Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/Nl3FwVMb-_wwnViYzXvnEpZcHU0.roa
File: Nl3FwVMb-_wwnViYzXvnEpZcHU0.roa (raw, json)
Hash identifier: 7wsIJc2nCA+NQYBj8mDLQHtFseJBnKl35cwbrs/hdg0=
Subject key identifier: 36:5D:C5:C1:53:1B:FB:FC:30:9D:58:98:CD:7B:E7:12:96:5C:1D:4D
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 0184772500F8F103F6326264A9E0A99E4F41
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/Nl3FwVMb-_wwnViYzXvnEpZcHU0.roa
Signing time: Mon 14 Nov 2022 17:17:04 +0000
ROA not before: Mon 14 Nov 2022 17:17:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211772
IP address blocks: 5.182.48.0/24 maxlen: 24
2a0b:b81::/46 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:77:25:00:f8:f1:03:f6:32:62:64:a9:e0:a9:9e:4f:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Nov 14 17:17:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=365dc5c1531bfbfc309d5898cd7be712965c1d4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:05:96:d6:0a:19:b1:e8:b5:89:3f:06:47:e1:
f8:4d:89:01:88:11:e3:2a:63:95:80:2c:97:fa:9b:
4e:b7:5a:a3:b4:bf:90:0e:d1:96:fb:31:02:8d:70:
ab:c1:28:49:54:cf:19:cd:8a:a6:ae:d1:39:8d:c0:
01:05:ab:8c:25:93:3e:db:1d:c4:68:9b:8a:ee:a2:
d3:66:f8:10:ca:be:e7:a0:e9:22:be:d0:0c:c1:46:
ea:91:c3:75:42:b7:7c:18:b4:de:94:a4:70:ee:a4:
fc:38:c1:fe:71:4c:ff:d4:23:bd:5e:05:39:93:43:
40:c6:9c:e8:1e:ed:e7:60:47:0f:a6:d4:7e:51:cc:
a6:74:88:fd:51:97:48:6a:69:54:11:0e:01:78:cc:
aa:82:d7:32:05:52:a6:db:bb:08:4b:a4:67:9d:82:
5d:0c:3c:12:c7:bc:0a:8d:76:b9:43:82:4b:4b:56:
34:c0:12:90:14:ab:6f:7a:91:4e:7f:b1:0d:c6:4f:
90:10:98:b3:ed:b6:d2:99:a7:64:21:19:22:34:47:
82:10:5b:83:59:29:0d:0f:52:fe:ae:40:d2:6b:bd:
63:90:7d:9c:f0:f3:47:27:10:07:b0:7a:fa:9a:02:
1b:e7:89:dd:cd:d0:84:d6:f3:03:d6:cb:30:f5:ba:
f0:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:5D:C5:C1:53:1B:FB:FC:30:9D:58:98:CD:7B:E7:12:96:5C:1D:4D
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/Nl3FwVMb-_wwnViYzXvnEpZcHU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.48.0/24
IPv6:
2a0b:b81::/46
Signature Algorithm: sha256WithRSAEncryption
d8:5c:79:93:fd:f8:ec:e5:d4:67:81:fc:2e:95:c2:8a:0a:9c:
19:d2:a1:6a:4c:3c:48:00:0c:d5:e1:fe:97:37:49:39:e0:5d:
a5:b0:9a:35:13:62:d9:33:c8:ff:8e:bd:05:b9:5a:d8:cb:6f:
07:00:9f:48:ef:6b:49:0a:66:7f:3b:f9:4d:fe:53:c0:2e:d2:
39:1d:ae:4f:02:5b:65:57:ca:1b:be:89:39:7a:88:c8:db:91:
c7:dc:87:4f:47:ac:56:6f:e1:8c:d4:9c:b3:cf:87:9e:56:d2:
18:46:3c:9b:54:8d:76:e3:08:29:6c:af:88:ff:e1:d7:09:21:
eb:bf:a9:0a:5d:2e:f4:88:1c:44:df:ab:fa:7f:0d:68:f0:b0:
e6:d0:bd:32:53:9b:9d:16:b0:06:47:0f:31:12:82:a0:fd:18:
2f:b8:a0:03:5e:59:48:d2:a6:ff:69:1b:74:6b:09:99:6b:1e:
e8:f6:e3:61:11:e1:7e:a0:d5:e2:14:47:5a:ae:df:76:84:92:
9b:ce:9b:c4:d0:c4:6a:f6:b5:f0:41:d2:81:e6:c4:d4:8c:af:
66:7b:29:d9:ec:92:b5:79:b6:0f:85:33:ba:d7:f7:d5:4d:4e:
f6:b4:8c:1d:93:42:cd:31:99:70:f6:2e:b1:4e:a8:04:4b:e4:
84:82:2b:b2
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYR3JQD48QP2MmJkqeCpnk9BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxYTdiMGQ4ZGU4MjUxZDM2ZDdjODNmYWY2YmM3ZWZlYzcz
YjUwMzQwHhcNMjIxMTE0MTcxNzA0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNjVkYzVjMTUzMWJmYmZjMzA5ZDU4OThjZDdiZTcxMjk2NWMxZDRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAowWW1goZsei1iT8GR+H4TYkBiBHj
KmOVgCyX+ptOt1qjtL+QDtGW+zECjXCrwShJVM8ZzYqmrtE5jcABBauMJZM+2x3E
aJuK7qLTZvgQyr7noOkivtAMwUbqkcN1Qrd8GLTelKRw7qT8OMH+cUz/1CO9XgU5
k0NAxpzoHu3nYEcPptR+UcymdIj9UZdIamlUEQ4BeMyqgtcyBVKm27sIS6RnnYJd
DDwSx7wKjXa5Q4JLS1Y0wBKQFKtvepFOf7ENxk+QEJiz7bbSmadkIRkiNEeCEFuD
WSkND1L+rkDSa71jkH2c8PNHJxAHsHr6mgIb54ndzdCE1vMD1ssw9brwSQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFDZdxcFTG/v8MJ1YmM175xKWXB1NMB8GA1UdIwQY
MBaAFLGnsNjeglHTbXyD+va8fv7HO1A0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2It
Mzk0YWNkMjFmMzliLzEvTmwzRndWTWItX3d3blZpWXpYdm5FcFpjSFUwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2ItMzk0YWNkMjFmMzli
LzEvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQABbYwMA8E
AgACMAkDBwIqCwuBAAAwDQYJKoZIhvcNAQELBQADggEBANhceZP9+Ozl1GeB/C6V
wooKnBnSoWpMPEgADNXh/pc3STngXaWwmjUTYtkzyP+OvQW5WtjLbwcAn0jva0kK
Zn87+U3+U8Au0jkdrk8CW2VXyhu+iTl6iMjbkcfch09HrFZv4YzUnLPPh55W0hhG
PJtUjXbjCClsr4j/4dcJIeu/qQpdLvSIHETfq/p/DWjwsObQvTJTm50WsAZHDzES
gqD9GC+4oANeWUjSpv9pG3RrCZlrHuj242ER4X6g1eIUR1qu33aEkpvOm8TQxGr2
tfBB0oHmxNSMr2Z7KdnskrV5tg+FM7rX99VNTva0jB2TQs0xmXD2LrFOqARL5ISC
K7I=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:39 2024 by rpki-client on console-ams.rpki-client.org