Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/068c4a-76c0-4fbe-a9ee-0df73c2f6a9f/1/NEQMTpfixpTxto1CV7lMsHRy6Ck.roa
File: NEQMTpfixpTxto1CV7lMsHRy6Ck.roa (raw, json)
Hash identifier: Xf79VNhqWE8xnVyNAkYIcPL84LoWjCFN8TEOV6SzUd4=
Subject key identifier: 34:44:0C:4E:97:E2:C6:94:F1:B6:8D:42:57:B9:4C:B0:74:72:E8:29
Certificate issuer: /CN=a15df6cd829d95f63d931d5dcf91cc8ba50f90b0
Certificate serial: 03D993B8
Authority key identifier: A1:5D:F6:CD:82:9D:95:F6:3D:93:1D:5D:CF:91:CC:8B:A5:0F:90:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oV32zYKdlfY9kx1dz5HMi6UPkLA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/068c4a-76c0-4fbe-a9ee-0df73c2f6a9f/1/NEQMTpfixpTxto1CV7lMsHRy6Ck.roa
Signing time: Sat 01 Jan 2022 03:59:05 +0000
ROA not before: Sat 01 Jan 2022 03:59:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42648
IP address blocks: 195.248.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64590776 (0x3d993b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a15df6cd829d95f63d931d5dcf91cc8ba50f90b0
Validity
Not Before: Jan 1 03:59:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=34440c4e97e2c694f1b68d4257b94cb07472e829
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:5e:24:4f:ef:c4:e3:35:e0:0a:d9:4e:04:22:
00:f5:0f:c1:41:15:e2:b9:e1:8b:de:aa:7f:cb:d9:
03:5d:43:5a:3d:87:dc:1b:96:19:e3:03:04:70:be:
9a:73:84:87:2c:17:4b:95:b4:f0:d7:b7:68:fd:94:
f7:b7:43:dd:3c:52:96:a7:6a:64:03:26:73:09:2a:
9e:70:57:7c:11:ef:66:14:7e:42:c7:bb:05:73:58:
0e:d0:7e:6d:da:f7:5f:6f:3e:74:d7:01:d1:db:27:
b0:52:17:e4:4a:91:fe:7a:ed:36:a6:6a:55:22:38:
0e:d8:0d:af:a1:ae:43:a4:d7:d6:9a:3c:e9:a5:05:
a2:97:61:08:fe:68:12:3d:b3:4b:01:11:de:26:31:
60:6f:09:e8:a5:5c:74:d1:20:9d:18:16:8d:1a:aa:
5d:43:79:9b:6a:a9:f8:8a:9e:68:fc:99:06:58:fd:
bd:7a:c1:7e:9a:ec:96:68:85:46:8b:70:0d:b7:57:
ee:2e:a2:d4:fa:a5:06:3e:00:10:f4:22:64:b1:81:
19:20:03:cf:b8:13:d4:c6:40:64:f6:e5:fd:2b:c8:
d8:1d:82:45:57:2a:0c:e2:c7:4f:78:12:f6:50:22:
24:3a:30:dc:95:c1:c5:1c:ef:8d:44:91:61:a1:9e:
3b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:44:0C:4E:97:E2:C6:94:F1:B6:8D:42:57:B9:4C:B0:74:72:E8:29
X509v3 Authority Key Identifier:
keyid:A1:5D:F6:CD:82:9D:95:F6:3D:93:1D:5D:CF:91:CC:8B:A5:0F:90:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oV32zYKdlfY9kx1dz5HMi6UPkLA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/068c4a-76c0-4fbe-a9ee-0df73c2f6a9f/1/NEQMTpfixpTxto1CV7lMsHRy6Ck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/068c4a-76c0-4fbe-a9ee-0df73c2f6a9f/1/oV32zYKdlfY9kx1dz5HMi6UPkLA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.248.225.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:5a:0a:7e:3e:18:80:a1:53:9c:4b:f1:25:f0:18:e3:7e:77:
06:70:00:c7:57:be:67:51:35:0d:46:a5:e5:7d:ce:2f:31:84:
09:66:ef:1d:2f:1a:33:8f:f3:4c:fc:aa:ed:cd:ff:04:da:9c:
ba:a5:b0:1d:e7:dc:57:fb:3f:e8:43:71:ff:43:6d:7c:75:e6:
e2:b8:0d:e9:a7:c7:fb:57:f6:ef:8d:ec:c3:d0:74:b3:65:6e:
e4:07:42:0c:47:a5:07:b8:fd:26:fe:d2:79:c2:c8:a2:58:6b:
66:63:bd:39:16:38:0f:3b:81:ae:59:0a:9c:70:35:11:95:9d:
25:c4:f8:d2:a7:71:62:24:b1:73:a2:ad:3f:b0:66:8a:8d:48:
a4:d0:86:08:21:6b:36:d6:81:a3:21:ec:da:ea:4a:53:45:e9:
36:bb:78:69:40:62:98:c9:a2:88:27:4f:d1:47:95:c2:9c:a1:
9c:98:79:d0:d0:a6:07:d3:8c:93:af:ea:47:96:38:d3:2a:b1:
a9:d5:fb:64:7d:13:99:49:2a:28:41:87:f5:04:15:06:ac:f3:
58:55:26:b4:6e:7f:ad:69:82:8a:51:db:5f:7f:cf:1c:42:1e:
8b:08:59:94:27:33:80:6f:35:f6:49:80:2a:94:66:c1:f9:0f:
65:17:e4:96
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA9mTuDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
MTVkZjZjZDgyOWQ5NWY2M2Q5MzFkNWRjZjkxY2M4YmE1MGY5MGIwMB4XDTIyMDEw
MTAzNTkwNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzQ0NDBjNGU5N2Uy
YzY5NGYxYjY4ZDQyNTdiOTRjYjA3NDcyZTgyOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPdeJE/vxOM14ArZTgQiAPUPwUEV4rnhi96qf8vZA11DWj2H
3BuWGeMDBHC+mnOEhywXS5W08Ne3aP2U97dD3TxSlqdqZAMmcwkqnnBXfBHvZhR+
Qse7BXNYDtB+bdr3X28+dNcB0dsnsFIX5EqR/nrtNqZqVSI4DtgNr6GuQ6TX1po8
6aUFopdhCP5oEj2zSwER3iYxYG8J6KVcdNEgnRgWjRqqXUN5m2qp+IqeaPyZBlj9
vXrBfprslmiFRotwDbdX7i6i1PqlBj4AEPQiZLGBGSADz7gT1MZAZPbl/SvI2B2C
RVcqDOLHT3gS9lAiJDow3JXBxRzvjUSRYaGeO+MCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ0RAxOl+LGlPG2jUJXuUywdHLoKTAfBgNVHSMEGDAWgBShXfbNgp2V9j2T
HV3PkcyLpQ+QsDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L29WMzJ6WUtkbGZZOWt4MWR6NUhNaTZVUGtMQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTIvMDY4YzRhLTc2YzAtNGZiZS1hOWVlLTBkZjczYzJmNmE5Zi8x
L05FUU1UcGZpeHBUeHRvMUNWN2xNc0hSeTZDay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTIv
MDY4YzRhLTc2YzAtNGZiZS1hOWVlLTBkZjczYzJmNmE5Zi8xL29WMzJ6WUtkbGZZ
OWt4MWR6NUhNaTZVUGtMQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMP44TANBgkqhkiG9w0BAQsFAAOC
AQEAPVoKfj4YgKFTnEvxJfAY4353BnAAx1e+Z1E1DUal5X3OLzGECWbvHS8aM4/z
TPyq7c3/BNqcuqWwHefcV/s/6ENx/0NtfHXm4rgN6afH+1f2743sw9B0s2Vu5AdC
DEelB7j9Jv7SecLIolhrZmO9ORY4DzuBrlkKnHA1EZWdJcT40qdxYiSxc6KtP7Bm
io1IpNCGCCFrNtaBoyHs2upKU0XpNrt4aUBimMmiiCdP0UeVwpyhnJh50NCmB9OM
k6/qR5Y40yqxqdX7ZH0TmUkqKEGH9QQVBqzzWFUmtG5/rWmCilHbX3/PHEIeiwhZ
lCczgG819kmAKpRmwfkPZRfklg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:43 2024 by rpki-client on console-ams.rpki-client.org