Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/NDgJtcOe-4ZHXlymlQghhIzjPUI.roa
File: NDgJtcOe-4ZHXlymlQghhIzjPUI.roa (raw, json)
Hash identifier: F1Ds/KER89pZIJ4eqGM+ZW5aJ+Gc7JiGPuBuypBw73U=
Subject key identifier: 34:38:09:B5:C3:9E:FB:86:47:5E:5C:A6:95:08:21:84:8C:E3:3D:42
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 0839940E
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/NDgJtcOe-4ZHXlymlQghhIzjPUI.roa
Signing time: Wed 13 Apr 2022 01:19:48 +0000
ROA not before: Wed 13 Apr 2022 01:19:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12735
IP address blocks: 45.141.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137991182 (0x839940e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Apr 13 01:19:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=343809b5c39efb86475e5ca6950821848ce33d42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e4:cd:8c:c1:c1:cf:09:d8:85:14:12:d6:f7:
71:03:5d:74:0a:f7:e6:07:0a:de:6a:35:2c:46:9b:
3a:ba:5b:42:17:b9:b2:d4:a8:ad:f1:f0:51:bf:d4:
61:46:4c:af:90:ff:9a:41:7b:28:a4:e4:3a:9c:a8:
af:6a:bc:a3:09:00:9a:45:c2:a6:a3:f3:5f:11:c0:
54:28:bd:4e:a3:14:42:2c:d1:7c:67:fa:0c:cd:c3:
6b:00:e3:3f:a1:75:98:6f:69:e7:e0:08:e4:2c:fc:
46:76:1b:42:96:c9:6d:3a:df:cc:6d:bc:b2:60:dc:
d3:ce:d4:05:63:df:fa:4c:02:7e:0f:1a:c7:99:ba:
60:25:0f:22:28:3f:0c:ca:1c:b0:ea:a9:8c:f6:b1:
9d:e3:30:09:68:e9:4b:90:ad:12:07:f3:fb:a1:06:
d4:14:44:39:ff:e5:07:be:cf:c7:6d:94:a3:8d:4e:
5d:b4:94:a9:89:b0:c4:3e:31:ce:fd:71:5a:28:15:
10:53:e7:8e:f2:f5:3c:da:9e:e3:c8:e2:64:68:55:
8e:aa:16:cd:11:76:ec:80:9a:2d:f1:0f:e1:d2:4c:
4d:4f:3c:70:45:37:c2:8e:96:22:fe:98:21:b6:06:
92:c3:72:f9:46:3c:a8:10:4a:67:1d:6a:d9:22:cb:
3a:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:38:09:B5:C3:9E:FB:86:47:5E:5C:A6:95:08:21:84:8C:E3:3D:42
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/NDgJtcOe-4ZHXlymlQghhIzjPUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.148.0/24
Signature Algorithm: sha256WithRSAEncryption
52:3e:41:9f:df:82:ed:00:c8:dd:a8:b2:c1:d4:77:08:39:44:
0f:e0:41:27:92:91:68:b9:b7:af:23:03:f3:4c:26:91:2b:c5:
c8:18:ef:ec:4a:57:32:e3:3c:7d:05:be:8f:35:39:75:f4:eb:
63:9f:af:aa:bb:65:7c:77:34:ed:0c:96:ed:ad:59:ee:bf:f3:
e4:c1:e5:34:0e:1e:28:b8:c7:f0:07:34:7b:e6:1f:b8:51:24:
68:45:23:e2:de:a2:97:f4:31:3d:3f:9e:e3:66:6a:a2:d7:af:
ca:8d:25:ed:41:bb:25:27:8f:71:ae:ba:43:ab:4e:1b:62:6c:
bf:71:e3:f4:6a:12:52:9f:f6:60:f9:5c:2b:04:4a:dd:bf:06:
c9:f6:d5:51:04:82:ed:77:dc:47:e3:94:59:ad:2f:fe:68:d2:
1c:ab:5c:f1:6e:ec:32:4d:c3:97:9e:db:33:d0:4f:4d:37:b8:
95:52:ac:eb:39:75:75:d6:d3:41:f7:46:53:c8:7b:4e:75:42:
15:6a:bf:4f:39:c3:75:f9:2c:b8:b3:24:68:5e:0d:60:4d:fd:
cd:e3:8b:fb:b5:a5:f6:5e:0b:ed:ea:2c:32:87:53:a5:bd:3b:
f6:73:b5:6d:52:99:57:df:fa:fa:af:00:4b:8f:e7:f6:7b:a3:
98:23:40:2e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECDmUDjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
ODA1ZjE3YzJkNzEzM2QyZGFkM2E4ZGY3ZTM1MzE1ZTM3ZWY1ZGFmMB4XDTIyMDQx
MzAxMTk0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzQzODA5YjVjMzll
ZmI4NjQ3NWU1Y2E2OTUwODIxODQ4Y2UzM2Q0MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL/kzYzBwc8J2IUUEtb3cQNddAr35gcK3mo1LEabOrpbQhe5
stSorfHwUb/UYUZMr5D/mkF7KKTkOpyor2q8owkAmkXCpqPzXxHAVCi9TqMUQizR
fGf6DM3DawDjP6F1mG9p5+AI5Cz8RnYbQpbJbTrfzG28smDc087UBWPf+kwCfg8a
x5m6YCUPIig/DMocsOqpjPaxneMwCWjpS5CtEgfz+6EG1BREOf/lB77Px22Uo41O
XbSUqYmwxD4xzv1xWigVEFPnjvL1PNqe48jiZGhVjqoWzRF27ICaLfEP4dJMTU88
cEU3wo6WIv6YIbYGksNy+UY8qBBKZx1q2SLLOvECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ0OAm1w577hkdeXKaVCCGEjOM9QjAfBgNVHSMEGDAWgBRIBfF8LXEz0trT
qN9+NTFeN+9drzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1NBWHhmQzF4TTlMYTA2amZmalV4WGpmdlhhOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGIvOGUwN2RkLTRmZTUtNDgyMC1iY2JlLTVkZDZlMjJlYmFiMC8x
L05EZ0p0Y09lLTRaSFhseW1sUWdoaEl6alBVSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGIv
OGUwN2RkLTRmZTUtNDgyMC1iY2JlLTVkZDZlMjJlYmFiMC8xL1NBWHhmQzF4TTlM
YTA2amZmalV4WGpmdlhhOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2NlDANBgkqhkiG9w0BAQsFAAOC
AQEAUj5Bn9+C7QDI3aiywdR3CDlED+BBJ5KRaLm3ryMD80wmkSvFyBjv7EpXMuM8
fQW+jzU5dfTrY5+vqrtlfHc07QyW7a1Z7r/z5MHlNA4eKLjH8Ac0e+YfuFEkaEUj
4t6il/QxPT+e42Zqotevyo0l7UG7JSePca66Q6tOG2Jsv3Hj9GoSUp/2YPlcKwRK
3b8GyfbVUQSC7XfcR+OUWa0v/mjSHKtc8W7sMk3Dl57bM9BPTTe4lVKs6zl1ddbT
QfdGU8h7TnVCFWq/TznDdfksuLMkaF4NYE39zeOL+7Wl9l4L7eosModTpb079nO1
bVKZV9/6+q8AS4/n9nujmCNALg==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:36:53 2025 by rpki-client