0Jh1Da83bcpbqGprD7RCWEc5Vvxu1nPryowPQVJr9jEgnxj2G/ou0F
Xwb4QCqLfJuLuzeHZ7P7x9C3L42GtbXeoHwBFYYTDRtLIc7cV5QXiPa76pRGykO1
hq6xvzw7dwx7rGT0hCrbe3JcmRuDLphX2EE4aWAQ5fH+HSLBp+7tMU5InWOb6c9H
WZ5pDMO340+SkTHdWUNQhG182JfoudwxWSaF6oPg/A22giVgk1s1dNCv8yjGHN+6
AcoUKb80s92NNc8Obfg8pJf04Q5A5ikuEnSdlLRu3V41CA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:00 2023 by rpki-client on console-fra.rpki-client.org