Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/aa5cc0-bb56-4b47-b7c1-44f41d9e1277/1/npYxzCJ2cK4wJ919XHo1CzIH7p8.roa
File: npYxzCJ2cK4wJ919XHo1CzIH7p8.roa (raw, json)
Hash identifier: 2ywjhKoV+Ock36ENF+M+tZFlD9btxyAkRDGYsrW43zs=
Subject key identifier: 9E:96:31:CC:22:76:70:AE:30:27:DD:7D:5C:7A:35:0B:32:07:EE:9F
Certificate issuer: /CN=e069ab6f09572afb46e9f8e9a0639d820b969422
Certificate serial: 103EE1B6
Authority key identifier: E0:69:AB:6F:09:57:2A:FB:46:E9:F8:E9:A0:63:9D:82:0B:96:94:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4GmrbwlXKvtG6fjpoGOdgguWlCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/aa5cc0-bb56-4b47-b7c1-44f41d9e1277/1/npYxzCJ2cK4wJ919XHo1CzIH7p8.roa
Signing time: Sat 01 Jan 2022 06:56:01 +0000
ROA not before: Sat 01 Jan 2022 06:56:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 194.15.138.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 272556470 (0x103ee1b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e069ab6f09572afb46e9f8e9a0639d820b969422
Validity
Not Before: Jan 1 06:56:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e9631cc227670ae3027dd7d5c7a350b3207ee9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:c6:c9:13:55:b4:c9:07:50:13:7c:97:f6:76:
03:90:e4:39:9a:e5:5b:66:cb:3f:6b:9f:50:26:87:
f5:14:ee:5b:c8:8f:74:57:4c:80:46:7a:96:4e:07:
e9:04:ac:bc:31:30:84:ff:3b:1c:f5:28:c0:a2:2a:
de:36:bc:67:d1:86:fe:30:2e:3a:26:72:f9:56:3b:
14:33:ba:34:bc:51:72:0b:8e:46:b1:dc:51:f1:a9:
10:b6:eb:6e:52:5f:5e:15:00:97:b5:0b:f2:51:6d:
75:e0:d4:76:b5:82:61:4a:ed:56:0e:64:2d:7c:1d:
42:17:0f:bb:ec:86:a3:30:c7:73:9e:2e:1c:39:7f:
1a:12:f4:1f:f0:4e:89:83:6d:49:b2:0b:41:7c:aa:
aa:20:16:ab:23:d0:cc:84:5e:0f:da:0f:ba:1b:66:
22:82:37:bf:9d:e0:34:e9:51:af:35:13:d5:71:8f:
b8:e2:f2:1d:95:4a:73:8c:5c:74:ea:ee:11:39:62:
1d:9c:34:89:bb:9e:f4:42:b3:fb:96:d1:de:50:26:
1e:16:f2:a8:c8:4e:8c:e1:da:c9:50:46:73:18:53:
cf:ef:81:ce:56:89:29:82:cc:10:8e:15:36:d6:51:
8e:08:c9:ec:4b:c1:cd:d1:c1:2d:48:da:f2:13:4a:
e1:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:96:31:CC:22:76:70:AE:30:27:DD:7D:5C:7A:35:0B:32:07:EE:9F
X509v3 Authority Key Identifier:
keyid:E0:69:AB:6F:09:57:2A:FB:46:E9:F8:E9:A0:63:9D:82:0B:96:94:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4GmrbwlXKvtG6fjpoGOdgguWlCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/aa5cc0-bb56-4b47-b7c1-44f41d9e1277/1/npYxzCJ2cK4wJ919XHo1CzIH7p8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/aa5cc0-bb56-4b47-b7c1-44f41d9e1277/1/4GmrbwlXKvtG6fjpoGOdgguWlCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.138.0/23
Signature Algorithm: sha256WithRSAEncryption
4b:23:ff:11:df:3d:24:67:6c:68:dc:fb:43:df:f0:d8:6e:7c:
c8:74:39:6b:07:af:08:33:7b:dd:b4:14:5b:63:f1:63:3c:0b:
68:ce:7a:bf:f9:40:8b:1c:68:72:96:99:fd:a7:ea:ca:3b:e1:
1e:8a:e6:7c:f8:ef:d9:05:1d:ff:e4:c9:4c:2a:79:87:1e:c7:
f9:83:d0:7a:49:5c:f1:16:9c:58:67:10:41:75:72:a9:da:91:
a6:47:a1:5e:cd:37:b6:c7:7f:2b:ac:fb:22:ad:1c:ab:50:dd:
52:d0:e7:6d:88:e9:cc:8d:cc:66:a4:c7:d6:10:14:7b:20:69:
3a:2d:eb:06:81:a3:07:6c:83:48:07:06:28:98:86:c5:5d:dd:
ec:bc:12:e6:95:03:e7:0f:82:55:52:8e:26:b4:09:73:5d:37:
29:a8:d6:c1:ef:a4:c9:af:d2:cf:c6:92:39:8e:26:d4:73:74:
9b:b4:a9:6d:87:c8:45:30:49:74:6d:51:18:2f:b6:c5:5b:50:
24:32:23:0b:e5:0a:70:11:00:60:55:0c:ab:17:0f:8c:0a:62:
ae:d5:6f:0a:80:9a:af:f5:bd:f3:07:7c:64:c8:38:20:67:e8:
7d:50:b9:43:e7:b9:a8:bd:44:3b:ca:29:77:bc:ff:e3:3e:22:
ce:af:f0:ac
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEED7htjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MDY5YWI2ZjA5NTcyYWZiNDZlOWY4ZTlhMDYzOWQ4MjBiOTY5NDIyMB4XDTIyMDEw
MTA2NTYwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWU5NjMxY2MyMjc2
NzBhZTMwMjdkZDdkNWM3YTM1MGIzMjA3ZWU5ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJXGyRNVtMkHUBN8l/Z2A5DkOZrlW2bLP2ufUCaH9RTuW8iP
dFdMgEZ6lk4H6QSsvDEwhP87HPUowKIq3ja8Z9GG/jAuOiZy+VY7FDO6NLxRcguO
RrHcUfGpELbrblJfXhUAl7UL8lFtdeDUdrWCYUrtVg5kLXwdQhcPu+yGozDHc54u
HDl/GhL0H/BOiYNtSbILQXyqqiAWqyPQzIReD9oPuhtmIoI3v53gNOlRrzUT1XGP
uOLyHZVKc4xcdOruETliHZw0ibue9EKz+5bR3lAmHhbyqMhOjOHayVBGcxhTz++B
zlaJKYLMEI4VNtZRjgjJ7EvBzdHBLUja8hNK4XMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSeljHMInZwrjAn3X1cejULMgfunzAfBgNVHSMEGDAWgBTgaatvCVcq+0bp
+OmgY52CC5aUIjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzRHbXJid2xYS3Z0RzZmanBvR09kZ2d1V2xDSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWIvYWE1Y2MwLWJiNTYtNGI0Ny1iN2MxLTQ0ZjQxZDllMTI3Ny8x
L25wWXh6Q0oyY0s0d0o5MTlYSG8xQ3pJSDdwOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWIv
YWE1Y2MwLWJiNTYtNGI0Ny1iN2MxLTQ0ZjQxZDllMTI3Ny8xLzRHbXJid2xYS3Z0
RzZmanBvR09kZ2d1V2xDSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcIPijANBgkqhkiG9w0BAQsFAAOC
AQEASyP/Ed89JGdsaNz7Q9/w2G58yHQ5awevCDN73bQUW2PxYzwLaM56v/lAixxo
cpaZ/afqyjvhHormfPjv2QUd/+TJTCp5hx7H+YPQeklc8RacWGcQQXVyqdqRpkeh
Xs03tsd/K6z7Iq0cq1DdUtDnbYjpzI3MZqTH1hAUeyBpOi3rBoGjB2yDSAcGKJiG
xV3d7LwS5pUD5w+CVVKOJrQJc103KajWwe+kya/Sz8aSOY4m1HN0m7SpbYfIRTBJ
dG1RGC+2xVtQJDIjC+UKcBEAYFUMqxcPjApirtVvCoCar/W98wd8ZMg4IGfofVC5
Q+e5qL1EO8opd7z/4z4izq/wrA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:47 2024 by rpki-client on console-ams.rpki-client.org