Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/5f172f-65d2-4591-88f4-9f8657190f55/1/9nOI_GnqVqLnSmK5NW1Wjq6ADRg.roa
File: 9nOI_GnqVqLnSmK5NW1Wjq6ADRg.roa (raw, json)
Hash identifier: nDU7Ogcw5wyjUyijn+flIlrEmCczeuuIYtZuJh1hY/I=
Subject key identifier: F6:73:88:FC:69:EA:56:A2:E7:4A:62:B9:35:6D:56:8E:AE:80:0D:18
Certificate issuer: /CN=943955a6e8c546ce3ed919f38ea0630d840a17ed
Certificate serial: E9A5
Authority key identifier: 94:39:55:A6:E8:C5:46:CE:3E:D9:19:F3:8E:A0:63:0D:84:0A:17:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lDlVpujFRs4-2RnzjqBjDYQKF-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/5f172f-65d2-4591-88f4-9f8657190f55/1/9nOI_GnqVqLnSmK5NW1Wjq6ADRg.roa
Signing time: Wed 06 Apr 2022 12:11:35 +0000
ROA not before: Wed 06 Apr 2022 12:11:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49051
IP address blocks: 94.143.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59813 (0xe9a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=943955a6e8c546ce3ed919f38ea0630d840a17ed
Validity
Not Before: Apr 6 12:11:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f67388fc69ea56a2e74a62b9356d568eae800d18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:04:cd:7d:5d:75:3c:7a:30:d5:b0:33:97:93:
89:73:f6:ab:7a:82:69:44:b2:9f:d2:d7:73:1f:ab:
06:15:09:e6:10:e9:c1:8b:79:6b:c0:ab:1c:ff:46:
97:cc:73:25:4c:ab:5e:92:9e:05:6d:2b:09:f7:72:
dc:dd:63:9a:10:10:af:27:cd:fb:f1:90:5f:df:2e:
6c:64:1a:8b:a9:b1:f0:51:77:55:a4:7b:cd:bf:32:
f1:0a:02:01:a7:d0:a7:9f:83:6e:91:d8:78:c5:ce:
ba:34:89:ad:49:fd:c2:b7:0d:29:9a:ac:de:1f:86:
df:3a:38:40:6e:68:bf:29:05:96:b6:70:a1:56:29:
ab:88:21:d2:04:f3:7d:1a:eb:76:f4:f1:c7:e2:f0:
df:4e:e9:ca:32:d5:dc:03:d6:87:dd:7f:c1:b9:f8:
35:86:bf:b7:f5:a3:d8:c7:6c:f8:af:d5:e7:a2:aa:
97:92:4c:74:4e:ec:6d:56:2d:fe:7f:ec:6a:5e:2a:
86:33:7f:c9:c1:35:82:57:9e:57:d9:a5:05:5b:18:
8d:0f:2a:07:65:fb:1e:09:0f:ec:68:2d:e7:80:0e:
a8:93:9d:28:09:6e:cd:10:a3:43:f9:17:91:6b:4d:
ea:0f:8e:88:9d:b0:8f:4e:9a:d5:50:25:48:59:54:
94:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:73:88:FC:69:EA:56:A2:E7:4A:62:B9:35:6D:56:8E:AE:80:0D:18
X509v3 Authority Key Identifier:
keyid:94:39:55:A6:E8:C5:46:CE:3E:D9:19:F3:8E:A0:63:0D:84:0A:17:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lDlVpujFRs4-2RnzjqBjDYQKF-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/5f172f-65d2-4591-88f4-9f8657190f55/1/9nOI_GnqVqLnSmK5NW1Wjq6ADRg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/5f172f-65d2-4591-88f4-9f8657190f55/1/lDlVpujFRs4-2RnzjqBjDYQKF-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.143.229.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:9e:e5:b8:dc:e8:9f:95:e0:02:df:a6:43:b4:ce:3c:7f:43:
3c:26:bd:58:ca:b2:2b:02:6b:fd:39:61:d2:89:0a:e3:84:4a:
55:29:43:e0:f8:d7:82:47:bf:40:16:26:ac:34:d5:43:3c:92:
3a:55:e9:9c:96:71:44:d3:26:da:cb:18:84:9b:5c:b7:5d:2e:
88:34:5c:22:c1:46:1f:63:07:98:8f:6c:51:7d:64:f6:21:49:
d9:3f:3d:d6:df:5c:b5:a7:c5:cd:ed:92:40:9a:34:b0:52:16:
d7:29:00:1b:7d:b4:62:87:01:95:b5:2c:42:f1:18:55:40:3d:
73:af:60:05:38:e8:81:97:99:95:48:df:c1:47:7f:2c:05:df:
08:37:11:d2:95:59:8d:a2:fc:7b:1a:33:69:67:fc:46:fa:b6:
53:3e:60:ce:f5:84:a0:f0:10:f3:88:b8:aa:fa:86:c0:f2:a3:
30:9f:38:09:cd:ba:9e:34:73:72:c9:94:15:3f:eb:37:94:38:
f1:28:95:31:64:49:c9:02:ac:0c:d5:90:dd:61:46:7d:a1:d7:
e5:fd:59:14:e1:92:52:d0:f8:bb:79:7c:fa:80:1c:49:7b:0b:
46:f1:ee:33:13:12:d0:55:fc:4e:bc:d8:b6:c3:33:17:54:a4:
96:9f:77:0e
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAOmlMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDk0
Mzk1NWE2ZThjNTQ2Y2UzZWQ5MTlmMzhlYTA2MzBkODQwYTE3ZWQwHhcNMjIwNDA2
MTIxMTM1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhmNjczODhmYzY5ZWE1
NmEyZTc0YTYyYjkzNTZkNTY4ZWFlODAwZDE4MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAwwTNfV11PHow1bAzl5OJc/areoJpRLKf0tdzH6sGFQnmEOnB
i3lrwKsc/0aXzHMlTKtekp4FbSsJ93Lc3WOaEBCvJ8378ZBf3y5sZBqLqbHwUXdV
pHvNvzLxCgIBp9Cnn4Nukdh4xc66NImtSf3Ctw0pmqzeH4bfOjhAbmi/KQWWtnCh
VimriCHSBPN9Gut29PHH4vDfTunKMtXcA9aH3X/Bufg1hr+39aPYx2z4r9XnoqqX
kkx0TuxtVi3+f+xqXiqGM3/JwTWCV55X2aUFWxiNDyoHZfseCQ/saC3ngA6ok50o
CW7NEKND+ReRa03qD46InbCPTprVUCVIWVSUIQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFPZziPxp6lai50piuTVtVo6ugA0YMB8GA1UdIwQYMBaAFJQ5VaboxUbOPtkZ
846gYw2EChftMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
bERsVnB1akZSczQtMlJuempxQmpEWVFLRi0wLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8zMy81ZjE3MmYtNjVkMi00NTkxLTg4ZjQtOWY4NjU3MTkwZjU1LzEv
OW5PSV9HbnFWcUxuU21LNU5XMVdqcTZBRFJnLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy81
ZjE3MmYtNjVkMi00NTkxLTg4ZjQtOWY4NjU3MTkwZjU1LzEvbERsVnB1akZSczQt
MlJuempxQmpEWVFLRi0wLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXo/lMA0GCSqGSIb3DQEBCwUAA4IB
AQBvnuW43OifleAC36ZDtM48f0M8Jr1YyrIrAmv9OWHSiQrjhEpVKUPg+NeCR79A
FiasNNVDPJI6VemclnFE0ybayxiEm1y3XS6INFwiwUYfYweYj2xRfWT2IUnZPz3W
31y1p8XN7ZJAmjSwUhbXKQAbfbRihwGVtSxC8RhVQD1zr2AFOOiBl5mVSN/BR38s
Bd8INxHSlVmNovx7GjNpZ/xG+rZTPmDO9YSg8BDziLiq+obA8qMwnzgJzbqeNHNy
yZQVP+s3lDjxKJUxZEnJAqwM1ZDdYUZ9odfl/VkU4ZJS0Pi7eXz6gBxJewtG8e4z
ExLQVfxOvNi2wzMXVKSWn3cO
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:50 2024 by rpki-client on console-fra.rpki-client.org