Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/a28ef5-14c4-4341-8f19-9106bfbfe74d/1/5NLkh8cYpqIQrcP7pS1uA3n-ngg.roa
File: 5NLkh8cYpqIQrcP7pS1uA3n-ngg.roa (raw, json)
Hash identifier: fTNdorGyQfYiM29ZimUnh1HP7D++V7kqHFeoNi9FR10=
Subject key identifier: E4:D2:E4:87:C7:18:A6:A2:10:AD:C3:FB:A5:2D:6E:03:79:FE:9E:08
Certificate issuer: /CN=bcc01bf8e98ba7b2b0e11a8e0fbc4b39a11b8673
Certificate serial: 0246D8D0
Authority key identifier: BC:C0:1B:F8:E9:8B:A7:B2:B0:E1:1A:8E:0F:BC:4B:39:A1:1B:86:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vMAb-OmLp7Kw4RqOD7xLOaEbhnM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/a28ef5-14c4-4341-8f19-9106bfbfe74d/1/5NLkh8cYpqIQrcP7pS1uA3n-ngg.roa
Signing time: Tue 15 Mar 2022 13:40:26 +0000
ROA not before: Tue 15 Mar 2022 13:40:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34569
IP address blocks: 185.218.64.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38197456 (0x246d8d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcc01bf8e98ba7b2b0e11a8e0fbc4b39a11b8673
Validity
Not Before: Mar 15 13:40:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e4d2e487c718a6a210adc3fba52d6e0379fe9e08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:09:81:f2:35:14:24:61:0d:22:94:49:52:d0:
5f:24:05:b9:f6:04:31:20:9b:14:e4:ee:8c:a5:bd:
58:a6:76:59:27:88:0b:fe:8a:7d:a4:57:61:3b:2e:
b2:b8:b1:4e:ed:2e:5d:a7:31:f6:29:21:60:29:14:
e4:c1:4d:9d:bb:a3:8e:6b:52:c3:da:cb:d0:d3:cc:
22:38:81:5d:5d:82:4a:1f:21:35:7b:c0:d8:70:c9:
d1:52:89:8a:86:4c:cc:28:7f:fe:df:af:76:67:aa:
17:75:39:29:f9:54:8d:3b:b0:26:34:d9:58:b4:58:
e3:a9:c7:80:e5:e1:c1:4a:23:99:82:d1:24:a9:2d:
82:c8:00:f7:cb:46:9f:33:3c:ce:6b:d2:0d:a4:e4:
c2:29:91:9d:e1:8a:af:18:49:c9:0f:68:ee:9b:38:
78:da:89:9e:2d:4e:96:fc:10:82:b1:e9:fb:f6:b9:
b9:30:c3:9f:e0:2b:f1:5e:68:cb:a1:aa:6a:7b:ab:
2f:e1:d1:20:c4:20:9a:17:1f:2e:ec:5c:dc:6c:e9:
d3:78:6c:8b:41:99:7c:16:08:57:1b:a1:ab:e4:ed:
fb:01:2c:ff:c1:18:ed:24:55:9a:c7:9b:7f:b8:12:
5c:14:cd:d0:8d:07:08:33:69:e0:ae:ad:0e:21:c6:
0a:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:D2:E4:87:C7:18:A6:A2:10:AD:C3:FB:A5:2D:6E:03:79:FE:9E:08
X509v3 Authority Key Identifier:
keyid:BC:C0:1B:F8:E9:8B:A7:B2:B0:E1:1A:8E:0F:BC:4B:39:A1:1B:86:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vMAb-OmLp7Kw4RqOD7xLOaEbhnM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/a28ef5-14c4-4341-8f19-9106bfbfe74d/1/5NLkh8cYpqIQrcP7pS1uA3n-ngg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/a28ef5-14c4-4341-8f19-9106bfbfe74d/1/vMAb-OmLp7Kw4RqOD7xLOaEbhnM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.64.0/22
Signature Algorithm: sha256WithRSAEncryption
50:d9:f6:da:e5:f3:d1:0e:1c:11:05:49:1d:62:35:2b:50:e0:
e4:0e:52:29:e2:f5:e3:e4:e0:ab:46:bd:e1:e8:7c:c1:4d:8b:
76:bd:64:11:3b:5e:5f:ad:9b:ed:5e:8a:5e:3a:3d:7a:76:80:
95:d2:9a:aa:ab:fe:b0:ba:bb:7e:59:42:7e:60:99:2d:d1:0b:
99:52:f9:cd:90:2e:20:66:63:22:40:9d:20:b3:d2:81:73:b3:
3b:82:44:ef:2b:a1:20:c4:5a:07:32:77:35:d2:50:97:cf:1f:
6a:48:63:a1:54:c8:f1:40:d7:a0:e7:09:87:fd:b4:90:1e:93:
43:dc:df:db:5b:26:ba:28:29:9b:14:1b:68:63:0f:a9:21:59:
51:8a:46:73:4e:75:57:8f:87:f0:77:65:38:7c:c7:cf:cf:aa:
f5:3f:f5:8a:43:95:9d:98:3b:41:37:c6:6d:90:49:aa:bc:2a:
39:b9:f8:da:88:e7:43:bd:e5:d5:5c:6b:da:3b:2f:b7:22:f7:
34:f1:42:5c:bb:76:60:0a:e5:e0:a3:69:f2:d6:0f:a1:0c:a1:
89:ed:6b:c5:a1:8f:a6:5a:9d:50:c7:8c:3a:9f:13:b0:d0:37:
06:be:ed:77:29:7c:8e:2f:2b:61:b5:7a:7f:27:e8:7e:ce:b8:
0e:e6:5e:ec
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAkbY0DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
Y2MwMWJmOGU5OGJhN2IyYjBlMTFhOGUwZmJjNGIzOWExMWI4NjczMB4XDTIyMDMx
NTEzNDAyNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTRkMmU0ODdjNzE4
YTZhMjEwYWRjM2ZiYTUyZDZlMDM3OWZlOWUwODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJAJgfI1FCRhDSKUSVLQXyQFufYEMSCbFOTujKW9WKZ2WSeI
C/6KfaRXYTsusrixTu0uXacx9ikhYCkU5MFNnbujjmtSw9rL0NPMIjiBXV2CSh8h
NXvA2HDJ0VKJioZMzCh//t+vdmeqF3U5KflUjTuwJjTZWLRY46nHgOXhwUojmYLR
JKktgsgA98tGnzM8zmvSDaTkwimRneGKrxhJyQ9o7ps4eNqJni1OlvwQgrHp+/a5
uTDDn+Ar8V5oy6GqanurL+HRIMQgmhcfLuxc3Gzp03hsi0GZfBYIVxuhq+Tt+wEs
/8EY7SRVmsebf7gSXBTN0I0HCDNp4K6tDiHGCkUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTk0uSHxximohCtw/ulLW4Def6eCDAfBgNVHSMEGDAWgBS8wBv46YunsrDh
Go4PvEs5oRuGczAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ZNQWItT21McDdLdzRScU9EN3hMT2FFYmhuTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjgvYTI4ZWY1LTE0YzQtNDM0MS04ZjE5LTkxMDZiZmJmZTc0ZC8x
LzVOTGtoOGNZcHFJUXJjUDdwUzF1QTNuLW5nZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjgv
YTI4ZWY1LTE0YzQtNDM0MS04ZjE5LTkxMDZiZmJmZTc0ZC8xL3ZNQWItT21McDdL
dzRScU9EN3hMT2FFYmhuTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArnaQDANBgkqhkiG9w0BAQsFAAOC
AQEAUNn22uXz0Q4cEQVJHWI1K1Dg5A5SKeL14+Tgq0a94eh8wU2Ldr1kETteX62b
7V6KXjo9enaAldKaqqv+sLq7fllCfmCZLdELmVL5zZAuIGZjIkCdILPSgXOzO4JE
7yuhIMRaBzJ3NdJQl88fakhjoVTI8UDXoOcJh/20kB6TQ9zf21smuigpmxQbaGMP
qSFZUYpGc051V4+H8HdlOHzHz8+q9T/1ikOVnZg7QTfGbZBJqrwqObn42ojnQ73l
1Vxr2jsvtyL3NPFCXLt2YArl4KNp8tYPoQyhie1rxaGPplqdUMeMOp8TsNA3Br7t
dyl8ji8rYbV6fyfofs64DuZe7A==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:01 2023 by rpki-client on console-ams.rpki-client.org