Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/nBJhp-Z5MiZabY4kj1XvjKu7pDM.roa
File: nBJhp-Z5MiZabY4kj1XvjKu7pDM.roa (raw, json)
Hash identifier: b4R6C6bqhqBE67RbCSjdF7+eUV1ojXmG/DOVwxilwlQ=
Subject key identifier: 9C:12:61:A7:E6:79:32:26:5A:6D:8E:24:8F:55:EF:8C:AB:BB:A4:33
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 12A4057F
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/nBJhp-Z5MiZabY4kj1XvjKu7pDM.roa
Signing time: Sat 21 May 2022 07:20:29 +0000
ROA not before: Sat 21 May 2022 07:20:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211529
IP address blocks: 194.5.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 312739199 (0x12a4057f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: May 21 07:20:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c1261a7e67932265a6d8e248f55ef8cabbba433
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:19:9a:a5:90:f2:c5:fe:57:67:82:9a:83:1d:
c9:8e:c0:f6:e9:19:60:f6:f6:a7:f8:64:ff:40:6d:
c2:ad:37:50:bb:ba:c8:2f:e3:eb:4d:7e:21:a8:b1:
3b:0c:c3:e4:ca:1a:d6:29:43:2a:2b:40:8a:9a:66:
56:45:16:5a:93:6c:49:20:b3:11:d4:58:80:f6:c7:
3e:92:a5:49:b9:c4:32:1b:bb:43:a8:3a:b6:33:16:
dc:c5:50:e3:b1:b5:89:fd:1c:69:31:e5:86:ad:f4:
50:6e:c8:c2:a7:eb:1d:2a:c3:87:35:9a:f5:ff:ba:
b2:43:7c:da:99:1c:14:c5:ac:7d:42:0d:65:29:a3:
b8:d7:7d:e9:06:be:08:aa:c2:c6:87:18:9d:8e:91:
be:f6:a7:5d:43:37:0c:ca:c7:dd:5e:c9:2b:a4:60:
a8:43:c5:f4:29:2e:e7:a4:32:48:05:f9:30:08:55:
0f:f5:18:00:07:a8:53:9f:5e:43:d8:4c:dc:9b:5a:
3e:52:e2:27:8f:a5:ff:d2:c5:f9:a2:9e:a5:a3:17:
22:8f:b5:7a:3d:9e:0c:a1:28:46:ae:28:99:83:0f:
6b:f1:17:d2:11:e9:c8:dc:d0:0d:c1:5e:7e:19:c4:
3b:9d:0e:0b:82:39:f2:d2:34:db:e2:0f:9d:a0:96:
7d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:12:61:A7:E6:79:32:26:5A:6D:8E:24:8F:55:EF:8C:AB:BB:A4:33
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/nBJhp-Z5MiZabY4kj1XvjKu7pDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.5.95.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:72:3a:eb:08:3a:c6:db:79:bf:32:b3:50:cb:39:15:a5:51:
5a:57:6e:31:2f:75:63:5a:ec:5c:02:53:42:c7:59:98:69:e6:
30:74:66:e5:83:4d:bd:f3:f9:26:d8:e4:d8:66:87:8a:7b:30:
fe:63:a5:a9:82:e6:d0:72:a4:f3:43:3e:b8:37:67:e0:f8:a4:
09:fa:15:8e:09:ee:37:e8:0e:5c:fc:cc:4e:39:a7:64:5b:22:
35:28:0f:ee:a7:31:8b:bc:1c:b7:35:bf:61:88:04:cb:6f:46:
d3:84:78:8f:93:1c:8c:85:38:6e:c0:3c:7f:d2:ce:0b:11:6d:
b4:1c:08:a6:03:27:ee:59:8f:f0:53:df:ab:a1:9e:ac:c2:f5:
fe:d0:24:9e:58:fc:2f:9f:55:59:3d:10:cb:5d:69:95:e2:f4:
16:6f:87:b3:db:1e:13:5f:1d:c2:bc:66:21:29:41:6b:14:66:
76:17:23:59:e5:8a:4c:62:79:c9:6b:62:b7:49:e9:3a:c7:1a:
bf:9e:07:6f:c2:24:2d:79:5e:51:62:a1:0e:73:84:f7:35:60:
75:89:df:44:cc:37:3f:6a:05:40:36:b0:42:2d:6e:54:27:5f:
69:bd:4d:29:d7:e8:ac:6d:ef:21:1b:dc:4f:04:69:d6:c2:54:
33:69:f5:e3
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEEqQFfzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NWIxZDEzYzJlMjZlMTI3ODYyNDZhNWVjNGM1YmVhNjk4NjRiMjBmMB4XDTIyMDUy
MTA3MjAyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWMxMjYxYTdlNjc5
MzIyNjVhNmQ4ZTI0OGY1NWVmOGNhYmJiYTQzMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIsZmqWQ8sX+V2eCmoMdyY7A9ukZYPb2p/hk/0Btwq03ULu6
yC/j601+IaixOwzD5Moa1ilDKitAippmVkUWWpNsSSCzEdRYgPbHPpKlSbnEMhu7
Q6g6tjMW3MVQ47G1if0caTHlhq30UG7IwqfrHSrDhzWa9f+6skN82pkcFMWsfUIN
ZSmjuNd96Qa+CKrCxocYnY6RvvanXUM3DMrH3V7JK6RgqEPF9Cku56QySAX5MAhV
D/UYAAeoU59eQ9hM3JtaPlLiJ4+l/9LF+aKepaMXIo+1ej2eDKEoRq4omYMPa/EX
0hHpyNzQDcFefhnEO50OC4I58tI02+IPnaCWfYkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBScEmGn5nkyJlptjiSPVe+Mq7ukMzAfBgNVHSMEGDAWgBQFsdE8LibhJ4Yk
al7Exb6mmGSyDzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JiSFJQQzRtNFNlR0pHcGV4TVctcHBoa3NnOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTgvYzYxMDkyLTczNGEtNGVlZi05ZDY3LTQ5MDUyNDNiYzgyOC8x
L25CSmhwLVo1TWlaYWJZNGtqMVh2akt1N3BETS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTgv
YzYxMDkyLTczNGEtNGVlZi05ZDY3LTQ5MDUyNDNiYzgyOC8xL0JiSFJQQzRtNFNl
R0pHcGV4TVctcHBoa3NnOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMIFXzANBgkqhkiG9w0BAQsFAAOC
AQEApXI66wg6xtt5vzKzUMs5FaVRWlduMS91Y1rsXAJTQsdZmGnmMHRm5YNNvfP5
Jtjk2GaHinsw/mOlqYLm0HKk80M+uDdn4PikCfoVjgnuN+gOXPzMTjmnZFsiNSgP
7qcxi7wctzW/YYgEy29G04R4j5McjIU4bsA8f9LOCxFttBwIpgMn7lmP8FPfq6Ge
rML1/tAknlj8L59VWT0Qy11pleL0Fm+Hs9seE18dwrxmISlBaxRmdhcjWeWKTGJ5
yWtit0npOscav54Hb8IkLXleUWKhDnOE9zVgdYnfRMw3P2oFQDawQi1uVCdfab1N
KdforG3vIRvcTwRp1sJUM2n14w==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:55 2023 by rpki-client on console-fra.rpki-client.org