Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/d6ec3b-e717-4c3d-b0ae-5e60f6da2b09/1/nzxoWh7F2Uy7aBB_EZE7HzUFwZw.roa
File: nzxoWh7F2Uy7aBB_EZE7HzUFwZw.roa (raw, json)
Hash identifier: uFiusqt320jXjd/4Lif90Ei9vKJkn8N+TGGeSlD8pdg=
Subject key identifier: 9F:3C:68:5A:1E:C5:D9:4C:BB:68:10:7F:11:91:3B:1F:35:05:C1:9C
Certificate issuer: /CN=83609f2b9d2486f36e8cd29dfa2a756a48de7c51
Certificate serial: 0B1302CB
Authority key identifier: 83:60:9F:2B:9D:24:86:F3:6E:8C:D2:9D:FA:2A:75:6A:48:DE:7C:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g2CfK50khvNujNKd-ip1akjefFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/d6ec3b-e717-4c3d-b0ae-5e60f6da2b09/1/nzxoWh7F2Uy7aBB_EZE7HzUFwZw.roa
Signing time: Fri 29 Apr 2022 23:13:56 +0000
ROA not before: Fri 29 Apr 2022 23:13:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34984
IP address blocks: 185.226.163.0/24 maxlen: 24
185.226.162.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 185795275 (0xb1302cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83609f2b9d2486f36e8cd29dfa2a756a48de7c51
Validity
Not Before: Apr 29 23:13:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f3c685a1ec5d94cbb68107f11913b1f3505c19c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:9a:4b:bf:57:02:31:b0:39:bc:ee:e4:0f:c6:
30:89:d7:53:83:92:84:9d:b5:15:2a:9a:f3:0a:1e:
44:01:a0:48:ce:6e:89:01:d8:8d:c1:aa:c6:06:e7:
9b:94:12:8a:f6:74:26:c6:28:12:fd:e8:f7:d6:92:
34:7a:03:ab:87:75:ea:2d:5f:c7:36:f4:a3:71:7c:
46:27:6a:24:c5:f3:55:cc:c7:6b:3a:a4:a6:09:f5:
10:89:b0:f9:43:8a:88:f9:70:ed:9b:2f:1b:5e:4b:
bc:f2:73:99:69:7e:33:98:c1:b7:67:17:4a:17:49:
b9:38:7c:5c:37:dd:88:a5:10:f4:66:b5:23:74:8e:
e8:7c:5c:15:c2:35:8b:d5:b2:1e:7d:86:db:06:e6:
fc:62:8c:c7:56:fc:ff:8f:1d:d3:cb:01:b6:42:02:
c9:30:15:50:1c:96:54:de:22:0e:08:a0:3c:f0:7e:
65:58:b4:4d:12:8f:3a:f5:11:8c:48:3d:d9:39:2d:
da:1e:0c:d0:0e:e0:d0:9a:8e:0d:79:f1:ae:5a:cd:
5c:88:f2:3c:86:a1:23:01:9a:a1:58:c5:7c:f7:5d:
2f:39:ff:26:87:4c:b7:80:1c:3d:4a:b1:c4:45:2c:
a3:62:8e:d9:25:b5:57:06:af:40:6e:83:b5:de:90:
b0:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:3C:68:5A:1E:C5:D9:4C:BB:68:10:7F:11:91:3B:1F:35:05:C1:9C
X509v3 Authority Key Identifier:
keyid:83:60:9F:2B:9D:24:86:F3:6E:8C:D2:9D:FA:2A:75:6A:48:DE:7C:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g2CfK50khvNujNKd-ip1akjefFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/d6ec3b-e717-4c3d-b0ae-5e60f6da2b09/1/nzxoWh7F2Uy7aBB_EZE7HzUFwZw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/d6ec3b-e717-4c3d-b0ae-5e60f6da2b09/1/g2CfK50khvNujNKd-ip1akjefFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.162.0/23
Signature Algorithm: sha256WithRSAEncryption
7b:d9:e3:88:29:15:0e:b8:84:c0:b8:76:6a:86:f4:b5:72:4c:
4d:95:a4:78:e3:13:d0:38:e9:c6:a8:dc:ac:80:1e:1e:39:d3:
c3:5d:06:ad:02:86:70:aa:17:32:8e:ba:64:fc:a1:13:cb:4f:
1f:d3:5a:09:6d:5e:7f:41:a6:72:cd:94:21:e9:35:91:92:20:
45:b4:da:de:71:03:4d:ed:6f:60:c4:33:44:10:8b:e5:93:18:
04:e8:bf:54:85:14:af:3e:aa:0e:39:4d:8e:9a:ff:91:e6:04:
d6:0f:a0:c1:0b:a1:d0:91:30:72:df:e9:dc:9f:ca:54:4a:bf:
f9:b9:f3:9e:19:4f:54:4c:ae:1b:11:17:bd:3d:3f:29:58:8a:
2b:d7:21:e8:24:1b:94:37:39:ae:d5:3c:7d:4e:69:ed:11:2d:
4e:3e:2d:ff:b7:90:93:1e:04:27:1e:77:28:8e:c8:01:3b:ff:
3d:ed:81:7a:d7:5c:ab:7e:73:d3:1d:5a:bc:49:bc:00:a7:91:
82:83:19:f4:63:44:63:15:a6:05:1d:1c:4e:c1:4b:b9:f0:7e:
6e:ba:c8:ad:5a:13:74:22:e2:72:2c:e9:a2:be:2e:28:4c:0e:
dc:e8:dc:0c:6b:d8:28:84:b5:95:6e:47:9e:83:16:a7:89:90:
74:f0:c3:22
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECxMCyzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MzYwOWYyYjlkMjQ4NmYzNmU4Y2QyOWRmYTJhNzU2YTQ4ZGU3YzUxMB4XDTIyMDQy
OTIzMTM1NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWYzYzY4NWExZWM1
ZDk0Y2JiNjgxMDdmMTE5MTNiMWYzNTA1YzE5YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOeaS79XAjGwObzu5A/GMInXU4OShJ21FSqa8woeRAGgSM5u
iQHYjcGqxgbnm5QSivZ0JsYoEv3o99aSNHoDq4d16i1fxzb0o3F8RidqJMXzVczH
azqkpgn1EImw+UOKiPlw7ZsvG15LvPJzmWl+M5jBt2cXShdJuTh8XDfdiKUQ9Ga1
I3SO6HxcFcI1i9WyHn2G2wbm/GKMx1b8/48d08sBtkICyTAVUByWVN4iDgigPPB+
ZVi0TRKPOvURjEg92Tkt2h4M0A7g0JqODXnxrlrNXIjyPIahIwGaoVjFfPddLzn/
JodMt4AcPUqxxEUso2KO2SW1VwavQG6Dtd6QsM8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSfPGhaHsXZTLtoEH8RkTsfNQXBnDAfBgNVHSMEGDAWgBSDYJ8rnSSG826M
0p36KnVqSN58UTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2cyQ2ZLNTBraHZOdWpOS2QtaXAxYWtqZWZGRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGEvZDZlYzNiLWU3MTctNGMzZC1iMGFlLTVlNjBmNmRhMmIwOS8x
L256eG9XaDdGMlV5N2FCQl9FWkU3SHpVRndady5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGEv
ZDZlYzNiLWU3MTctNGMzZC1iMGFlLTVlNjBmNmRhMmIwOS8xL2cyQ2ZLNTBraHZO
dWpOS2QtaXAxYWtqZWZGRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAbniojANBgkqhkiG9w0BAQsFAAOC
AQEAe9njiCkVDriEwLh2aob0tXJMTZWkeOMT0DjpxqjcrIAeHjnTw10GrQKGcKoX
Mo66ZPyhE8tPH9NaCW1ef0Gmcs2UIek1kZIgRbTa3nEDTe1vYMQzRBCL5ZMYBOi/
VIUUrz6qDjlNjpr/keYE1g+gwQuh0JEwct/p3J/KVEq/+bnznhlPVEyuGxEXvT0/
KViKK9ch6CQblDc5rtU8fU5p7REtTj4t/7eQkx4EJx53KI7IATv/Pe2Betdcq35z
0x1avEm8AKeRgoMZ9GNEYxWmBR0cTsFLufB+brrIrVoTdCLicizpor4uKEwO3Ojc
DGvYKIS1lW5HnoMWp4mQdPDDIg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:40 2023 by rpki-client on console-fra.rpki-client.org