Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/ed8eba-6bd4-4438-b3e0-c496f9cafa83/1/NKC6Wqk81oSH3qRXdzWpBUCnzlo.roa
File: NKC6Wqk81oSH3qRXdzWpBUCnzlo.roa (raw, json)
Hash identifier: p9Dq6J4s23Lvyir+giNRvBu6uRGMDUcRvqG/yZiKxhE=
Subject key identifier: 34:A0:BA:5A:A9:3C:D6:84:87:DE:A4:57:77:35:A9:05:40:A7:CE:5A
Certificate issuer: /CN=7490ce6b6f8f750e03584ebbd7bdad0f11fbe31c
Certificate serial: E814A6
Authority key identifier: 74:90:CE:6B:6F:8F:75:0E:03:58:4E:BB:D7:BD:AD:0F:11:FB:E3:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJDOa2-PdQ4DWE67172tDxH74xw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed8eba-6bd4-4438-b3e0-c496f9cafa83/1/NKC6Wqk81oSH3qRXdzWpBUCnzlo.roa
Signing time: Sat 01 Jan 2022 12:01:07 +0000
ROA not before: Sat 01 Jan 2022 12:01:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3292
IP address blocks: 185.149.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15209638 (0xe814a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7490ce6b6f8f750e03584ebbd7bdad0f11fbe31c
Validity
Not Before: Jan 1 12:01:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=34a0ba5aa93cd68487dea4577735a90540a7ce5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:1a:2e:38:8f:36:fa:08:b9:66:6f:74:ee:d0:
c7:74:7c:a1:85:82:30:96:10:95:45:9b:55:d7:05:
d7:7f:63:cd:d8:0a:d9:ae:85:50:ed:ee:78:cb:8d:
33:41:3e:97:05:0f:6e:3e:55:71:a0:64:81:a7:7d:
ef:01:06:12:da:3a:1d:d3:6b:60:07:ad:e1:31:a4:
3d:bc:f3:e7:cb:e0:cd:6f:a3:a5:fd:35:75:0e:a1:
ca:65:41:19:e0:e9:b7:12:23:87:96:dd:1a:48:7e:
70:5b:7a:b3:be:20:ea:83:f3:39:8b:92:18:77:d0:
89:0c:fe:87:46:c1:6d:b4:b1:e5:a0:a4:66:6c:f4:
19:2f:e0:3b:00:ee:de:4d:79:da:8b:21:37:8a:19:
2d:b8:ca:74:f6:12:71:26:9c:32:30:ae:17:22:06:
23:50:ac:e6:9e:b2:d6:2a:97:01:a0:54:2b:ab:53:
b6:73:c4:13:d3:0a:7f:10:64:e8:04:3f:11:68:39:
db:af:74:31:6b:d3:f2:d4:79:ef:44:47:76:42:54:
27:ad:6b:f1:f9:88:c9:6f:a8:95:20:a4:6e:40:f9:
98:55:08:42:ec:01:c2:38:60:73:77:42:f4:0d:00:
f4:6e:ee:76:5b:55:bd:4f:d4:78:2c:e1:9f:e8:6b:
8b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:A0:BA:5A:A9:3C:D6:84:87:DE:A4:57:77:35:A9:05:40:A7:CE:5A
X509v3 Authority Key Identifier:
keyid:74:90:CE:6B:6F:8F:75:0E:03:58:4E:BB:D7:BD:AD:0F:11:FB:E3:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJDOa2-PdQ4DWE67172tDxH74xw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed8eba-6bd4-4438-b3e0-c496f9cafa83/1/NKC6Wqk81oSH3qRXdzWpBUCnzlo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed8eba-6bd4-4438-b3e0-c496f9cafa83/1/dJDOa2-PdQ4DWE67172tDxH74xw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.231.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:89:75:82:1d:13:61:43:dc:9e:d2:90:08:86:58:c4:4f:e9:
72:b7:eb:34:94:90:aa:05:10:20:7e:9a:6e:48:a6:3c:21:39:
35:99:c9:e2:fd:dc:13:c4:a0:c7:f3:b6:56:c4:df:39:77:b4:
6f:cf:d2:0b:0c:66:1b:44:08:37:6e:90:f3:ae:9d:dc:94:a1:
07:12:24:85:02:4d:bd:6c:a2:43:ab:a7:2e:f1:ba:9c:57:c0:
8a:b0:90:58:f6:56:bb:f3:00:e8:74:29:48:81:c7:07:56:5f:
08:ef:46:b2:b7:d7:0a:59:45:49:f5:8e:3f:b7:95:76:63:f6:
40:17:3c:11:69:28:a8:f8:1d:99:c8:38:4a:10:1f:92:c4:89:
fb:8e:e6:0a:d6:a6:1b:55:94:ff:bb:44:ef:6f:0a:59:fb:8a:
6e:7d:4a:6c:4e:08:a8:e1:f1:08:0d:eb:65:e6:ba:b3:f7:9b:
1b:e0:60:f2:04:0e:b5:df:70:1b:39:d1:48:fb:b1:49:d6:17:
da:1c:64:b2:4e:65:ab:8d:b7:29:2e:40:81:05:2e:ff:f1:29:
06:d2:a9:b5:92:7c:d9:2e:da:2e:8d:26:7d:88:34:0f:85:85:
cf:00:1e:59:48:e4:03:e8:d1:a9:a2:9f:95:4a:87:30:d8:fa:
6a:70:a0:55
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAOgUpjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDkwY2U2YjZmOGY3NTBlMDM1ODRlYmJkN2JkYWQwZjExZmJlMzFjMB4XDTIyMDEw
MTEyMDEwN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzRhMGJhNWFhOTNj
ZDY4NDg3ZGVhNDU3NzczNWE5MDU0MGE3Y2U1YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJEaLjiPNvoIuWZvdO7Qx3R8oYWCMJYQlUWbVdcF139jzdgK
2a6FUO3ueMuNM0E+lwUPbj5VcaBkgad97wEGEto6HdNrYAet4TGkPbzz58vgzW+j
pf01dQ6hymVBGeDptxIjh5bdGkh+cFt6s74g6oPzOYuSGHfQiQz+h0bBbbSx5aCk
Zmz0GS/gOwDu3k152oshN4oZLbjKdPYScSacMjCuFyIGI1Cs5p6y1iqXAaBUK6tT
tnPEE9MKfxBk6AQ/EWg52690MWvT8tR570RHdkJUJ61r8fmIyW+olSCkbkD5mFUI
QuwBwjhgc3dC9A0A9G7udltVvU/UeCzhn+hri+0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ0oLpaqTzWhIfepFd3NakFQKfOWjAfBgNVHSMEGDAWgBR0kM5rb491DgNY
TrvXva0PEfvjHDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RKRE9hMi1QZFE0RFdFNjcxNzJ0RHhINzR4dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjcvZWQ4ZWJhLTZiZDQtNDQzOC1iM2UwLWM0OTZmOWNhZmE4My8x
L05LQzZXcWs4MW9TSDNxUlhkeldwQlVDbnpsby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjcv
ZWQ4ZWJhLTZiZDQtNDQzOC1iM2UwLWM0OTZmOWNhZmE4My8xL2RKRE9hMi1QZFE0
RFdFNjcxNzJ0RHhINzR4dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALmV5zANBgkqhkiG9w0BAQsFAAOC
AQEAjYl1gh0TYUPcntKQCIZYxE/pcrfrNJSQqgUQIH6abkimPCE5NZnJ4v3cE8Sg
x/O2VsTfOXe0b8/SCwxmG0QIN26Q866d3JShBxIkhQJNvWyiQ6unLvG6nFfAirCQ
WPZWu/MA6HQpSIHHB1ZfCO9GsrfXCllFSfWOP7eVdmP2QBc8EWkoqPgdmcg4ShAf
ksSJ+47mCtamG1WU/7tE728KWfuKbn1KbE4IqOHxCA3rZea6s/ebG+Bg8gQOtd9w
GznRSPuxSdYX2hxksk5lq423KS5AgQUu//EpBtKptZJ82S7aLo0mfYg0D4WFzwAe
WUjkA+jRqaKflUqHMNj6anCgVQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:15 2024 by rpki-client on console-ams.rpki-client.org