Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/e35ac1-05d1-406d-b668-36eaf7948531/1/n4wzLe40XrARy2UCtlhUBKWcApU.roa
File: n4wzLe40XrARy2UCtlhUBKWcApU.roa (raw, json)
Hash identifier: uV1zimv1RmY5or3Y8gfiHQ2l738eBTYoYB+qmIWgQLo=
Subject key identifier: 9F:8C:33:2D:EE:34:5E:B0:11:CB:65:02:B6:58:54:04:A5:9C:02:95
Certificate issuer: /CN=365b4abab716ad1407a902e5176560ecc37c966d
Certificate serial: E8B622
Authority key identifier: 36:5B:4A:BA:B7:16:AD:14:07:A9:02:E5:17:65:60:EC:C3:7C:96:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NltKurcWrRQHqQLlF2Vg7MN8lm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/e35ac1-05d1-406d-b668-36eaf7948531/1/n4wzLe40XrARy2UCtlhUBKWcApU.roa
Signing time: Sat 01 Jan 2022 08:57:16 +0000
ROA not before: Sat 01 Jan 2022 08:57:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21107
IP address blocks: 130.193.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15250978 (0xe8b622)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=365b4abab716ad1407a902e5176560ecc37c966d
Validity
Not Before: Jan 1 08:57:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f8c332dee345eb011cb6502b6585404a59c0295
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:97:9e:48:26:20:ac:32:c2:14:bc:74:79:12:
c3:b3:4f:3a:fc:22:e8:14:38:98:b2:00:ce:17:57:
c6:e4:e8:64:d0:66:ac:9a:57:27:42:a5:dc:22:4d:
c9:a2:a3:6c:ea:6d:00:e6:49:23:fe:0f:28:48:c2:
b8:5f:7f:53:7c:c3:66:d2:1d:35:c9:2d:33:13:d9:
cd:31:b9:6c:fc:a7:11:fc:39:d0:3a:1a:79:4a:55:
79:3c:6e:74:42:b0:96:a0:14:ab:b0:68:b1:bb:cd:
3a:30:b7:97:7f:cd:fd:b2:d8:be:d1:be:77:00:59:
9e:0f:76:84:1b:62:4a:c0:dd:81:0c:6a:60:0f:45:
40:68:b1:30:16:06:b5:e0:95:f1:26:8a:2d:b6:6a:
41:9b:a2:97:24:37:cc:91:d6:50:cd:27:3e:31:3c:
8f:48:ff:4c:59:88:b6:dc:28:5a:73:6d:07:8c:e3:
ac:de:40:90:b5:65:c2:82:cc:eb:9d:2d:4b:04:ae:
7c:ca:ae:30:77:d0:2b:72:0d:ca:74:75:ac:19:55:
b1:11:39:5d:2e:89:63:75:55:c7:c9:63:99:47:17:
76:8a:ca:06:cd:18:18:16:f0:3c:91:6b:d0:a2:99:
a5:e1:19:51:f6:16:98:48:17:73:dc:da:80:b3:57:
e2:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:8C:33:2D:EE:34:5E:B0:11:CB:65:02:B6:58:54:04:A5:9C:02:95
X509v3 Authority Key Identifier:
keyid:36:5B:4A:BA:B7:16:AD:14:07:A9:02:E5:17:65:60:EC:C3:7C:96:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NltKurcWrRQHqQLlF2Vg7MN8lm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/e35ac1-05d1-406d-b668-36eaf7948531/1/n4wzLe40XrARy2UCtlhUBKWcApU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/e35ac1-05d1-406d-b668-36eaf7948531/1/NltKurcWrRQHqQLlF2Vg7MN8lm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.193.19.0/24
Signature Algorithm: sha256WithRSAEncryption
98:18:56:a1:32:67:7a:72:28:5a:09:23:ef:a4:9d:f2:14:71:
08:eb:f6:d8:92:05:85:3a:cb:d1:16:0f:20:14:95:12:e7:01:
a0:09:44:fc:ca:c0:7b:90:8b:df:39:21:c0:2d:b6:b8:6d:bf:
a3:ab:0b:29:7a:af:4f:c5:a4:6f:2a:64:3f:db:4b:e3:5f:1a:
4b:34:73:39:6e:f8:b0:e0:3d:0c:af:9c:f4:55:38:43:c2:0b:
11:d3:01:44:0c:2b:ae:81:32:33:b5:78:1a:b8:0d:71:07:e5:
7c:30:87:2b:7b:28:df:a5:27:a2:2f:64:28:80:a7:33:ca:24:
cc:66:95:6c:81:6d:60:5a:ce:34:b8:b9:e3:5f:66:1e:2e:be:
d8:7c:9e:aa:e5:cc:08:f4:bb:dd:f6:3d:6c:d3:78:6c:bf:3b:
3a:04:6a:c9:c3:03:da:79:fc:73:46:d5:9d:c6:4b:73:1a:4d:
b8:1e:a6:a7:dd:e2:33:c8:a5:e3:bc:ae:b3:11:7b:de:3e:56:
25:b2:36:68:7b:59:86:32:f4:4d:ba:fe:2d:5c:84:8e:90:31:
d6:ed:ee:b5:53:85:d8:e0:35:be:89:b9:f1:88:b7:9d:97:e3:
94:f9:48:0f:4b:70:fa:1f:e8:73:c0:c1:f0:77:70:21:ca:0e:
79:bc:93:85
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAOi2IjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NjViNGFiYWI3MTZhZDE0MDdhOTAyZTUxNzY1NjBlY2MzN2M5NjZkMB4XDTIyMDEw
MTA4NTcxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWY4YzMzMmRlZTM0
NWViMDExY2I2NTAyYjY1ODU0MDRhNTljMDI5NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALSXnkgmIKwywhS8dHkSw7NPOvwi6BQ4mLIAzhdXxuToZNBm
rJpXJ0Kl3CJNyaKjbOptAOZJI/4PKEjCuF9/U3zDZtIdNcktMxPZzTG5bPynEfw5
0DoaeUpVeTxudEKwlqAUq7BosbvNOjC3l3/N/bLYvtG+dwBZng92hBtiSsDdgQxq
YA9FQGixMBYGteCV8SaKLbZqQZuilyQ3zJHWUM0nPjE8j0j/TFmIttwoWnNtB4zj
rN5AkLVlwoLM650tSwSufMquMHfQK3INynR1rBlVsRE5XS6JY3VVx8ljmUcXdorK
Bs0YGBbwPJFr0KKZpeEZUfYWmEgXc9zagLNX4g8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSfjDMt7jResBHLZQK2WFQEpZwClTAfBgNVHSMEGDAWgBQ2W0q6txatFAep
AuUXZWDsw3yWbTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05sdEt1cmNXclJRSHFRTGxGMlZnN01OOGxtMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2UvZTM1YWMxLTA1ZDEtNDA2ZC1iNjY4LTM2ZWFmNzk0ODUzMS8x
L240d3pMZTQwWHJBUnkyVUN0bGhVQktXY0FwVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Uv
ZTM1YWMxLTA1ZDEtNDA2ZC1iNjY4LTM2ZWFmNzk0ODUzMS8xL05sdEt1cmNXclJR
SHFRTGxGMlZnN01OOGxtMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAILBEzANBgkqhkiG9w0BAQsFAAOC
AQEAmBhWoTJnenIoWgkj76Sd8hRxCOv22JIFhTrL0RYPIBSVEucBoAlE/MrAe5CL
3zkhwC22uG2/o6sLKXqvT8WkbypkP9tL418aSzRzOW74sOA9DK+c9FU4Q8ILEdMB
RAwrroEyM7V4GrgNcQflfDCHK3so36Unoi9kKICnM8okzGaVbIFtYFrONLi5419m
Hi6+2HyequXMCPS73fY9bNN4bL87OgRqycMD2nn8c0bVncZLcxpNuB6mp93iM8il
47yusxF73j5WJbI2aHtZhjL0Tbr+LVyEjpAx1u3utVOF2OA1vom58Yi3nZfjlPlI
D0tw+h/oc8DB8HdwIcoOebyThQ==
-----END CERTIFICATE-----
Generated at Sun Apr 13 10:22:59 2025 by rpki-client