Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/4_cg_NS1XZjL-mXiyg9sJ8VnYKY.roa
File: 4_cg_NS1XZjL-mXiyg9sJ8VnYKY.roa (raw, json)
Hash identifier: JbFRHaONovataeZk7iqIlM6M1vglju90nfQfnmOyJP4=
Subject key identifier: E3:F7:20:FC:D4:B5:5D:98:CB:FA:65:E2:CA:0F:6C:27:C5:67:60:A6
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 175B9D67
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/4_cg_NS1XZjL-mXiyg9sJ8VnYKY.roa
Signing time: Sat 26 Feb 2022 06:43:29 +0000
ROA not before: Sat 26 Feb 2022 06:43:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59714
IP address blocks: 85.143.32.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 391880039 (0x175b9d67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Feb 26 06:43:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e3f720fcd4b55d98cbfa65e2ca0f6c27c56760a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:a1:41:13:c9:42:84:63:cb:15:fa:ab:10:6a:
63:81:70:61:62:aa:44:62:ac:2f:e3:c2:1c:85:b1:
4f:b0:1a:3f:42:83:68:1f:20:20:04:08:d6:fe:ec:
9a:0a:d8:22:c6:7f:e2:3e:df:ae:96:0d:cf:23:e6:
13:d6:94:7b:8d:13:07:29:ab:dd:b2:c1:1e:f1:9a:
67:7a:29:6e:38:cc:70:d7:8b:f9:01:9d:6b:f2:49:
86:12:72:c7:1d:a9:31:f0:96:ac:1a:7b:ff:e7:bc:
79:a6:65:d3:e8:9c:e2:3d:56:96:1f:b3:e3:cb:34:
3c:4a:ff:5e:6e:30:6b:43:6a:29:af:70:43:c9:d7:
72:2e:99:b2:39:0a:72:00:9f:0c:61:03:45:a3:72:
5d:2a:23:02:69:60:e9:74:2c:f6:c5:43:2e:9f:07:
90:a3:f3:ca:8c:bd:8f:3f:cf:98:35:5d:65:fe:61:
82:bd:13:c4:9d:99:03:f0:f3:2f:37:28:ef:ae:5f:
9c:71:33:4b:69:9c:42:50:91:73:2b:8d:9a:9a:bb:
bd:61:74:13:61:58:a5:ce:c9:23:45:9b:23:15:dc:
1e:0f:0b:7c:0a:6a:00:4e:95:17:c2:48:ca:3e:b0:
a7:fa:7a:1f:d6:b8:c9:7f:9d:51:c6:aa:a6:ff:5d:
08:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:F7:20:FC:D4:B5:5D:98:CB:FA:65:E2:CA:0F:6C:27:C5:67:60:A6
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/4_cg_NS1XZjL-mXiyg9sJ8VnYKY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.143.32.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:c9:14:c1:94:1c:6c:af:52:7c:1d:1c:fb:70:d0:4c:22:cd:
73:02:8a:2f:5e:60:9e:20:a2:e6:af:88:97:13:2d:ca:e9:7e:
e4:16:f7:78:fe:3c:84:2f:78:bf:5b:bf:9f:72:cf:48:42:bf:
4d:92:22:54:d9:f9:9c:59:cb:44:14:4b:85:04:10:06:e3:66:
df:c4:0f:7a:c2:61:16:b9:5c:9d:2c:a4:12:e2:1e:5e:bb:c6:
1d:de:4f:36:2a:fc:45:b9:e7:35:37:f1:a0:65:7a:33:93:6f:
d4:a8:c1:4d:b7:7a:a2:c1:9e:6c:d8:76:31:41:4e:75:be:da:
c3:ed:87:34:86:31:58:43:74:0d:90:61:44:4a:9d:63:55:6b:
09:23:91:31:18:d9:c3:9e:cd:d6:f8:38:af:fb:c7:5f:67:89:
7a:a0:c0:d0:16:e4:67:c8:41:00:be:5f:a6:52:2d:72:7a:c3:
57:1f:6e:3d:3d:b3:73:f1:9e:84:7c:d3:ae:83:5b:12:19:b2:
d2:a1:b0:60:1a:60:68:42:2b:eb:ab:a2:b3:34:f6:b4:9f:25:
2f:7f:e6:7b:2b:53:20:7a:d1:7f:1c:1d:56:4f:66:ef:5d:6b:
c7:b4:c7:02:09:4c:f3:4f:0c:ad:41:1a:9a:60:ba:3f:78:a8:
d9:57:af:2a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEF1udZzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
OGIyMjAyM2I2ZWFkNGMyOTY4M2E5ZmVkNDQ5M2QwM2RlZTJjNjg1MB4XDTIyMDIy
NjA2NDMyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTNmNzIwZmNkNGI1
NWQ5OGNiZmE2NWUyY2EwZjZjMjdjNTY3NjBhNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPWhQRPJQoRjyxX6qxBqY4FwYWKqRGKsL+PCHIWxT7AaP0KD
aB8gIAQI1v7smgrYIsZ/4j7frpYNzyPmE9aUe40TBymr3bLBHvGaZ3opbjjMcNeL
+QGda/JJhhJyxx2pMfCWrBp7/+e8eaZl0+ic4j1Wlh+z48s0PEr/Xm4wa0NqKa9w
Q8nXci6ZsjkKcgCfDGEDRaNyXSojAmlg6XQs9sVDLp8HkKPzyoy9jz/PmDVdZf5h
gr0TxJ2ZA/DzLzco765fnHEzS2mcQlCRcyuNmpq7vWF0E2FYpc7JI0WbIxXcHg8L
fApqAE6VF8JIyj6wp/p6H9a4yX+dUcaqpv9dCFkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTj9yD81LVdmMv6ZeLKD2wnxWdgpjAfBgNVHSMEGDAWgBQ4siAjturUwpaD
qf7UST0D3uLGhTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L09MSWdJN2JxMU1LV2c2bi0xRWs5QTk3aXhvVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTcvODgxM2Y1LTRlN2ItNGQ1MS1iNWYzLTQwZDk1YmQzM2ZjYi8x
LzRfY2dfTlMxWFpqTC1tWGl5ZzlzSjhWbllLWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTcv
ODgxM2Y1LTRlN2ItNGQ1MS1iNWYzLTQwZDk1YmQzM2ZjYi8xL09MSWdJN2JxMU1L
V2c2bi0xRWs5QTk3aXhvVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAlWPIDANBgkqhkiG9w0BAQsFAAOC
AQEAL8kUwZQcbK9SfB0c+3DQTCLNcwKKL15gniCi5q+IlxMtyul+5Bb3eP48hC94
v1u/n3LPSEK/TZIiVNn5nFnLRBRLhQQQBuNm38QPesJhFrlcnSykEuIeXrvGHd5P
Nir8RbnnNTfxoGV6M5Nv1KjBTbd6osGebNh2MUFOdb7aw+2HNIYxWEN0DZBhREqd
Y1VrCSORMRjZw57N1vg4r/vHX2eJeqDA0BbkZ8hBAL5fplItcnrDVx9uPT2zc/Ge
hHzTroNbEhmy0qGwYBpgaEIr66uiszT2tJ8lL3/meytTIHrRfxwdVk9m711rx7TH
AglM808MrUEammC6P3io2VevKg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:46 2024 by rpki-client on console-fra.rpki-client.org