Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/e35ac1-05d1-406d-b668-36eaf7948531/1/N-Q8BHVQb02tEc9NmZPQDNKz0JQ.roa
File: N-Q8BHVQb02tEc9NmZPQDNKz0JQ.roa (raw, json)
Hash identifier: lY4rwK6UcSF/tFLXPxBxXdWu8Eg1xEeQUMbqLVHwNb8=
Subject key identifier: 37:E4:3C:04:75:50:6F:4D:AD:11:CF:4D:99:93:D0:0C:D2:B3:D0:94
Certificate issuer: /CN=365b4abab716ad1407a902e5176560ecc37c966d
Certificate serial: E87915
Authority key identifier: 36:5B:4A:BA:B7:16:AD:14:07:A9:02:E5:17:65:60:EC:C3:7C:96:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NltKurcWrRQHqQLlF2Vg7MN8lm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/e35ac1-05d1-406d-b668-36eaf7948531/1/N-Q8BHVQb02tEc9NmZPQDNKz0JQ.roa
Signing time: Sat 01 Jan 2022 08:57:16 +0000
ROA not before: Sat 01 Jan 2022 08:57:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16019
IP address blocks: 130.193.17.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15235349 (0xe87915)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=365b4abab716ad1407a902e5176560ecc37c966d
Validity
Not Before: Jan 1 08:57:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=37e43c0475506f4dad11cf4d9993d00cd2b3d094
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:de:36:ba:0d:a5:ee:0f:27:40:ca:30:89:05:
f9:e6:d8:0f:92:62:43:88:97:d7:31:3f:30:04:be:
d9:70:c9:49:04:61:6a:65:3d:2c:79:88:71:c5:f1:
00:d0:57:2e:e3:d7:90:a4:8e:ed:bc:f1:ad:93:3d:
62:3f:0c:79:22:96:9b:70:8c:24:83:f3:1a:ba:54:
56:2f:ce:0f:88:9c:92:56:53:8c:b1:6b:23:d6:7c:
6e:74:d6:3f:02:13:dc:8d:6c:a3:21:41:0f:ca:d1:
eb:1e:30:ce:03:b6:6e:f9:47:3b:fe:48:c6:50:87:
82:95:cf:73:9f:2d:6a:b4:86:03:7e:fc:82:3e:4c:
53:b5:83:41:0d:bc:40:e8:7a:12:fe:fa:cd:e1:6d:
26:95:ce:5e:05:29:3e:3c:2c:fc:c7:46:2c:d8:23:
9f:40:cf:d6:02:46:ae:7c:32:1f:14:d1:c4:11:ac:
e5:3f:c8:e9:7a:36:69:ed:08:c6:84:8f:5d:34:28:
0f:04:4e:ef:92:ac:b1:c0:a7:ba:4c:34:2e:38:e3:
a5:0e:07:8f:e7:7f:4d:7a:7d:4a:f1:33:08:e3:67:
ab:6c:2d:80:40:50:35:59:49:2a:bb:e4:7e:a6:24:
78:1e:f3:a6:c7:09:3a:c3:69:3d:79:58:db:0a:4d:
d9:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:E4:3C:04:75:50:6F:4D:AD:11:CF:4D:99:93:D0:0C:D2:B3:D0:94
X509v3 Authority Key Identifier:
keyid:36:5B:4A:BA:B7:16:AD:14:07:A9:02:E5:17:65:60:EC:C3:7C:96:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NltKurcWrRQHqQLlF2Vg7MN8lm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/e35ac1-05d1-406d-b668-36eaf7948531/1/N-Q8BHVQb02tEc9NmZPQDNKz0JQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/e35ac1-05d1-406d-b668-36eaf7948531/1/NltKurcWrRQHqQLlF2Vg7MN8lm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.193.17.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:8a:2e:88:45:2b:5f:8f:d5:50:2c:12:f6:e9:96:57:02:6f:
58:69:2f:97:ec:6f:63:c7:c7:a5:a5:3b:f3:1b:3a:c3:f6:b5:
e1:e3:32:2a:a1:76:21:4c:97:bd:f5:74:c3:dc:4b:89:b9:5c:
e4:20:ef:0e:9d:5b:9a:5f:b7:9d:b7:42:08:ea:58:19:49:d1:
65:2d:56:62:f8:1b:03:1b:62:fc:3d:58:5d:92:91:88:50:32:
c3:a5:19:98:66:89:77:44:1a:b6:ff:10:d1:40:05:76:e6:07:
33:e9:9c:0b:51:5b:46:54:d1:49:41:9f:68:c1:21:55:9c:c1:
73:17:34:8c:41:3f:c6:e4:bb:6d:75:3a:fe:3d:dc:de:59:34:
67:fe:7d:7d:c4:6a:6e:1c:9a:bb:c0:5f:35:82:29:ad:77:2f:
12:4e:e6:66:f5:aa:43:e4:6a:f3:38:bd:50:c8:63:01:ef:c9:
8d:99:05:91:37:67:a7:db:86:a9:31:96:cd:4b:c4:d3:d6:e7:
1d:63:ec:d3:8a:68:54:b7:8a:a0:73:0b:36:01:43:f2:1d:93:
df:12:c2:cd:a7:8a:a1:25:05:18:17:18:e5:53:37:e6:7e:1b:
1f:be:97:2a:73:d2:96:a1:e4:b0:f7:b4:fb:ef:0e:5c:3a:e2:
77:c0:c9:df
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAOh5FTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NjViNGFiYWI3MTZhZDE0MDdhOTAyZTUxNzY1NjBlY2MzN2M5NjZkMB4XDTIyMDEw
MTA4NTcxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzdlNDNjMDQ3NTUw
NmY0ZGFkMTFjZjRkOTk5M2QwMGNkMmIzZDA5NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKfeNroNpe4PJ0DKMIkF+ebYD5JiQ4iX1zE/MAS+2XDJSQRh
amU9LHmIccXxANBXLuPXkKSO7bzxrZM9Yj8MeSKWm3CMJIPzGrpUVi/OD4icklZT
jLFrI9Z8bnTWPwIT3I1soyFBD8rR6x4wzgO2bvlHO/5IxlCHgpXPc58tarSGA378
gj5MU7WDQQ28QOh6Ev76zeFtJpXOXgUpPjws/MdGLNgjn0DP1gJGrnwyHxTRxBGs
5T/I6Xo2ae0IxoSPXTQoDwRO75KsscCnukw0LjjjpQ4Hj+d/TXp9SvEzCONnq2wt
gEBQNVlJKrvkfqYkeB7zpscJOsNpPXlY2wpN2eECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ35DwEdVBvTa0Rz02Zk9AM0rPQlDAfBgNVHSMEGDAWgBQ2W0q6txatFAep
AuUXZWDsw3yWbTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05sdEt1cmNXclJRSHFRTGxGMlZnN01OOGxtMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2UvZTM1YWMxLTA1ZDEtNDA2ZC1iNjY4LTM2ZWFmNzk0ODUzMS8x
L04tUThCSFZRYjAydEVjOU5tWlBRRE5LejBKUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Uv
ZTM1YWMxLTA1ZDEtNDA2ZC1iNjY4LTM2ZWFmNzk0ODUzMS8xL05sdEt1cmNXclJR
SHFRTGxGMlZnN01OOGxtMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAILBETANBgkqhkiG9w0BAQsFAAOC
AQEAwIouiEUrX4/VUCwS9umWVwJvWGkvl+xvY8fHpaU78xs6w/a14eMyKqF2IUyX
vfV0w9xLiblc5CDvDp1bml+3nbdCCOpYGUnRZS1WYvgbAxti/D1YXZKRiFAyw6UZ
mGaJd0Qatv8Q0UAFduYHM+mcC1FbRlTRSUGfaMEhVZzBcxc0jEE/xuS7bXU6/j3c
3lk0Z/59fcRqbhyau8BfNYIprXcvEk7mZvWqQ+Rq8zi9UMhjAe/JjZkFkTdnp9uG
qTGWzUvE09bnHWPs04poVLeKoHMLNgFD8h2T3xLCzaeKoSUFGBcY5VM35n4bH76X
KnPSlqHksPe0++8OXDrid8DJ3w==
-----END CERTIFICATE-----
Generated at Sun Apr 13 11:06:17 2025 by rpki-client