Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/NwSnZtsl9F1hckfKj4teq-CIoiw.roa
File: NwSnZtsl9F1hckfKj4teq-CIoiw.roa (raw, json)
Hash identifier: 2q67GVProhHtkgDAum3c7K5+gppHD1UamWl+PafCJio=
Subject key identifier: 37:04:A7:66:DB:25:F4:5D:61:72:47:CA:8F:8B:5E:AB:E0:88:A2:2C
Certificate issuer: /CN=0c86662b752c8a3be72e8544394ff926f68fbf7e
Certificate serial: 07800C65
Authority key identifier: 0C:86:66:2B:75:2C:8A:3B:E7:2E:85:44:39:4F:F9:26:F6:8F:BF:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DIZmK3UsijvnLoVEOU_5JvaPv34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/NwSnZtsl9F1hckfKj4teq-CIoiw.roa
Signing time: Sat 01 Jan 2022 14:58:28 +0000
ROA not before: Sat 01 Jan 2022 14:58:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31424
IP address blocks: 193.9.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125832293 (0x7800c65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c86662b752c8a3be72e8544394ff926f68fbf7e
Validity
Not Before: Jan 1 14:58:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3704a766db25f45d617247ca8f8b5eabe088a22c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:6d:79:75:43:03:01:a6:91:f5:31:e3:ad:b7:
9a:cd:48:75:a5:d0:36:4f:d2:a2:d7:9a:01:3b:59:
bb:80:72:35:6e:eb:87:af:6d:10:dd:22:10:61:64:
9b:2e:98:1d:18:d0:55:63:2a:ce:c9:75:4a:8c:43:
ba:f9:5f:05:02:df:b0:79:86:0f:d4:eb:7d:ad:81:
cd:38:b4:de:44:a5:52:cf:49:97:80:cb:5b:f2:ff:
b5:23:71:0e:9c:1b:15:2f:c8:ae:57:2f:8e:f5:10:
50:63:46:f9:7d:1a:76:0b:df:df:a6:5e:07:ca:e9:
26:9b:63:64:61:42:eb:08:2d:8a:1e:50:42:d7:97:
da:a3:2a:f6:3e:5f:d4:12:f7:08:9b:71:07:14:d1:
a5:c6:57:42:42:60:9c:fc:12:e0:5e:a5:fc:03:4a:
c6:91:a5:17:94:07:bb:b8:0e:b0:60:0d:ac:04:f2:
86:fb:cf:11:89:be:0a:79:f6:24:1d:d9:0f:90:e8:
40:ca:b3:67:26:8a:6e:3a:a8:28:66:fc:fc:9b:8a:
06:31:0b:2a:bb:cd:45:b0:c5:43:fc:db:ad:23:73:
37:24:e7:19:4a:21:17:47:ae:32:6c:19:ad:66:3b:
7e:65:3b:de:c3:67:8a:2a:61:0a:01:00:66:b6:c8:
c4:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:04:A7:66:DB:25:F4:5D:61:72:47:CA:8F:8B:5E:AB:E0:88:A2:2C
X509v3 Authority Key Identifier:
keyid:0C:86:66:2B:75:2C:8A:3B:E7:2E:85:44:39:4F:F9:26:F6:8F:BF:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DIZmK3UsijvnLoVEOU_5JvaPv34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/NwSnZtsl9F1hckfKj4teq-CIoiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.9.122.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:60:7b:7e:f7:c8:f2:4b:9d:56:65:28:4d:05:5e:a5:0a:0b:
13:f1:de:0b:f2:64:f4:9e:26:48:c0:a9:30:56:a1:65:f3:22:
9c:f2:51:f4:b3:7f:82:bf:5f:14:66:85:8a:64:39:d4:fc:45:
4e:49:14:42:cc:fe:6b:4f:67:79:f9:7b:97:9e:1a:47:46:e5:
ad:63:bc:14:a1:6e:2e:58:52:69:f0:56:9c:ea:cb:ff:86:24:
6d:a5:45:13:bd:98:6e:d1:09:9a:c6:b7:a3:ea:06:88:f3:12:
49:84:b6:4c:e4:ab:21:f0:8b:22:f5:64:56:61:34:2c:1e:af:
7b:52:60:30:56:f7:b8:ac:f8:13:27:2d:89:86:43:88:e4:45:
24:26:51:ad:72:2c:e9:24:a6:a8:89:e2:a1:3c:3d:ba:ff:5d:
c6:7d:1b:66:fd:f7:3b:81:28:5b:20:31:cb:c8:61:36:93:bf:
fd:4e:46:fd:48:17:d8:55:a4:6e:ce:b6:a0:5b:30:c4:36:82:
01:de:7d:08:15:38:d6:a8:c6:00:ac:96:e5:ce:17:8d:12:cf:
a0:4c:25:de:74:de:15:0b:01:3b:95:91:2d:5e:0e:3c:5f:0f:
78:94:67:b9:1b:5d:05:03:a2:d1:56:58:7c:b2:ef:55:ba:df:
e5:cc:40:c1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB4AMZTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
Yzg2NjYyYjc1MmM4YTNiZTcyZTg1NDQzOTRmZjkyNmY2OGZiZjdlMB4XDTIyMDEw
MTE0NTgyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzcwNGE3NjZkYjI1
ZjQ1ZDYxNzI0N2NhOGY4YjVlYWJlMDg4YTIyYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAO5teXVDAwGmkfUx4623ms1IdaXQNk/SoteaATtZu4ByNW7r
h69tEN0iEGFkmy6YHRjQVWMqzsl1SoxDuvlfBQLfsHmGD9Trfa2BzTi03kSlUs9J
l4DLW/L/tSNxDpwbFS/IrlcvjvUQUGNG+X0adgvf36ZeB8rpJptjZGFC6wgtih5Q
QteX2qMq9j5f1BL3CJtxBxTRpcZXQkJgnPwS4F6l/ANKxpGlF5QHu7gOsGANrATy
hvvPEYm+Cnn2JB3ZD5DoQMqzZyaKbjqoKGb8/JuKBjELKrvNRbDFQ/zbrSNzNyTn
GUohF0euMmwZrWY7fmU73sNniiphCgEAZrbIxGECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ3BKdm2yX0XWFyR8qPi16r4IiiLDAfBgNVHSMEGDAWgBQMhmYrdSyKO+cu
hUQ5T/km9o+/fjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0RJWm1LM1VzaWp2bkxvVkVPVV81SnZhUHYzNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjMvMDljNGIyLTQ2YTktNGY4OC05OWI4LTFjY2M5YzI5NWU4ZS8x
L053U25adHNsOUYxaGNrZktqNHRlcS1DSW9pdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjMv
MDljNGIyLTQ2YTktNGY4OC05OWI4LTFjY2M5YzI5NWU4ZS8xL0RJWm1LM1VzaWp2
bkxvVkVPVV81SnZhUHYzNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMEJejANBgkqhkiG9w0BAQsFAAOC
AQEAKmB7fvfI8kudVmUoTQVepQoLE/HeC/Jk9J4mSMCpMFahZfMinPJR9LN/gr9f
FGaFimQ51PxFTkkUQsz+a09nefl7l54aR0blrWO8FKFuLlhSafBWnOrL/4YkbaVF
E72YbtEJmsa3o+oGiPMSSYS2TOSrIfCLIvVkVmE0LB6ve1JgMFb3uKz4EyctiYZD
iORFJCZRrXIs6SSmqInioTw9uv9dxn0bZv33O4EoWyAxy8hhNpO//U5G/UgX2FWk
bs62oFswxDaCAd59CBU41qjGAKyW5c4XjRLPoEwl3nTeFQsBO5WRLV4OPF8PeJRn
uRtdBQOi0VZYfLLvVbrf5cxAwQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:37 2024 by rpki-client on console-fra.rpki-client.org