Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/e2f846-8582-4093-ae93-04c5397fe5f8/1/Nlv3PimXTBdUKrusbd28UcTBvbk.roa
File: Nlv3PimXTBdUKrusbd28UcTBvbk.roa (raw, json)
Hash identifier: McPq6g+9fdSmaztYxWY/zFLFR2609VWdeua3YVuLo/0=
Subject key identifier: 36:5B:F7:3E:29:97:4C:17:54:2A:BB:AC:6D:DD:BC:51:C4:C1:BD:B9
Certificate issuer: /CN=ae664b924e4ea027c1c3a0770df1ff80b1d568fa
Certificate serial: 20339264
Authority key identifier: AE:66:4B:92:4E:4E:A0:27:C1:C3:A0:77:0D:F1:FF:80:B1:D5:68:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rmZLkk5OoCfBw6B3DfH_gLHVaPo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/e2f846-8582-4093-ae93-04c5397fe5f8/1/Nlv3PimXTBdUKrusbd28UcTBvbk.roa
Signing time: Sat 01 Jan 2022 15:06:53 +0000
ROA not before: Sat 01 Jan 2022 15:06:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6421
IP address blocks: 193.103.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 540250724 (0x20339264)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae664b924e4ea027c1c3a0770df1ff80b1d568fa
Validity
Not Before: Jan 1 15:06:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=365bf73e29974c17542abbac6dddbc51c4c1bdb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:9a:d1:11:38:17:29:67:44:2e:ef:ca:7a:20:
c0:6e:89:cc:2d:a7:80:cf:56:1d:af:63:6a:8f:9d:
5e:cf:76:65:e9:8f:81:a6:c4:c1:83:8e:3c:bf:f6:
92:50:04:54:14:ae:02:cf:49:89:fd:29:5d:66:d3:
32:7e:fc:bf:64:47:39:35:7d:60:d4:64:7a:41:82:
5d:a6:7f:e4:a3:aa:64:79:bb:d1:75:90:03:bc:d6:
3c:e8:d1:2c:37:ef:85:6f:48:10:42:b3:84:33:72:
ea:c7:b6:13:39:d2:ff:93:2e:f2:3e:6b:7d:06:e3:
a3:20:93:72:7e:00:5c:fc:6a:76:cf:fb:0b:95:f4:
f2:56:0a:f5:aa:35:7e:c8:96:e1:a8:73:25:fa:2f:
31:59:e0:2c:e2:c9:78:81:f8:45:34:5e:6e:2a:1d:
5b:eb:bc:19:25:06:be:3d:72:63:28:3b:75:08:a6:
0e:22:3b:1b:e1:d3:52:32:9d:bb:91:a6:f5:0e:01:
65:15:39:a5:f0:94:a4:61:18:f8:70:f1:37:bc:71:
da:17:9d:74:2a:da:28:73:70:70:00:bb:87:08:57:
d5:18:1c:a4:d9:ff:1f:f5:e6:83:42:3b:fb:c0:f3:
40:85:cc:76:cc:69:86:bd:77:20:a7:89:33:90:6b:
48:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:5B:F7:3E:29:97:4C:17:54:2A:BB:AC:6D:DD:BC:51:C4:C1:BD:B9
X509v3 Authority Key Identifier:
keyid:AE:66:4B:92:4E:4E:A0:27:C1:C3:A0:77:0D:F1:FF:80:B1:D5:68:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rmZLkk5OoCfBw6B3DfH_gLHVaPo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/e2f846-8582-4093-ae93-04c5397fe5f8/1/Nlv3PimXTBdUKrusbd28UcTBvbk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/e2f846-8582-4093-ae93-04c5397fe5f8/1/rmZLkk5OoCfBw6B3DfH_gLHVaPo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.103.199.0/24
Signature Algorithm: sha256WithRSAEncryption
82:0a:d5:d0:46:18:85:1e:66:a5:91:07:e3:f2:15:06:43:ae:
c2:11:02:24:43:17:6d:7f:8f:7c:d3:3d:6d:ac:30:6f:50:e6:
27:e6:fc:61:df:30:e4:e0:04:89:bc:17:db:a9:74:ef:7b:c1:
16:7d:ec:66:52:92:15:5a:bc:5b:b2:3f:86:01:c7:66:30:c3:
d5:ab:bd:ce:15:75:16:8a:f6:97:f4:7b:d7:fc:99:19:80:ba:
0e:20:64:b7:57:b6:d5:7f:66:04:16:6c:b2:6b:39:f8:ff:f6:
5f:0b:28:71:c3:18:21:b6:18:f8:0a:c6:bd:49:94:8f:0d:58:
61:b4:7a:81:0e:53:f9:17:fc:e5:d9:9c:67:15:6f:a9:5a:70:
4b:7e:e5:29:e9:90:9d:dd:db:b6:0c:4e:03:7a:5a:1e:d0:c1:
5d:17:6f:d9:23:bd:ac:6b:28:c1:5c:be:96:92:30:84:1c:22:
26:62:dd:50:f0:1b:8e:57:21:de:9f:6c:c9:26:0c:ee:17:4d:
53:02:e0:f9:0b:ab:a6:b2:ee:a2:84:f4:5e:62:48:74:d5:96:
17:8c:50:14:0e:41:29:3a:2d:b0:52:de:0e:bf:6c:4d:50:55:
0d:69:6c:98:ba:af:23:6f:20:ad:e1:f8:6b:d2:c5:8b:54:3c:
82:33:7d:ab
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEIDOSZDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
ZTY2NGI5MjRlNGVhMDI3YzFjM2EwNzcwZGYxZmY4MGIxZDU2OGZhMB4XDTIyMDEw
MTE1MDY1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzY1YmY3M2UyOTk3
NGMxNzU0MmFiYmFjNmRkZGJjNTFjNGMxYmRiOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKea0RE4FylnRC7vynogwG6JzC2ngM9WHa9jao+dXs92ZemP
gabEwYOOPL/2klAEVBSuAs9Jif0pXWbTMn78v2RHOTV9YNRkekGCXaZ/5KOqZHm7
0XWQA7zWPOjRLDfvhW9IEEKzhDNy6se2EznS/5Mu8j5rfQbjoyCTcn4AXPxqds/7
C5X08lYK9ao1fsiW4ahzJfovMVngLOLJeIH4RTRebiodW+u8GSUGvj1yYyg7dQim
DiI7G+HTUjKdu5Gm9Q4BZRU5pfCUpGEY+HDxN7xx2heddCraKHNwcAC7hwhX1Rgc
pNn/H/Xmg0I7+8DzQIXMdsxphr13IKeJM5BrSD0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ2W/c+KZdMF1Qqu6xt3bxRxMG9uTAfBgNVHSMEGDAWgBSuZkuSTk6gJ8HD
oHcN8f+AsdVo+jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3JtWkxrazVPb0NmQnc2QjNEZkhfZ0xIVmFQby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTYvZTJmODQ2LTg1ODItNDA5My1hZTkzLTA0YzUzOTdmZTVmOC8x
L05sdjNQaW1YVEJkVUtydXNiZDI4VWNUQnZiay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTYv
ZTJmODQ2LTg1ODItNDA5My1hZTkzLTA0YzUzOTdmZTVmOC8xL3JtWkxrazVPb0Nm
Qnc2QjNEZkhfZ0xIVmFQby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMFnxzANBgkqhkiG9w0BAQsFAAOC
AQEAggrV0EYYhR5mpZEH4/IVBkOuwhECJEMXbX+PfNM9bawwb1DmJ+b8Yd8w5OAE
ibwX26l073vBFn3sZlKSFVq8W7I/hgHHZjDD1au9zhV1For2l/R71/yZGYC6DiBk
t1e21X9mBBZssms5+P/2XwsoccMYIbYY+ArGvUmUjw1YYbR6gQ5T+Rf85dmcZxVv
qVpwS37lKemQnd3btgxOA3paHtDBXRdv2SO9rGsowVy+lpIwhBwiJmLdUPAbjlch
3p9sySYM7hdNUwLg+QurprLuooT0XmJIdNWWF4xQFA5BKTotsFLeDr9sTVBVDWls
mLqvI28greH4a9LFi1Q8gjN9qw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:37 2024 by rpki-client on console-fra.rpki-client.org