Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/f95ac5-0b8b-45d6-be9a-2db2245f2985/1/NM8SUE47OhSmuG_QEMDSG7upx9o.roa
File: NM8SUE47OhSmuG_QEMDSG7upx9o.roa (raw, json)
Hash identifier: nsDSyol9/k43blAtfQet7/KvhwFtIOlO0DM0WnzR3Vk=
Subject key identifier: 34:CF:12:50:4E:3B:3A:14:A6:B8:6F:D0:10:C0:D2:1B:BB:A9:C7:DA
Certificate issuer: /CN=c546e15819eacd05bccebf80019ca3cb7c4a38e0
Certificate serial: 0DE618CE
Authority key identifier: C5:46:E1:58:19:EA:CD:05:BC:CE:BF:80:01:9C:A3:CB:7C:4A:38:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xUbhWBnqzQW8zr-AAZyjy3xKOOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/f95ac5-0b8b-45d6-be9a-2db2245f2985/1/NM8SUE47OhSmuG_QEMDSG7upx9o.roa
Signing time: Sat 01 Jan 2022 04:57:23 +0000
ROA not before: Sat 01 Jan 2022 04:57:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203137
IP address blocks: 185.130.179.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 233183438 (0xde618ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c546e15819eacd05bccebf80019ca3cb7c4a38e0
Validity
Not Before: Jan 1 04:57:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=34cf12504e3b3a14a6b86fd010c0d21bbba9c7da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:0c:76:f6:a8:05:73:ba:5f:9e:10:5b:09:7f:
27:5a:b4:f4:18:ee:c1:54:17:64:67:c3:e6:79:e8:
8b:86:5a:8a:2d:ea:42:b4:6d:b6:64:08:3b:a0:b8:
4a:5c:06:c1:d0:ce:78:77:e3:79:b6:39:8c:31:d4:
f5:5b:3a:05:ef:cd:8d:85:26:7e:eb:26:2b:8e:84:
5a:fc:c7:a0:19:03:cc:8f:9d:7b:2e:55:69:08:13:
b4:28:34:d9:76:fb:f6:de:5f:72:55:ba:f4:5b:fa:
05:a9:f7:94:c6:13:72:74:bc:45:9f:b4:79:8a:36:
39:59:ed:25:c9:40:53:d6:e1:ab:f8:cf:b3:65:a3:
b9:a1:54:2f:6d:e5:5b:bc:12:9f:e9:8f:8f:65:96:
40:7e:95:fa:1f:28:67:e6:59:3d:17:0c:02:fd:8b:
11:aa:fb:64:38:da:1a:af:cb:03:ec:cf:c0:eb:f2:
8d:f8:98:b7:c9:6a:3d:22:1c:07:6c:dc:65:99:8a:
f1:1f:4f:d6:64:03:f6:a7:8e:69:8b:dd:70:f3:fe:
be:69:7f:34:d8:76:36:19:4c:1f:31:5d:48:6c:2d:
61:2a:ee:55:97:8c:85:b4:00:6c:c9:1f:65:1d:f6:
b2:74:3e:96:b7:fc:83:ee:1e:e8:62:00:0e:fc:81:
39:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:CF:12:50:4E:3B:3A:14:A6:B8:6F:D0:10:C0:D2:1B:BB:A9:C7:DA
X509v3 Authority Key Identifier:
keyid:C5:46:E1:58:19:EA:CD:05:BC:CE:BF:80:01:9C:A3:CB:7C:4A:38:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xUbhWBnqzQW8zr-AAZyjy3xKOOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/f95ac5-0b8b-45d6-be9a-2db2245f2985/1/NM8SUE47OhSmuG_QEMDSG7upx9o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/f95ac5-0b8b-45d6-be9a-2db2245f2985/1/xUbhWBnqzQW8zr-AAZyjy3xKOOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.130.179.0/24
Signature Algorithm: sha256WithRSAEncryption
51:bb:5b:e4:73:49:f5:f6:92:50:db:03:75:31:84:56:99:17:
3d:21:03:58:37:b6:58:33:79:28:73:59:f0:3c:17:12:8d:e5:
5d:d3:cf:f4:d5:1e:8d:79:0d:f1:15:45:c2:4a:31:f6:34:78:
5d:c5:20:a9:a0:25:cf:dd:d8:80:d1:0e:28:c2:b5:1e:9a:87:
ec:a2:4d:1d:e6:b1:54:76:bb:9b:2a:8d:4b:7a:fc:fb:d5:cd:
49:40:d6:70:e5:27:ce:18:1e:17:fc:04:b2:7f:bd:ba:49:6b:
56:08:a3:a3:fc:fd:1f:f5:78:04:3c:06:a2:6a:90:d8:85:b8:
11:c8:99:23:ee:31:17:8e:4a:43:82:46:4d:04:af:9d:38:ec:
72:7d:d7:0e:8d:e0:e5:0e:5e:d4:e4:11:6f:ff:4e:e7:72:13:
0a:52:5e:c2:72:89:5e:0c:6a:0f:87:2d:c4:23:64:aa:59:a8:
cf:36:ec:83:f1:5f:c4:ce:22:d4:c5:10:ed:8b:b6:0f:db:ee:
34:70:4b:8c:84:9e:f3:96:b1:0e:ad:b9:b6:9b:d6:ac:23:7e:
31:2d:89:49:d6:f7:dd:14:ba:cc:45:d4:6a:0c:e4:05:ea:e4:
21:af:37:31:d8:cd:b5:52:4e:da:3f:41:1b:68:7c:04:a1:9a:
c3:ac:34:fe
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDeYYzjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NTQ2ZTE1ODE5ZWFjZDA1YmNjZWJmODAwMTljYTNjYjdjNGEzOGUwMB4XDTIyMDEw
MTA0NTcyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzRjZjEyNTA0ZTNi
M2ExNGE2Yjg2ZmQwMTBjMGQyMWJiYmE5YzdkYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALkMdvaoBXO6X54QWwl/J1q09BjuwVQXZGfD5nnoi4Zaii3q
QrRttmQIO6C4SlwGwdDOeHfjebY5jDHU9Vs6Be/NjYUmfusmK46EWvzHoBkDzI+d
ey5VaQgTtCg02Xb79t5fclW69Fv6Ban3lMYTcnS8RZ+0eYo2OVntJclAU9bhq/jP
s2WjuaFUL23lW7wSn+mPj2WWQH6V+h8oZ+ZZPRcMAv2LEar7ZDjaGq/LA+zPwOvy
jfiYt8lqPSIcB2zcZZmK8R9P1mQD9qeOaYvdcPP+vml/NNh2NhlMHzFdSGwtYSru
VZeMhbQAbMkfZR32snQ+lrf8g+4e6GIADvyBOU0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ0zxJQTjs6FKa4b9AQwNIbu6nH2jAfBgNVHSMEGDAWgBTFRuFYGerNBbzO
v4ABnKPLfEo44DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hVYmhXQm5xelFXOHpyLUFBWnlqeTN4S09PQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWEvZjk1YWM1LTBiOGItNDVkNi1iZTlhLTJkYjIyNDVmMjk4NS8x
L05NOFNVRTQ3T2hTbXVHX1FFTURTRzd1cHg5by5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWEv
Zjk1YWM1LTBiOGItNDVkNi1iZTlhLTJkYjIyNDVmMjk4NS8xL3hVYmhXQm5xelFX
OHpyLUFBWnlqeTN4S09PQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALmCszANBgkqhkiG9w0BAQsFAAOC
AQEAUbtb5HNJ9faSUNsDdTGEVpkXPSEDWDe2WDN5KHNZ8DwXEo3lXdPP9NUejXkN
8RVFwkox9jR4XcUgqaAlz93YgNEOKMK1HpqH7KJNHeaxVHa7myqNS3r8+9XNSUDW
cOUnzhgeF/wEsn+9uklrVgijo/z9H/V4BDwGomqQ2IW4EciZI+4xF45KQ4JGTQSv
nTjscn3XDo3g5Q5e1OQRb/9O53ITClJewnKJXgxqD4ctxCNkqlmozzbsg/FfxM4i
1MUQ7Yu2D9vuNHBLjISe85axDq25tpvWrCN+MS2JSdb33RS6zEXUagzkBerkIa83
MdjNtVJO2j9BG2h8BKGaw6w0/g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:43 2024 by rpki-client on console-ams.rpki-client.org