Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/NspcxQv2ewoyvZqYLe-h6UMZOOs.roa
File: NspcxQv2ewoyvZqYLe-h6UMZOOs.roa (raw, json)
Hash identifier: kMc0USQR+xMUWoiWs6ypyreiM1QY4ExxxZsSoo9cCLo=
Subject key identifier: 36:CA:5C:C5:0B:F6:7B:0A:32:BD:9A:98:2D:EF:A1:E9:43:19:38:EB
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: ADCD4E
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/NspcxQv2ewoyvZqYLe-h6UMZOOs.roa
Signing time: Fri 06 May 2022 06:11:01 +0000
ROA not before: Fri 06 May 2022 06:11:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42831
IP address blocks: 185.254.16.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11390286 (0xadcd4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: May 6 06:11:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=36ca5cc50bf67b0a32bd9a982defa1e9431938eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:46:1a:29:63:37:6b:62:38:a0:89:c9:a2:7c:
dd:5a:a0:20:f9:b2:d4:7a:7c:1e:1a:63:9f:60:e7:
dc:c3:89:30:4f:d3:16:45:0b:83:10:99:bd:1f:c8:
3e:5b:3a:80:3d:d3:e4:4e:0b:5b:cf:61:a3:37:c1:
64:43:c4:65:76:1e:50:e9:2c:2b:9c:3c:93:a6:50:
46:e6:c5:77:b0:6a:55:01:1e:a4:7b:96:56:1d:94:
93:5e:66:ba:09:3e:4b:04:73:89:3f:d4:1b:f9:cb:
a8:31:61:7a:98:ac:a9:7d:e6:3e:20:57:76:1b:54:
59:b4:b3:eb:9e:c8:59:c4:3a:9a:50:d7:d8:1a:5e:
84:60:55:36:60:a3:6c:b9:ef:15:50:e5:29:ac:08:
8c:15:99:44:f5:c8:2d:76:2d:b1:da:26:4b:6f:47:
a9:0e:e0:23:6e:7c:8a:08:c8:10:cf:38:76:19:d2:
de:6f:7b:8e:a4:7b:8d:ee:8a:bb:6e:40:22:e9:72:
af:8a:1e:e0:91:d5:53:a0:ef:58:51:86:14:d0:7e:
55:fc:9a:13:89:e8:09:19:71:13:52:93:77:8e:a3:
36:75:61:0c:2d:18:1b:0a:c7:04:a4:a7:d3:5b:7d:
87:7d:0e:70:8b:fb:d9:9c:ed:aa:0d:bb:d1:1a:f9:
1c:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:CA:5C:C5:0B:F6:7B:0A:32:BD:9A:98:2D:EF:A1:E9:43:19:38:EB
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/NspcxQv2ewoyvZqYLe-h6UMZOOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.254.16.0/23
Signature Algorithm: sha256WithRSAEncryption
06:9c:0b:dd:fb:89:ef:5c:42:04:76:b8:39:c7:8a:79:67:56:
6d:97:0a:9a:ec:4e:8b:a3:9a:ec:ce:7a:5c:9d:0e:fc:c2:85:
3a:7d:fc:55:c7:d0:b0:eb:de:55:a0:f4:d7:b3:0d:a0:42:1b:
31:7c:57:a6:31:31:12:6b:58:07:f8:a8:bb:5a:fb:3f:bf:92:
e8:d2:0a:32:f8:72:fc:07:ed:c6:3e:38:23:b0:4d:8b:c1:87:
9f:38:8b:70:57:f9:b6:d8:6a:c1:20:21:20:8a:a1:c6:59:fc:
67:a2:9e:00:21:89:26:fe:0a:7b:1a:0f:2c:07:fe:a5:36:a9:
65:83:9a:45:59:94:f0:3a:22:63:07:d5:61:39:71:46:c5:a0:
12:0c:4b:2f:b4:dd:95:7b:cc:2c:1d:4b:23:e7:11:48:c5:fd:
26:46:be:ee:cc:99:40:77:de:d5:23:ce:da:81:82:de:f4:85:
25:02:51:fa:32:a4:d6:05:5f:e2:96:30:c2:52:33:24:f2:c7:
ce:64:31:25:e4:07:84:e6:69:72:24:b0:67:3a:53:66:6a:f8:
30:ac:b1:6a:a7:de:d4:36:63:99:51:79:1a:d7:ab:7c:5d:8a:
d3:8b:6f:9f:bc:16:63:87:a6:a7:66:87:4e:f8:03:a9:3b:e6:
40:1c:cb:30
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAK3NTjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
YjE0NWE4YmRmMmJjYTE1MGYyNWVkNTRhMjc3YjhmNjUzZWZkYjNlMB4XDTIyMDUw
NjA2MTEwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzZjYTVjYzUwYmY2
N2IwYTMyYmQ5YTk4MmRlZmExZTk0MzE5MzhlYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALdGGiljN2tiOKCJyaJ83VqgIPmy1Hp8Hhpjn2Dn3MOJME/T
FkULgxCZvR/IPls6gD3T5E4LW89hozfBZEPEZXYeUOksK5w8k6ZQRubFd7BqVQEe
pHuWVh2Uk15mugk+SwRziT/UG/nLqDFhepisqX3mPiBXdhtUWbSz657IWcQ6mlDX
2BpehGBVNmCjbLnvFVDlKawIjBWZRPXILXYtsdomS29HqQ7gI258igjIEM84dhnS
3m97jqR7je6Ku25AIulyr4oe4JHVU6DvWFGGFNB+VfyaE4noCRlxE1KTd46jNnVh
DC0YGwrHBKSn01t9h30OcIv72Zztqg270Rr5HCUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ2ylzFC/Z7CjK9mpgt76HpQxk46zAfBgNVHSMEGDAWgBQrFFqL3yvKFQ8l
7VSid7j2U+/bPjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0t4UmFpOThyeWhVUEplMVVvbmU0OWxQdjJ6NC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjEvMGQ4YzhmLWZmMmMtNGRhOC1iNDQzLTMwNDBiZWQzY2NjZC8x
L05zcGN4UXYyZXdveXZacVlMZS1oNlVNWk9Pcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjEv
MGQ4YzhmLWZmMmMtNGRhOC1iNDQzLTMwNDBiZWQzY2NjZC8xL0t4UmFpOThyeWhV
UEplMVVvbmU0OWxQdjJ6NC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAbn+EDANBgkqhkiG9w0BAQsFAAOC
AQEABpwL3fuJ71xCBHa4OceKeWdWbZcKmuxOi6Oa7M56XJ0O/MKFOn38VcfQsOve
VaD017MNoEIbMXxXpjExEmtYB/iou1r7P7+S6NIKMvhy/Aftxj44I7BNi8GHnziL
cFf5tthqwSAhIIqhxln8Z6KeACGJJv4KexoPLAf+pTapZYOaRVmU8DoiYwfVYTlx
RsWgEgxLL7TdlXvMLB1LI+cRSMX9Jka+7syZQHfe1SPO2oGC3vSFJQJR+jKk1gVf
4pYwwlIzJPLHzmQxJeQHhOZpciSwZzpTZmr4MKyxaqfe1DZjmVF5GterfF2K04tv
n7wWY4emp2aHTvgDqTvmQBzLMA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:57 2023 by rpki-client on console-ams.rpki-client.org