Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/980e66-3631-4fde-8e2d-c849bc0f359b/1/ngyjRbFg-3n3LnpZL6Ohp_NDPcM.roa
File: ngyjRbFg-3n3LnpZL6Ohp_NDPcM.roa (raw, json)
Hash identifier: oBnQ6WWPaexmkBhnWVG1rpGxevfnXSSCOnJLAHkI810=
Subject key identifier: 9E:0C:A3:45:B1:60:FB:79:F7:2E:7A:59:2F:A3:A1:A7:F3:43:3D:C3
Certificate issuer: /CN=75f1a763745c25dad28f4a8116688e82ce12028b
Certificate serial: 0487425D
Authority key identifier: 75:F1:A7:63:74:5C:25:DA:D2:8F:4A:81:16:68:8E:82:CE:12:02:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dfGnY3RcJdrSj0qBFmiOgs4SAos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/980e66-3631-4fde-8e2d-c849bc0f359b/1/ngyjRbFg-3n3LnpZL6Ohp_NDPcM.roa
Signing time: Sat 01 Jan 2022 05:02:20 +0000
ROA not before: Sat 01 Jan 2022 05:02:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47890
IP address blocks: 45.8.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75973213 (0x487425d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75f1a763745c25dad28f4a8116688e82ce12028b
Validity
Not Before: Jan 1 05:02:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e0ca345b160fb79f72e7a592fa3a1a7f3433dc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:43:98:19:f6:72:93:f1:24:c0:72:fe:48:57:
94:90:d1:25:63:a5:83:6b:0d:74:55:23:60:3b:aa:
bb:fe:0c:46:54:56:31:f4:a9:b5:4c:97:46:84:33:
58:38:93:64:19:22:d8:c2:37:38:ea:fd:73:56:7b:
2b:82:51:6a:55:57:2a:c4:32:e1:a1:7b:bd:da:e4:
cb:c4:c8:a7:1a:37:c7:e2:9d:a0:c0:f3:cf:57:5c:
52:87:53:a6:63:cd:41:e3:58:cb:a1:5c:c7:05:06:
a5:b6:d5:bc:d2:15:21:e6:b5:0d:81:e0:22:6e:35:
13:72:89:24:a8:52:8b:45:56:f2:09:e8:54:90:6f:
ed:00:68:ae:10:a1:ab:c2:92:95:2b:4b:2d:52:a6:
a1:80:ef:76:ef:83:24:1a:69:8c:38:7e:78:c4:07:
47:cb:81:87:d3:dd:c2:ae:1e:77:8c:38:9c:8f:4e:
36:42:05:6c:d5:5a:6d:0c:87:e1:bc:a0:8f:34:f6:
cc:28:4b:fc:9c:ea:8f:61:09:39:4f:94:6a:66:4c:
d7:f6:69:64:65:41:ba:01:17:2e:b1:83:4b:ba:78:
f9:81:e7:fa:56:c4:92:07:1a:84:b2:42:ed:0c:cf:
0e:27:88:62:08:f0:3e:09:05:2c:6f:f5:1e:bd:c5:
28:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:0C:A3:45:B1:60:FB:79:F7:2E:7A:59:2F:A3:A1:A7:F3:43:3D:C3
X509v3 Authority Key Identifier:
keyid:75:F1:A7:63:74:5C:25:DA:D2:8F:4A:81:16:68:8E:82:CE:12:02:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dfGnY3RcJdrSj0qBFmiOgs4SAos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/980e66-3631-4fde-8e2d-c849bc0f359b/1/ngyjRbFg-3n3LnpZL6Ohp_NDPcM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/980e66-3631-4fde-8e2d-c849bc0f359b/1/dfGnY3RcJdrSj0qBFmiOgs4SAos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.44.0/24
Signature Algorithm: sha256WithRSAEncryption
17:9e:09:32:22:1c:46:20:f0:61:b9:4a:0c:75:ce:83:97:a2:
d2:5f:0a:bb:80:6c:97:ed:51:05:0d:be:96:83:4b:9c:6d:60:
35:20:47:4b:a2:b9:e1:9a:95:a0:0a:20:52:45:66:a2:40:a4:
e8:c1:4a:4d:74:93:50:95:41:84:90:a7:00:83:75:d3:69:80:
64:ca:39:f7:23:d0:74:2c:f2:aa:82:ec:8a:41:3a:06:3b:4b:
6c:5d:69:95:75:78:12:e5:69:f8:bd:a5:8e:6b:9a:26:f6:f0:
38:12:11:07:ce:a8:a6:09:ea:13:a5:92:a2:4c:5e:91:76:09:
9e:dd:13:09:81:97:90:36:a0:d0:1f:0d:75:09:57:07:31:8c:
25:24:6e:8b:c0:30:80:29:84:0a:9e:83:44:c1:b2:34:d9:11:
e5:3d:46:30:68:b7:c0:a3:82:ab:7d:a3:57:fd:2d:c8:0f:47:
e6:8e:4c:97:8e:0a:c9:9a:10:07:37:ea:b2:eb:9a:fa:54:31:
62:b6:0a:95:b5:64:80:cc:0d:42:b0:83:2d:09:a9:aa:6c:84:
d7:37:57:f3:92:1a:19:75:80:02:d0:73:00:43:dd:ae:86:36:
c2:16:fd:45:ce:6e:f1:15:6c:bd:e6:fa:40:06:83:64:51:25:
46:04:8f:5b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBIdCXTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NWYxYTc2Mzc0NWMyNWRhZDI4ZjRhODExNjY4OGU4MmNlMTIwMjhiMB4XDTIyMDEw
MTA1MDIyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWUwY2EzNDViMTYw
ZmI3OWY3MmU3YTU5MmZhM2ExYTdmMzQzM2RjMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMpDmBn2cpPxJMBy/khXlJDRJWOlg2sNdFUjYDuqu/4MRlRW
MfSptUyXRoQzWDiTZBki2MI3OOr9c1Z7K4JRalVXKsQy4aF7vdrky8TIpxo3x+Kd
oMDzz1dcUodTpmPNQeNYy6FcxwUGpbbVvNIVIea1DYHgIm41E3KJJKhSi0VW8gno
VJBv7QBorhChq8KSlStLLVKmoYDvdu+DJBppjDh+eMQHR8uBh9Pdwq4ed4w4nI9O
NkIFbNVabQyH4bygjzT2zChL/Jzqj2EJOU+UamZM1/ZpZGVBugEXLrGDS7p4+YHn
+lbEkgcahLJC7QzPDieIYgjwPgkFLG/1Hr3FKAsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSeDKNFsWD7efcuelkvo6Gn80M9wzAfBgNVHSMEGDAWgBR18adjdFwl2tKP
SoEWaI6CzhICizAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RmR25ZM1JjSmRyU2owcUJGbWlPZ3M0U0Fvcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2IvOTgwZTY2LTM2MzEtNGZkZS04ZTJkLWM4NDliYzBmMzU5Yi8x
L25neWpSYkZnLTNuM0xucFpMNk9ocF9ORFBjTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Iv
OTgwZTY2LTM2MzEtNGZkZS04ZTJkLWM4NDliYzBmMzU5Yi8xL2RmR25ZM1JjSmRy
U2owcUJGbWlPZ3M0U0Fvcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC0ILDANBgkqhkiG9w0BAQsFAAOC
AQEAF54JMiIcRiDwYblKDHXOg5ei0l8Ku4Bsl+1RBQ2+loNLnG1gNSBHS6K54ZqV
oAogUkVmokCk6MFKTXSTUJVBhJCnAIN102mAZMo59yPQdCzyqoLsikE6BjtLbF1p
lXV4EuVp+L2ljmuaJvbwOBIRB86opgnqE6WSokxekXYJnt0TCYGXkDag0B8NdQlX
BzGMJSRui8AwgCmECp6DRMGyNNkR5T1GMGi3wKOCq32jV/0tyA9H5o5Ml44KyZoQ
Bzfqsuua+lQxYrYKlbVkgMwNQrCDLQmpqmyE1zdX85IaGXWAAtBzAEPdroY2whb9
Rc5u8RVsveb6QAaDZFElRgSPWw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:28 2024 by rpki-client on console-ams.rpki-client.org