Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/NveG3_IDAWckciBE6EfKVklONzk.roa
File: NveG3_IDAWckciBE6EfKVklONzk.roa (raw, json)
Hash identifier: toUlm7qvi2MLmUUxy42fpCgE7RSOSPVwC9nPzZAsUis=
Subject key identifier: 36:F7:86:DF:F2:03:01:67:24:72:20:44:E8:47:CA:56:49:4E:37:39
Certificate issuer: /CN=f82554a856a422b061ae64c577630f91d408cd4a
Certificate serial: 08064544
Authority key identifier: F8:25:54:A8:56:A4:22:B0:61:AE:64:C5:77:63:0F:91:D4:08:CD:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-CVUqFakIrBhrmTFd2MPkdQIzUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/NveG3_IDAWckciBE6EfKVklONzk.roa
Signing time: Sat 01 Jan 2022 10:04:22 +0000
ROA not before: Sat 01 Jan 2022 10:04:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39421
IP address blocks: 89.234.190.0/24 maxlen: 24
2a00:5880:1800::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134628676 (0x8064544)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f82554a856a422b061ae64c577630f91d408cd4a
Validity
Not Before: Jan 1 10:04:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=36f786dff203016724722044e847ca56494e3739
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e1:4a:76:e3:1f:1c:c4:00:18:8d:7e:39:4f:
0a:7f:4c:8a:5a:dd:34:ce:17:4b:0f:0c:9f:58:69:
8d:d9:f3:25:52:2d:64:98:2a:fc:a7:47:64:e5:19:
9d:a6:d5:e0:3d:64:a2:9e:58:13:84:89:85:7d:3a:
f0:70:cb:94:17:11:27:fe:a4:3c:2a:ba:81:cf:a7:
a8:50:cc:b8:54:93:cc:cb:4f:b3:84:3d:9e:a8:c6:
40:ea:f5:a1:b2:b3:da:e9:d7:f6:57:6d:75:24:54:
25:7f:8b:09:8b:73:fe:df:32:91:09:15:a4:55:bf:
fb:cc:e9:f0:38:3c:70:3e:34:e7:1d:ee:1e:ff:75:
8d:c8:e9:dc:b7:63:c9:13:7f:dc:c0:ff:55:b6:ae:
ce:07:15:c7:45:74:6e:45:15:44:da:cb:62:70:f3:
4d:12:fa:4f:70:28:d9:a5:19:32:2c:59:5a:42:4e:
fd:05:c7:1a:d8:67:17:48:d7:be:d2:0c:b2:12:1d:
dd:21:94:1b:46:42:f5:50:12:9f:48:10:c3:c6:eb:
a3:e2:db:fe:ea:73:79:fb:a5:7c:38:92:04:26:17:
bc:35:d2:cd:bb:ee:86:3c:5c:32:f2:ab:27:3d:b1:
54:58:c9:05:ef:ac:23:0d:6e:23:3d:f7:b9:8e:a6:
74:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:F7:86:DF:F2:03:01:67:24:72:20:44:E8:47:CA:56:49:4E:37:39
X509v3 Authority Key Identifier:
keyid:F8:25:54:A8:56:A4:22:B0:61:AE:64:C5:77:63:0F:91:D4:08:CD:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-CVUqFakIrBhrmTFd2MPkdQIzUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/NveG3_IDAWckciBE6EfKVklONzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/1-CVUqFakIrBhrmTFd2MPkdQIzUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.234.190.0/24
IPv6:
2a00:5880:1800::/44
Signature Algorithm: sha256WithRSAEncryption
c4:6d:24:71:21:86:59:a2:7f:5c:c0:1a:63:5a:71:be:ca:4e:
3d:3d:f0:39:58:d6:0f:25:e3:05:a4:14:62:94:ef:4b:d0:d5:
1a:4f:51:01:e7:94:d1:33:bc:01:af:a0:31:41:e0:c2:e2:3d:
f1:91:f5:1d:1e:2e:39:cb:cf:2d:d7:77:07:54:8e:c3:10:14:
fa:5a:8c:8c:3c:d4:7b:2c:cd:8c:3f:7d:51:f5:f1:88:6d:7f:
4a:95:27:32:61:ea:8a:87:4f:92:79:e0:ca:05:7b:7b:1b:6e:
8a:ff:87:af:69:55:fb:03:a0:a3:fa:10:80:ba:76:cf:87:4f:
ed:59:69:fd:ae:a9:53:c1:96:12:97:c8:bd:1a:b1:dd:6f:bd:
10:1a:ff:ff:8f:2b:ea:55:82:87:b1:f4:81:15:4b:63:ee:ee:
22:ff:8e:40:03:3a:af:29:bc:86:98:6f:32:9b:e1:da:41:2c:
5e:01:e0:b1:1d:64:72:c6:ae:be:59:44:8f:93:ed:a6:dc:c7:
da:68:4a:d6:1c:af:f4:3e:9e:34:d0:c6:f8:c9:cf:ac:57:21:
e2:bb:ab:41:44:8f:a0:d6:44:02:e9:ac:c0:3f:d5:9c:98:55:
23:73:c8:c7:14:f5:cc:3c:29:4e:66:d1:de:dc:63:b3:3b:9f:
e2:43:18:f4
-----BEGIN CERTIFICATE-----
MIIFAjCCA+qgAwIBAgIECAZFRDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ODI1NTRhODU2YTQyMmIwNjFhZTY0YzU3NzYzMGY5MWQ0MDhjZDRhMB4XDTIyMDEw
MTEwMDQyMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzZmNzg2ZGZmMjAz
MDE2NzI0NzIyMDQ0ZTg0N2NhNTY0OTRlMzczOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJvhSnbjHxzEABiNfjlPCn9MilrdNM4XSw8Mn1hpjdnzJVIt
ZJgq/KdHZOUZnabV4D1kop5YE4SJhX068HDLlBcRJ/6kPCq6gc+nqFDMuFSTzMtP
s4Q9nqjGQOr1obKz2unX9ldtdSRUJX+LCYtz/t8ykQkVpFW/+8zp8Dg8cD405x3u
Hv91jcjp3LdjyRN/3MD/VbauzgcVx0V0bkUVRNrLYnDzTRL6T3Ao2aUZMixZWkJO
/QXHGthnF0jXvtIMshId3SGUG0ZC9VASn0gQw8bro+Lb/upzefulfDiSBCYXvDXS
zbvuhjxcMvKrJz2xVFjJBe+sIw1uIz33uY6mdL8CAwEAAaOCAhwwggIYMB0GA1Ud
DgQWBBQ294bf8gMBZyRyIEToR8pWSU43OTAfBgNVHSMEGDAWgBT4JVSoVqQisGGu
ZMV3Yw+R1AjNSjAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtQ1ZVcUZha0lyQmhybVRGZDJNUGtkUUl6VW8uY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzRmLzk0MzdhMi0wN2U2LTRlNmEtYWEzZi05NjVkNmQ2MDNiZmEv
MS9OdmVHM19JREFXY2tjaUJFNkVmS1ZrbE9Oemsucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRm
Lzk0MzdhMi0wN2U2LTRlNmEtYWEzZi05NjVkNmQ2MDNiZmEvMS8xLUNWVXFGYWtJ
ckJocm1URmQyTVBrZFFJelVvLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAWeq+MA8EAgACMAkDBwQqAFiA
GAAwDQYJKoZIhvcNAQELBQADggEBAMRtJHEhhlmif1zAGmNacb7KTj098DlY1g8l
4wWkFGKU70vQ1RpPUQHnlNEzvAGvoDFB4MLiPfGR9R0eLjnLzy3XdwdUjsMQFPpa
jIw81HsszYw/fVH18Yhtf0qVJzJh6oqHT5J54MoFe3sbbor/h69pVfsDoKP6EIC6
ds+HT+1Zaf2uqVPBlhKXyL0asd1vvRAa//+PK+pVgoex9IEVS2Pu7iL/jkADOq8p
vIaYbzKb4dpBLF4B4LEdZHLGrr5ZRI+T7abcx9poStYcr/Q+njTQxvjJz6xXIeK7
q0FEj6DWRALprMA/1ZyYVSNzyMcU9cw8KU5m0d7cY7M7n+JDGPQ=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:48 2023 by rpki-client on console-ams.rpki-client.org