Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/nEYtuJNDVm6abB5sW8BCbQ-RJgo.roa
File: nEYtuJNDVm6abB5sW8BCbQ-RJgo.roa (raw, json)
Hash identifier: 5FDj+h87BPai57qcBBNWJbzEOtD6dKNSAB9IFK+unn8=
Subject key identifier: 9C:46:2D:B8:93:43:56:6E:9A:6C:1E:6C:5B:C0:42:6D:0F:91:26:0A
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: BFC739
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/nEYtuJNDVm6abB5sW8BCbQ-RJgo.roa
Signing time: Fri 15 Apr 2022 13:54:06 +0000
ROA not before: Fri 15 Apr 2022 13:54:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33922
IP address blocks: 84.32.116.0/23 maxlen: 24
84.32.114.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12568377 (0xbfc739)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Apr 15 13:54:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c462db89343566e9a6c1e6c5bc0426d0f91260a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:9b:24:26:1e:a4:a2:4f:a1:35:2a:23:a7:f7:
03:1c:13:28:68:8e:1e:b9:60:76:9b:b8:c2:50:7d:
a2:8b:04:ed:e3:7f:23:d4:63:ee:cb:20:6e:77:a3:
79:90:5c:f1:45:ff:dc:19:ac:4f:aa:70:1e:ee:e6:
78:19:9d:27:29:bb:40:c4:fd:2c:12:dd:c5:44:91:
20:fd:39:2b:0b:ad:e0:60:24:45:02:7d:d5:0e:af:
52:eb:c4:ce:bd:44:cd:d2:58:03:57:71:b4:25:51:
2a:d3:8e:ba:82:9b:f4:a8:81:f7:f3:45:8e:34:d9:
d4:40:81:51:81:7b:31:ce:3c:d9:ca:72:ab:17:74:
87:8d:bc:b4:06:76:40:20:7a:c7:f0:bd:d5:9f:78:
9b:98:61:e0:d6:a6:6f:04:d4:73:ef:8a:93:3d:a1:
18:f8:eb:3b:77:af:78:24:83:cd:c9:26:ce:ec:04:
cd:20:93:f0:40:3f:56:ea:c7:e4:6c:42:6b:ad:e8:
45:9b:1c:4d:4c:1f:21:ac:5b:18:33:d1:57:49:d8:
3c:9f:e1:4d:ce:45:3f:aa:07:09:01:14:69:9a:2f:
2c:9a:48:08:f0:91:0b:a8:72:6d:91:7d:7a:c8:f9:
42:1e:b1:2a:af:70:45:69:59:56:44:84:08:19:4d:
0a:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:46:2D:B8:93:43:56:6E:9A:6C:1E:6C:5B:C0:42:6D:0F:91:26:0A
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/nEYtuJNDVm6abB5sW8BCbQ-RJgo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.114.0-84.32.117.255
Signature Algorithm: sha256WithRSAEncryption
05:59:b4:95:bd:68:16:40:08:66:b3:7e:da:dd:2c:4a:56:d7:
e1:af:a8:a2:45:f2:35:28:4b:76:cf:ab:9a:0f:61:18:da:6b:
d4:11:49:ca:7f:e8:2e:0b:f6:b6:92:22:61:7e:f5:55:6e:d6:
50:d0:09:57:d5:93:05:5b:3a:e9:33:79:cc:a4:81:58:f9:8c:
9e:d7:0d:19:8e:91:a7:4c:ad:0b:55:9c:99:dc:27:63:ab:42:
a1:9d:95:51:16:a3:26:d4:0f:3c:be:29:f9:55:31:68:33:67:
5f:53:2a:72:80:6b:45:69:0e:f4:fe:8b:c8:2e:b4:4e:5b:cf:
d1:0f:33:f7:41:13:2d:34:5f:16:ea:c2:16:1e:98:80:af:d0:
cf:13:e9:01:ee:85:a4:ae:83:d9:79:3c:7a:1b:3e:84:b1:25:
83:27:b0:45:01:7c:eb:4f:8c:4f:25:51:dd:df:f0:c0:21:00:
b7:1e:ed:87:ef:7c:9a:60:db:03:f5:ac:34:11:65:d9:a4:9a:
ba:8f:6d:63:40:5a:7c:25:f7:f9:74:2d:1f:e9:10:88:e8:5d:
0d:45:13:46:60:95:42:c7:4e:51:90:be:6c:76:a9:3c:a8:57:
ca:73:fd:a1:0d:97:0d:6b:12:5b:fe:53:e2:9a:d5:75:1d:6b:
ad:d7:5d:ed
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEAL/HOTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
ZmJkNDVmY2UzNTZlMmE2NWYxZTRkMWRhZjc4MTRiNmQ2YmRhM2M1MB4XDTIyMDQx
NTEzNTQwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWM0NjJkYjg5MzQz
NTY2ZTlhNmMxZTZjNWJjMDQyNmQwZjkxMjYwYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJubJCYepKJPoTUqI6f3AxwTKGiOHrlgdpu4wlB9oosE7eN/
I9Rj7ssgbnejeZBc8UX/3BmsT6pwHu7meBmdJym7QMT9LBLdxUSRIP05Kwut4GAk
RQJ91Q6vUuvEzr1EzdJYA1dxtCVRKtOOuoKb9KiB9/NFjjTZ1ECBUYF7Mc482cpy
qxd0h428tAZ2QCB6x/C91Z94m5hh4NambwTUc++Kkz2hGPjrO3eveCSDzckmzuwE
zSCT8EA/VurH5GxCa63oRZscTUwfIaxbGDPRV0nYPJ/hTc5FP6oHCQEUaZovLJpI
CPCRC6hybZF9esj5Qh6xKq9wRWlZVkSECBlNCsUCAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBScRi24k0NWbppsHmxbwEJtD5EmCjAfBgNVHSMEGDAWgBRPvUX841bipl8e
TR2veBS21r2jxTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1Q3MUZfT05XNHFaZkhrMGRyM2dVdHRhOW84VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGMvMzk0YzkzLWRjYTMtNGJjNS04YzliLTIzNDgxYmYwOTFjMy8x
L25FWXR1Sk5EVm02YWJCNXNXOEJDYlEtUkpnby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGMv
Mzk0YzkzLWRjYTMtNGJjNS04YzliLTIzNDgxYmYwOTFjMy8xL1Q3MUZfT05XNHFa
ZkhrMGRyM2dVdHRhOW84VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQBVCByAwQBVCB0MA0GCSqGSIb3
DQEBCwUAA4IBAQAFWbSVvWgWQAhms37a3SxKVtfhr6iiRfI1KEt2z6uaD2EY2mvU
EUnKf+guC/a2kiJhfvVVbtZQ0AlX1ZMFWzrpM3nMpIFY+Yye1w0ZjpGnTK0LVZyZ
3Cdjq0KhnZVRFqMm1A88vin5VTFoM2dfUypygGtFaQ70/ovILrROW8/RDzP3QRMt
NF8W6sIWHpiAr9DPE+kB7oWkroPZeTx6Gz6EsSWDJ7BFAXzrT4xPJVHd3/DAIQC3
Hu2H73yaYNsD9aw0EWXZpJq6j21jQFp8Jff5dC0f6RCI6F0NRRNGYJVCx05RkL5s
dqk8qFfKc/2hDZcNaxJb/lPimtV1HWut113t
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:31 2024 by rpki-client on console-ams.rpki-client.org