Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/NG4lUOarvwz-wM2h0iAKoRVB2Ww.roa
File: NG4lUOarvwz-wM2h0iAKoRVB2Ww.roa (raw, json)
Hash identifier: xFDA9BXML7ID7HwXNo7qulVQL7kyiBGQxmeTA5waFvI=
Subject key identifier: 34:6E:25:50:E6:AB:BF:0C:FE:C0:CD:A1:D2:20:0A:A1:15:41:D9:6C
Certificate issuer: /CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9
Certificate serial: 06246B97
Authority key identifier: 4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/NG4lUOarvwz-wM2h0iAKoRVB2Ww.roa
Signing time: Tue 22 Mar 2022 17:54:20 +0000
ROA not before: Tue 22 Mar 2022 17:54:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 194.34.104.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 103050135 (0x6246b97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9
Validity
Not Before: Mar 22 17:54:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=346e2550e6abbf0cfec0cda1d2200aa11541d96c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:4f:68:ad:eb:a6:d1:fe:0a:1a:21:81:31:9a:
8a:d6:d4:65:0c:63:f5:11:3f:d4:fd:0d:c3:4b:2c:
3a:07:3f:be:40:38:6f:5e:fc:d3:f2:d6:b0:be:b4:
ab:1e:08:6c:ad:20:33:5d:9f:9c:e8:0b:f8:e7:60:
75:90:15:e5:0e:af:aa:d1:8d:3c:8a:bd:59:30:a9:
95:42:52:09:72:8b:47:71:12:6c:f0:fa:10:61:20:
5b:5a:19:90:f7:e5:1e:1d:65:d6:4f:8f:63:dd:23:
71:6e:88:c5:11:34:40:11:8c:8f:48:33:e1:f1:b2:
c0:de:80:e7:7b:95:fb:50:a1:fd:d7:fb:fb:db:f3:
d2:44:43:1f:a9:ec:4d:e3:d3:18:69:dd:a8:9c:b8:
a8:c5:95:b8:cd:f4:9c:ea:cb:1c:cf:e6:c7:94:63:
4f:7e:2a:55:fb:79:94:b0:46:20:a5:2b:70:cf:b2:
29:82:43:f6:39:2b:85:00:32:9b:6d:2c:91:af:44:
28:6d:f4:6d:6b:07:b9:77:cb:a6:65:7e:c8:4d:61:
ef:1d:aa:e3:f0:1b:d7:c8:03:e5:03:11:56:25:ec:
72:b8:45:15:dc:1b:6d:55:44:6b:1e:d2:33:03:20:
ad:89:6e:33:ca:e2:de:ca:d4:ef:79:9e:58:e2:1a:
fd:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:6E:25:50:E6:AB:BF:0C:FE:C0:CD:A1:D2:20:0A:A1:15:41:D9:6C
X509v3 Authority Key Identifier:
keyid:4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/NG4lUOarvwz-wM2h0iAKoRVB2Ww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/TdlU08d8nE437r91PYbz3PCR1Kk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.34.104.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:19:cc:f9:1a:68:82:50:57:f6:8b:07:55:06:1a:8c:d5:07:
7b:4f:b8:5a:23:d8:84:c1:4c:32:e8:34:34:f2:61:67:ce:a0:
a6:e7:d0:b7:58:c2:c9:b7:c6:61:a7:b8:87:17:fb:58:23:4f:
99:12:a1:85:28:fd:97:ab:57:0b:12:18:94:28:f0:b2:5e:44:
06:b9:9f:ff:37:9c:80:14:04:a7:d1:6b:c2:19:18:22:ef:be:
65:3c:99:ed:bf:54:a4:36:96:65:5d:f2:73:49:ad:ae:48:dd:
37:66:8a:53:2f:a0:6f:58:20:24:eb:d1:6f:b5:82:1d:dd:c0:
6d:e4:d7:f5:59:00:b8:a7:dd:ac:3b:c1:d6:1a:6b:75:51:d8:
86:25:a2:04:86:e0:88:49:72:1a:76:1e:36:a0:67:7f:6b:44:
bc:0c:be:10:c7:a8:2e:3f:7f:79:5a:50:6f:05:6b:ff:57:05:
54:c9:85:ee:68:02:f3:b9:ab:a4:35:67:f9:f8:9e:81:ca:0c:
f9:40:61:09:36:bd:d7:d2:f0:31:bf:e6:68:c8:6e:2f:96:47:
60:7f:c3:de:dd:b3:32:8b:28:f4:4a:86:12:46:07:9a:81:1e:
ee:1e:ae:d8:3a:3e:34:82:84:b5:70:d2:88:e8:b7:79:a4:5f:
e4:75:cf:7a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBiRrlzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
ZGQ5NTRkM2M3N2M5YzRlMzdlZWJmNzUzZDg2ZjNkY2YwOTFkNGE5MB4XDTIyMDMy
MjE3NTQyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzQ2ZTI1NTBlNmFi
YmYwY2ZlYzBjZGExZDIyMDBhYTExNTQxZDk2YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK5PaK3rptH+ChohgTGaitbUZQxj9RE/1P0Nw0ssOgc/vkA4
b1780/LWsL60qx4IbK0gM12fnOgL+OdgdZAV5Q6vqtGNPIq9WTCplUJSCXKLR3ES
bPD6EGEgW1oZkPflHh1l1k+PY90jcW6IxRE0QBGMj0gz4fGywN6A53uV+1Ch/df7
+9vz0kRDH6nsTePTGGndqJy4qMWVuM30nOrLHM/mx5RjT34qVft5lLBGIKUrcM+y
KYJD9jkrhQAym20ska9EKG30bWsHuXfLpmV+yE1h7x2q4/Ab18gD5QMRViXscrhF
FdwbbVVEax7SMwMgrYluM8ri3srU73meWOIa/S8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ0biVQ5qu/DP7AzaHSIAqhFUHZbDAfBgNVHSMEGDAWgBRN2VTTx3ycTjfu
v3U9hvPc8JHUqTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1RkbFUwOGQ4bkU0MzdyOTFQWWJ6M1BDUjFLay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWQvN2EyYTk5LTE0NmMtNDc4MS1hMzAyLWViN2FhYTY4MjhiZS8x
L05HNGxVT2Fydnd6LXdNMmgwaUFLb1JWQjJXdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWQv
N2EyYTk5LTE0NmMtNDc4MS1hMzAyLWViN2FhYTY4MjhiZS8xL1RkbFUwOGQ4bkU0
MzdyOTFQWWJ6M1BDUjFLay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMIiaDANBgkqhkiG9w0BAQsFAAOC
AQEAXxnM+RpoglBX9osHVQYajNUHe0+4WiPYhMFMMug0NPJhZ86gpufQt1jCybfG
Yae4hxf7WCNPmRKhhSj9l6tXCxIYlCjwsl5EBrmf/zecgBQEp9FrwhkYIu++ZTyZ
7b9UpDaWZV3yc0mtrkjdN2aKUy+gb1ggJOvRb7WCHd3AbeTX9VkAuKfdrDvB1hpr
dVHYhiWiBIbgiElyGnYeNqBnf2tEvAy+EMeoLj9/eVpQbwVr/1cFVMmF7mgC87mr
pDVn+fiegcoM+UBhCTa919LwMb/maMhuL5ZHYH/D3t2zMoso9EqGEkYHmoEe7h6u
2Do+NIKEtXDSiOi3eaRf5HXPeg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:14 2024 by rpki-client on console-ams.rpki-client.org