Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/N1viBIneAZr_7tX61gB1qz7Rk3w.roa
File: N1viBIneAZr_7tX61gB1qz7Rk3w.roa (raw, json)
Hash identifier: hGjT5x5wTeUd/RjmiaCl2+nBAxpqZrIQNFPgYTBz6+c=
Subject key identifier: 37:5B:E2:04:89:DE:01:9A:FF:EE:D5:FA:D6:00:75:AB:3E:D1:93:7C
Certificate issuer: /CN=9e3533d662c3f0d6bb1e692f3fab6d7ba3824c28
Certificate serial: 0D8CD502
Authority key identifier: 9E:35:33:D6:62:C3:F0:D6:BB:1E:69:2F:3F:AB:6D:7B:A3:82:4C:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/njUz1mLD8Na7HmkvP6tte6OCTCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/N1viBIneAZr_7tX61gB1qz7Rk3w.roa
Signing time: Sat 01 Jan 2022 02:57:12 +0000
ROA not before: Sat 01 Jan 2022 02:57:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399045
IP address blocks: 193.34.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 227333378 (0xd8cd502)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e3533d662c3f0d6bb1e692f3fab6d7ba3824c28
Validity
Not Before: Jan 1 02:57:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=375be20489de019affeed5fad60075ab3ed1937c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:8e:c0:eb:2b:73:b3:62:e9:ce:31:e3:5a:2c:
09:41:83:85:22:31:cf:f0:c3:b6:fe:4b:62:66:df:
a8:3e:cb:a3:5e:c5:da:a4:8a:5a:83:4d:fd:f9:8e:
10:e7:73:9c:49:f2:16:4a:af:8a:b2:ba:4d:69:7f:
a9:c0:bb:5f:90:24:98:44:7a:58:d9:29:05:f4:e3:
b9:97:af:2e:c5:c5:20:3f:b2:28:81:5d:a7:51:73:
9e:1d:7a:e9:9b:52:48:d8:32:06:aa:2d:ab:81:34:
d0:31:57:bb:2e:c7:45:d1:2a:83:86:71:87:fc:4e:
d0:7a:88:6b:3c:4d:ba:f6:76:c9:48:83:f3:c8:4e:
9a:db:64:c4:b8:b0:37:03:09:d7:eb:f5:35:8a:7a:
ab:ad:fd:db:9c:b1:f7:49:17:dd:64:f2:80:65:f9:
3f:03:91:00:33:17:a0:92:ba:b0:12:c2:c2:03:43:
c9:a9:6a:63:7f:53:22:f4:ba:6b:2f:04:43:46:47:
39:d4:89:8b:74:fe:e0:91:2f:d2:e8:d2:5e:65:e9:
40:ec:4b:94:f0:2a:0b:90:b4:80:1d:48:1e:08:6e:
0b:e0:c5:2a:a0:d5:8a:27:4e:60:16:31:39:be:9a:
22:69:28:cf:ea:5a:37:bb:da:82:23:49:28:3f:07:
83:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:5B:E2:04:89:DE:01:9A:FF:EE:D5:FA:D6:00:75:AB:3E:D1:93:7C
X509v3 Authority Key Identifier:
keyid:9E:35:33:D6:62:C3:F0:D6:BB:1E:69:2F:3F:AB:6D:7B:A3:82:4C:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/njUz1mLD8Na7HmkvP6tte6OCTCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/N1viBIneAZr_7tX61gB1qz7Rk3w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/njUz1mLD8Na7HmkvP6tte6OCTCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.34.49.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:4e:da:60:d2:d4:96:d5:d1:cc:7e:5f:f0:33:46:cf:b7:b5:
77:89:a3:e1:7b:88:de:0e:67:ff:6d:5a:51:aa:4c:fd:c6:a6:
35:5a:75:07:27:f3:b5:b1:b4:c0:ac:5b:0d:c7:87:20:ea:07:
a8:b2:75:7d:9b:58:ff:2d:45:a5:91:bd:a3:26:17:46:b1:8e:
38:9f:53:4b:c2:20:0a:49:e4:d0:92:84:69:61:6b:39:86:66:
9c:8b:56:02:b7:eb:1e:90:83:42:96:82:74:aa:39:39:a3:26:
ca:13:99:d4:27:d4:68:3b:f2:f8:71:9d:d5:f1:ec:1d:9b:6b:
7b:ff:0e:04:46:3b:11:0b:76:7c:9f:68:3b:66:ca:7f:fe:16:
3b:e1:2b:65:09:cb:11:e3:6b:16:36:e0:b1:74:4a:35:e8:49:
47:d3:10:13:ec:1a:f0:8a:84:57:d2:41:f9:69:f0:58:65:4a:
23:5d:21:dd:0e:a7:42:09:9d:91:41:19:e8:f6:d9:81:ff:34:
06:16:e3:03:c4:f7:5a:37:48:32:9f:cb:6e:6c:34:c8:cf:46:
f9:9f:6b:4e:42:a9:2c:2a:87:3f:ba:c3:b4:6a:cc:1e:d2:b7:
a0:33:a9:41:9c:d1:b5:72:1a:96:8d:bb:ae:47:10:29:b6:be:
4c:c2:9e:2a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDYzVAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ZTM1MzNkNjYyYzNmMGQ2YmIxZTY5MmYzZmFiNmQ3YmEzODI0YzI4MB4XDTIyMDEw
MTAyNTcxMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzc1YmUyMDQ4OWRl
MDE5YWZmZWVkNWZhZDYwMDc1YWIzZWQxOTM3YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALKOwOsrc7Ni6c4x41osCUGDhSIxz/DDtv5LYmbfqD7Lo17F
2qSKWoNN/fmOEOdznEnyFkqvirK6TWl/qcC7X5AkmER6WNkpBfTjuZevLsXFID+y
KIFdp1Fznh166ZtSSNgyBqotq4E00DFXuy7HRdEqg4Zxh/xO0HqIazxNuvZ2yUiD
88hOmttkxLiwNwMJ1+v1NYp6q63925yx90kX3WTygGX5PwORADMXoJK6sBLCwgND
yalqY39TIvS6ay8EQ0ZHOdSJi3T+4JEv0ujSXmXpQOxLlPAqC5C0gB1IHghuC+DF
KqDViidOYBYxOb6aImkoz+paN7vagiNJKD8HgxECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ3W+IEid4Bmv/u1frWAHWrPtGTfDAfBgNVHSMEGDAWgBSeNTPWYsPw1rse
aS8/q217o4JMKDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L25qVXoxbUxEOE5hN0hta3ZQNnR0ZTZPQ1RDZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWUvYmViZTZkLTE2YjMtNGIwMi1iMjA1LWE3ODM0MTMwOTlkMy8x
L04xdmlCSW5lQVpyXzd0WDYxZ0IxcXo3Umszdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWUv
YmViZTZkLTE2YjMtNGIwMi1iMjA1LWE3ODM0MTMwOTlkMy8xL25qVXoxbUxEOE5h
N0hta3ZQNnR0ZTZPQ1RDZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMEiMTANBgkqhkiG9w0BAQsFAAOC
AQEAik7aYNLUltXRzH5f8DNGz7e1d4mj4XuI3g5n/21aUapM/camNVp1ByfztbG0
wKxbDceHIOoHqLJ1fZtY/y1FpZG9oyYXRrGOOJ9TS8IgCknk0JKEaWFrOYZmnItW
ArfrHpCDQpaCdKo5OaMmyhOZ1CfUaDvy+HGd1fHsHZtre/8OBEY7EQt2fJ9oO2bK
f/4WO+ErZQnLEeNrFjbgsXRKNehJR9MQE+wa8IqEV9JB+WnwWGVKI10h3Q6nQgmd
kUEZ6PbZgf80BhbjA8T3WjdIMp/Lbmw0yM9G+Z9rTkKpLCqHP7rDtGrMHtK3oDOp
QZzRtXIalo27rkcQKba+TMKeKg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:32 2023 by rpki-client on console-ams.rpki-client.org