Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/NLRBqQTg1vKvAnEj8nXdo8ZtLbE.roa
File: NLRBqQTg1vKvAnEj8nXdo8ZtLbE.roa (raw, json)
Hash identifier: sdHvgH2TetUFIuvpBBQtn6FAFl7/H4s3jL5bX/tw3Hc=
Subject key identifier: 34:B4:41:A9:04:E0:D6:F2:AF:02:71:23:F2:75:DD:A3:C6:6D:2D:B1
Certificate issuer: /CN=94d161593da815cac58d3479652d048480d26713
Certificate serial: 15754A51
Authority key identifier: 94:D1:61:59:3D:A8:15:CA:C5:8D:34:79:65:2D:04:84:80:D2:67:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/NLRBqQTg1vKvAnEj8nXdo8ZtLbE.roa
Signing time: Sat 01 Jan 2022 14:03:48 +0000
ROA not before: Sat 01 Jan 2022 14:03:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59984
IP address blocks: 185.63.104.0/22 maxlen: 22
2a03:ca0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 360008273 (0x15754a51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94d161593da815cac58d3479652d048480d26713
Validity
Not Before: Jan 1 14:03:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=34b441a904e0d6f2af027123f275dda3c66d2db1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c3:74:09:e7:93:38:0b:32:cb:79:47:b0:5c:
d1:28:3b:65:83:03:d3:c3:78:57:05:6d:89:84:54:
2e:9d:dd:ca:28:5d:7b:fd:a9:fb:01:a2:bb:31:a0:
9c:e6:4b:a0:13:f1:3f:47:f8:93:3c:a2:e0:be:cf:
75:97:b1:d9:bf:78:f0:aa:58:04:ba:31:05:c0:86:
46:e7:85:b3:3b:d4:46:55:c3:dc:66:6d:7b:1f:91:
7e:19:a1:cd:d3:84:28:6f:a1:11:26:5b:dc:51:11:
1b:e6:30:37:4c:70:21:13:0a:c0:4f:ea:90:45:a0:
83:28:7a:ef:4a:d7:bf:48:e8:b4:3e:26:f0:cc:b1:
81:c3:01:6c:ef:94:7b:b5:df:f5:e9:4f:f7:e9:fd:
75:00:69:c5:bd:da:d3:3b:ad:da:07:cd:36:2c:8d:
74:e1:0c:8b:90:46:90:98:3c:16:24:11:08:b9:86:
3b:31:e8:1e:9c:55:ff:06:db:d6:93:e6:69:51:fe:
d0:cf:f7:95:87:a1:0e:96:a7:bb:56:d9:43:93:f3:
19:bd:dd:5e:16:76:9b:d9:95:9b:ed:fe:e6:8d:43:
c9:de:6d:0d:f8:55:95:54:9f:b9:22:64:1d:e0:7f:
cd:b3:4b:e5:13:22:6c:75:e3:7b:10:fe:f5:5c:f8:
6e:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:B4:41:A9:04:E0:D6:F2:AF:02:71:23:F2:75:DD:A3:C6:6D:2D:B1
X509v3 Authority Key Identifier:
keyid:94:D1:61:59:3D:A8:15:CA:C5:8D:34:79:65:2D:04:84:80:D2:67:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/NLRBqQTg1vKvAnEj8nXdo8ZtLbE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.104.0/22
IPv6:
2a03:ca0::/32
Signature Algorithm: sha256WithRSAEncryption
78:b6:96:a5:1d:ee:e1:bf:4d:3b:25:18:a9:58:f0:0c:f6:90:
45:de:0c:33:95:18:50:c9:29:f7:9d:6c:1e:f4:c7:a3:3e:5a:
a9:5e:5d:2c:93:3f:31:a6:d1:ac:15:b2:40:fb:17:02:dd:05:
f7:ee:1b:fb:e0:9f:0b:36:98:1c:b6:01:5f:15:ee:4b:2d:97:
b2:25:fd:11:1c:61:e8:d0:19:68:d7:ce:d9:f8:a4:5a:64:cd:
1a:d4:11:cf:6c:14:32:82:7a:bb:b9:2f:04:a0:5a:16:36:65:
60:56:75:b3:82:6d:3f:0f:69:f5:44:16:b9:86:a2:86:9f:5c:
71:f4:95:68:82:0d:be:29:cc:bf:d9:45:d7:c6:60:62:59:56:
ae:ea:8b:ec:69:0b:cb:b6:91:ef:88:f7:3c:35:57:dc:c3:a8:
95:ac:1a:88:95:6a:c5:70:70:29:5a:8b:9e:ed:e7:63:32:5c:
81:02:10:d5:0d:6d:94:7f:7f:5e:54:f1:88:63:d3:6c:a5:31:
79:d9:52:16:9b:da:c8:36:a6:37:39:5a:e6:e2:89:f1:61:a4:
5c:85:03:13:ef:38:ec:4a:4a:3f:06:9d:8a:b5:c2:33:29:60:
2f:da:3c:46:8b:1a:68:6c:23:4d:2a:2f:e2:fd:31:df:7b:b5:
be:32:12:54
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEFXVKUTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
NGQxNjE1OTNkYTgxNWNhYzU4ZDM0Nzk2NTJkMDQ4NDgwZDI2NzEzMB4XDTIyMDEw
MTE0MDM0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzRiNDQxYTkwNGUw
ZDZmMmFmMDI3MTIzZjI3NWRkYTNjNjZkMmRiMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL3DdAnnkzgLMst5R7Bc0Sg7ZYMD08N4VwVtiYRULp3dyihd
e/2p+wGiuzGgnOZLoBPxP0f4kzyi4L7PdZex2b948KpYBLoxBcCGRueFszvURlXD
3GZtex+RfhmhzdOEKG+hESZb3FERG+YwN0xwIRMKwE/qkEWggyh670rXv0jotD4m
8MyxgcMBbO+Ue7Xf9elP9+n9dQBpxb3a0zut2gfNNiyNdOEMi5BGkJg8FiQRCLmG
OzHoHpxV/wbb1pPmaVH+0M/3lYehDpanu1bZQ5PzGb3dXhZ2m9mVm+3+5o1Dyd5t
DfhVlVSfuSJkHeB/zbNL5RMibHXjexD+9Vz4bucCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBQ0tEGpBODW8q8CcSPydd2jxm0tsTAfBgNVHSMEGDAWgBSU0WFZPagVysWN
NHllLQSEgNJnEzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2xORmhXVDJvRmNyRmpUUjVaUzBFaElEU1p4TS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmUvM2MyOTU2LWRmOWQtNDA0OC1iMDExLWQ4ZTk4Yjg1YWVhNC8x
L05MUkJxUVRnMXZLdkFuRWo4blhkbzhadExiRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmUv
M2MyOTU2LWRmOWQtNDA0OC1iMDExLWQ4ZTk4Yjg1YWVhNC8xL2xORmhXVDJvRmNy
RmpUUjVaUzBFaElEU1p4TS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArk/aDANBAIAAjAHAwUAKgMMoDAN
BgkqhkiG9w0BAQsFAAOCAQEAeLaWpR3u4b9NOyUYqVjwDPaQRd4MM5UYUMkp951s
HvTHoz5aqV5dLJM/MabRrBWyQPsXAt0F9+4b++CfCzaYHLYBXxXuSy2XsiX9ERxh
6NAZaNfO2fikWmTNGtQRz2wUMoJ6u7kvBKBaFjZlYFZ1s4JtPw9p9UQWuYaihp9c
cfSVaIINvinMv9lF18ZgYllWruqL7GkLy7aR74j3PDVX3MOolawaiJVqxXBwKVqL
nu3nYzJcgQIQ1Q1tlH9/XlTxiGPTbKUxedlSFpvayDamNzla5uKJ8WGkXIUDE+84
7EpKPwadirXCMylgL9o8RosaaGwjTSov4v0x33u1vjISVA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:45 2023 by rpki-client on console-ams.rpki-client.org