Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/nI_d4OyLjM3KQCDjLXLwhjIQQo8.roa
File: nI_d4OyLjM3KQCDjLXLwhjIQQo8.roa (raw, json)
Hash identifier: bUzPwqxaezJ70TWb6Hw/FhD/ofLaYT4lCkUpE1qJ6pU=
Subject key identifier: 9C:8F:DD:E0:EC:8B:8C:CD:CA:40:20:E3:2D:72:F0:86:32:10:42:8F
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 09395C97
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/nI_d4OyLjM3KQCDjLXLwhjIQQo8.roa
Signing time: Sat 01 Jan 2022 06:00:28 +0000
ROA not before: Sat 01 Jan 2022 06:00:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35575
IP address blocks: 194.15.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154754199 (0x9395c97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 1 06:00:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c8fdde0ec8b8ccdca4020e32d72f0863210428f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:cd:e1:fd:83:6b:42:17:e9:bb:1c:4c:fd:fd:
ba:4b:0b:68:0d:3f:7f:ef:71:b5:48:a7:bb:9a:3d:
37:55:9c:f2:2a:39:4e:d8:16:e4:2d:3e:24:16:91:
57:6a:1b:ee:42:db:bd:18:80:64:67:2d:78:ab:84:
02:a9:1f:8c:2a:7d:09:98:3e:5c:e2:e5:8a:3e:08:
8a:f1:91:93:a7:19:e1:35:6a:f3:71:1a:74:ec:ce:
ef:f4:6c:cd:5b:2e:2c:bc:3b:10:b0:21:74:3c:4e:
27:98:42:86:df:3b:80:8c:ca:c9:7f:28:39:fa:28:
1f:82:ab:d0:b0:1f:90:14:02:5d:0a:46:a9:74:ac:
d8:59:90:3d:3f:f0:a1:51:b8:ef:c4:2a:5b:f4:52:
25:cb:7d:a5:26:8d:9d:a4:af:b1:db:d9:07:58:16:
44:68:25:60:f7:55:15:4e:86:9f:93:1e:e3:61:51:
03:06:24:12:7f:92:39:5b:5d:a2:7d:a7:2d:10:eb:
46:7c:e3:e9:45:f7:22:15:20:16:47:6b:96:49:51:
0f:65:be:b8:a2:c4:2f:ba:68:aa:43:d2:51:35:a7:
07:9c:53:8b:83:71:d2:90:87:8f:b3:84:16:b5:07:
90:b8:5d:d3:24:27:57:9d:64:51:c3:0e:c9:f2:1b:
b0:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:8F:DD:E0:EC:8B:8C:CD:CA:40:20:E3:2D:72:F0:86:32:10:42:8F
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/nI_d4OyLjM3KQCDjLXLwhjIQQo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.37.0/24
Signature Algorithm: sha256WithRSAEncryption
91:48:12:3d:40:c2:f6:e9:d5:bf:de:47:08:71:15:ce:51:31:
74:9c:ce:65:77:bf:41:66:21:f0:55:9c:87:0d:70:d4:f2:f1:
ac:4d:94:89:8d:1d:38:19:b8:55:8b:19:cd:db:db:13:61:e9:
c0:10:62:43:1d:00:d1:eb:c1:88:17:66:b1:50:c3:c1:63:93:
76:35:52:71:a1:0d:b3:3d:4c:c2:aa:ad:6e:c0:a3:90:58:25:
d1:d4:c4:7c:56:cd:48:8e:d2:65:10:dc:f5:07:9d:a3:49:16:
62:f0:61:94:0a:a3:d9:75:21:65:14:dc:57:e2:b4:47:96:af:
08:0f:d7:35:6a:20:d4:e5:d7:02:00:e4:09:fd:47:44:f0:d5:
e9:31:a8:0f:96:cf:34:81:aa:94:45:22:0a:f6:a1:65:7a:1e:
d7:f6:3a:32:9c:d1:b8:ef:3a:4b:18:ea:ac:e9:78:b6:c8:9b:
93:25:a4:05:ee:16:b1:92:70:d1:47:7a:be:87:2c:22:aa:c9:
3b:e8:3a:11:8e:f6:53:f9:c6:4b:fb:e0:05:98:9b:84:8c:1b:
d7:a3:c2:d2:45:81:ac:d4:5e:a5:5c:84:16:d3:29:a8:b2:27:
d1:3d:d0:f1:fd:2f:22:cd:a2:a7:21:17:fc:02:21:63:7f:6e:
c4:94:57:a1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECTlclzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
YjA0MTViZmM0M2IzOGU5Y2ZkMWExMjk5NTIwMmU4NzYzNzUyZmRlMB4XDTIyMDEw
MTA2MDAyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWM4ZmRkZTBlYzhi
OGNjZGNhNDAyMGUzMmQ3MmYwODYzMjEwNDI4ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANXN4f2Da0IX6bscTP39uksLaA0/f+9xtUinu5o9N1Wc8io5
TtgW5C0+JBaRV2ob7kLbvRiAZGcteKuEAqkfjCp9CZg+XOLlij4IivGRk6cZ4TVq
83EadOzO7/RszVsuLLw7ELAhdDxOJ5hCht87gIzKyX8oOfooH4Kr0LAfkBQCXQpG
qXSs2FmQPT/woVG478QqW/RSJct9pSaNnaSvsdvZB1gWRGglYPdVFU6Gn5Me42FR
AwYkEn+SOVtdon2nLRDrRnzj6UX3IhUgFkdrlklRD2W+uKLEL7poqkPSUTWnB5xT
i4Nx0pCHj7OEFrUHkLhd0yQnV51kUcMOyfIbsNUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBScj93g7IuMzcpAIOMtcvCGMhBCjzAfBgNVHSMEGDAWgBQbBBW/xDs46c/R
oSmVIC6HY3Uv3jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0d3UVZ2OFE3T09uUDBhRXBsU0F1aDJOMUw5NC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTYvMDk0MDgxLThhZWItNDJiZi1hNTc4LWEzY2EwZGI4MzI1NC8x
L25JX2Q0T3lMak0zS1FDRGpMWEx3aGpJUVFvOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTYv
MDk0MDgxLThhZWItNDJiZi1hNTc4LWEzY2EwZGI4MzI1NC8xL0d3UVZ2OFE3T09u
UDBhRXBsU0F1aDJOMUw5NC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMIPJTANBgkqhkiG9w0BAQsFAAOC
AQEAkUgSPUDC9unVv95HCHEVzlExdJzOZXe/QWYh8FWchw1w1PLxrE2UiY0dOBm4
VYsZzdvbE2HpwBBiQx0A0evBiBdmsVDDwWOTdjVScaENsz1MwqqtbsCjkFgl0dTE
fFbNSI7SZRDc9Qedo0kWYvBhlAqj2XUhZRTcV+K0R5avCA/XNWog1OXXAgDkCf1H
RPDV6TGoD5bPNIGqlEUiCvahZXoe1/Y6MpzRuO86SxjqrOl4tsibkyWkBe4WsZJw
0Ud6vocsIqrJO+g6EY72U/nGS/vgBZibhIwb16PC0kWBrNRepVyEFtMpqLIn0T3Q
8f0vIs2ipyEX/AIhY39uxJRXoQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:31 2023 by rpki-client on console-fra.rpki-client.org