Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/c96291-5efb-41b3-bcfb-92b0fd5d7644/1/nUSU6K-3OwpDNeNJFNQYtziFI5U.roa
File: nUSU6K-3OwpDNeNJFNQYtziFI5U.roa (raw, json)
Hash identifier: QYD8JPu/TfalK5mqINyv/EDZGl0LDG6VzBUSvtWjdK8=
Subject key identifier: 9D:44:94:E8:AF:B7:3B:0A:43:35:E3:49:14:D4:18:B7:38:85:23:95
Certificate issuer: /CN=463528c540a6d577c2d1cc1a6eea17124b392386
Certificate serial: 0AD2539C
Authority key identifier: 46:35:28:C5:40:A6:D5:77:C2:D1:CC:1A:6E:EA:17:12:4B:39:23:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RjUoxUCm1XfC0cwabuoXEks5I4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/c96291-5efb-41b3-bcfb-92b0fd5d7644/1/nUSU6K-3OwpDNeNJFNQYtziFI5U.roa
Signing time: Sat 01 Jan 2022 13:05:52 +0000
ROA not before: Sat 01 Jan 2022 13:05:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200440
IP address blocks: 194.56.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181556124 (0xad2539c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=463528c540a6d577c2d1cc1a6eea17124b392386
Validity
Not Before: Jan 1 13:05:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d4494e8afb73b0a4335e34914d418b738852395
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:76:79:3d:9b:4b:f5:61:8a:b3:c5:89:c4:a4:
78:fc:be:15:41:52:94:20:15:25:e1:a3:e7:50:82:
00:f2:16:f4:f0:38:15:1d:53:05:21:69:2b:a8:89:
1e:5c:70:6c:59:c6:0e:6f:16:ab:38:73:ea:00:08:
69:a8:c3:f4:f2:13:6a:5a:5d:54:0a:d1:e0:ad:55:
ef:b0:ef:64:e3:b4:2d:36:f6:8c:fc:b4:fd:bb:e7:
73:23:13:f7:86:c1:bc:cf:80:f3:df:a9:b9:eb:63:
e4:8a:d0:80:49:e4:25:08:1c:f6:c3:85:0c:68:71:
a3:9a:c3:a1:e9:f6:6a:28:00:3e:5d:03:68:e3:51:
53:51:c0:98:67:0f:a0:ec:67:cf:b2:ce:df:66:8e:
e1:62:74:bd:f5:3f:33:a4:6a:8b:30:b6:40:5c:ee:
c2:15:0d:87:86:cd:0b:28:f1:f9:3c:0c:79:7e:47:
aa:e4:2a:e8:2a:b1:c8:bf:0d:e1:50:e3:f5:24:96:
30:c6:0d:7a:9a:ab:1e:37:08:90:8f:c1:15:1b:8a:
6a:a8:34:62:4e:55:5a:2b:16:a6:29:96:a4:69:5f:
29:af:cb:cc:b9:50:85:22:b9:f8:9e:b4:6a:1d:fd:
b0:29:3b:ef:76:8b:30:d4:77:bc:d2:b3:51:cc:2a:
93:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:44:94:E8:AF:B7:3B:0A:43:35:E3:49:14:D4:18:B7:38:85:23:95
X509v3 Authority Key Identifier:
keyid:46:35:28:C5:40:A6:D5:77:C2:D1:CC:1A:6E:EA:17:12:4B:39:23:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RjUoxUCm1XfC0cwabuoXEks5I4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/c96291-5efb-41b3-bcfb-92b0fd5d7644/1/nUSU6K-3OwpDNeNJFNQYtziFI5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/c96291-5efb-41b3-bcfb-92b0fd5d7644/1/RjUoxUCm1XfC0cwabuoXEks5I4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.56.75.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:ce:cc:ff:19:9d:d7:2b:47:92:4d:e1:2f:3b:a0:0b:f6:1f:
b2:97:1e:2e:ec:4d:0a:68:5a:65:fd:3f:7f:f2:36:d5:be:a1:
63:44:62:22:3a:0a:9f:80:26:95:93:0b:c7:de:02:18:a8:0f:
15:3e:68:76:fe:c2:48:6e:6a:e3:f9:24:31:17:b5:e6:e8:36:
d6:64:1d:cd:29:28:cc:0f:e0:e2:c1:3a:3e:02:03:d8:fd:c6:
bc:35:92:f8:9d:c4:0e:bd:0e:45:4a:ea:2d:4b:99:60:81:1e:
67:f0:c7:24:ac:de:d4:37:90:44:f4:1f:d3:5d:58:8e:ac:62:
b5:ad:6a:89:35:4e:62:36:11:e9:22:a2:a9:b6:f8:33:70:11:
a8:5e:c5:a0:b5:2a:52:26:3d:8d:dd:d9:86:21:2f:0a:71:a1:
14:27:22:6d:97:28:72:80:04:58:a2:0a:0f:97:f4:ea:6d:ad:
34:55:c7:94:19:8b:80:9b:d1:7e:1d:50:0c:2b:d1:a3:a1:c2:
ad:3a:af:ca:28:c5:c6:97:21:3d:9c:14:74:02:a1:89:1b:41:
85:46:80:1f:03:8d:5c:44:92:ba:12:bb:75:0f:8c:0f:56:f2:
c7:e4:55:c7:66:f5:bb:98:ef:5f:47:e0:9f:b7:b7:8e:8d:c7:
85:b5:11:52
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECtJTnDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
NjM1MjhjNTQwYTZkNTc3YzJkMWNjMWE2ZWVhMTcxMjRiMzkyMzg2MB4XDTIyMDEw
MTEzMDU1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWQ0NDk0ZThhZmI3
M2IwYTQzMzVlMzQ5MTRkNDE4YjczODg1MjM5NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKh2eT2bS/VhirPFicSkePy+FUFSlCAVJeGj51CCAPIW9PA4
FR1TBSFpK6iJHlxwbFnGDm8Wqzhz6gAIaajD9PITalpdVArR4K1V77DvZOO0LTb2
jPy0/bvncyMT94bBvM+A89+puetj5IrQgEnkJQgc9sOFDGhxo5rDoen2aigAPl0D
aONRU1HAmGcPoOxnz7LO32aO4WJ0vfU/M6RqizC2QFzuwhUNh4bNCyjx+TwMeX5H
quQq6CqxyL8N4VDj9SSWMMYNepqrHjcIkI/BFRuKaqg0Yk5VWisWpimWpGlfKa/L
zLlQhSK5+J60ah39sCk773aLMNR3vNKzUcwqk9MCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSdRJTor7c7CkM140kU1Bi3OIUjlTAfBgNVHSMEGDAWgBRGNSjFQKbVd8LR
zBpu6hcSSzkjhjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1JqVW94VUNtMVhmQzBjd2FidW9YRWtzNUk0WS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODkvYzk2MjkxLTVlZmItNDFiMy1iY2ZiLTkyYjBmZDVkNzY0NC8x
L25VU1U2Sy0zT3dwRE5lTkpGTlFZdHppRkk1VS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODkv
Yzk2MjkxLTVlZmItNDFiMy1iY2ZiLTkyYjBmZDVkNzY0NC8xL1JqVW94VUNtMVhm
QzBjd2FidW9YRWtzNUk0WS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMI4SzANBgkqhkiG9w0BAQsFAAOC
AQEAjs7M/xmd1ytHkk3hLzugC/YfspceLuxNCmhaZf0/f/I21b6hY0RiIjoKn4Am
lZMLx94CGKgPFT5odv7CSG5q4/kkMRe15ug21mQdzSkozA/g4sE6PgID2P3GvDWS
+J3EDr0ORUrqLUuZYIEeZ/DHJKze1DeQRPQf011Yjqxita1qiTVOYjYR6SKiqbb4
M3ARqF7FoLUqUiY9jd3ZhiEvCnGhFCcibZcocoAEWKIKD5f06m2tNFXHlBmLgJvR
fh1QDCvRo6HCrTqvyijFxpchPZwUdAKhiRtBhUaAHwONXESSuhK7dQ+MD1byx+RV
x2b1u5jvX0fgn7e3jo3HhbURUg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:43 2023 by rpki-client on console-ams.rpki-client.org