Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/nHMkMcx92zatJQPD51DJph_pZgE.roa
File: nHMkMcx92zatJQPD51DJph_pZgE.roa (raw, json)
Hash identifier: pH/N4G2q2bU/U9HRvFg254Q6ME5f8J4Co0w854HF5P4=
Subject key identifier: 9C:73:24:31:CC:7D:DB:36:AD:25:03:C3:E7:50:C9:A6:1F:E9:66:01
Certificate issuer: /CN=04a2ae2cd094333018c41daafb474c6cfa80d07d
Certificate serial: 0186F8CC
Authority key identifier: 04:A2:AE:2C:D0:94:33:30:18:C4:1D:AA:FB:47:4C:6C:FA:80:D0:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BKKuLNCUMzAYxB2q-0dMbPqA0H0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/nHMkMcx92zatJQPD51DJph_pZgE.roa
Signing time: Thu 24 Mar 2022 08:21:52 +0000
ROA not before: Thu 24 Mar 2022 08:21:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8778
IP address blocks: 195.28.64.0/19 maxlen: 19
2a00:9060::/32 maxlen: 32
2a02:dd8::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25622732 (0x186f8cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04a2ae2cd094333018c41daafb474c6cfa80d07d
Validity
Not Before: Mar 24 08:21:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c732431cc7ddb36ad2503c3e750c9a61fe96601
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:35:d4:d2:99:33:52:17:3e:b4:cf:35:bd:cc:
dd:93:2d:9c:65:c7:d7:fa:69:87:87:aa:f2:cd:ae:
06:f0:1f:41:ea:93:09:21:9d:eb:8e:1f:71:88:6d:
4c:2d:e1:4a:6a:b5:a5:44:fd:57:df:a4:66:6c:0d:
0d:4c:4b:57:16:a6:f8:60:92:1a:7a:9e:db:e8:eb:
f9:6c:cc:e6:b4:68:a1:3a:82:52:a5:76:eb:81:9f:
73:ea:4f:01:cd:fa:14:a2:03:db:90:f2:ff:60:51:
9a:25:09:18:f3:b4:fd:be:98:b6:80:38:4a:61:f5:
ac:84:7b:94:20:3c:36:9c:93:5b:02:1e:16:4d:29:
8b:b1:6d:8c:78:9c:f7:1b:3e:af:93:8f:6f:df:3a:
57:47:a1:00:40:b8:cb:b6:c2:73:f9:30:6c:82:b3:
b6:17:41:e0:58:8a:44:d7:17:51:42:97:11:d5:2d:
4c:6d:47:b3:6b:c8:a6:d7:b1:88:ed:44:e1:6d:03:
19:df:7d:3d:87:62:e2:92:9f:7b:72:5c:ef:19:37:
43:55:57:94:86:83:0b:49:b6:30:25:70:40:d6:cb:
8c:5c:1b:61:36:ce:e9:c1:86:7d:57:55:89:36:ec:
2a:a6:33:2e:7e:49:75:9b:95:fc:82:50:9d:6e:28:
1e:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:73:24:31:CC:7D:DB:36:AD:25:03:C3:E7:50:C9:A6:1F:E9:66:01
X509v3 Authority Key Identifier:
keyid:04:A2:AE:2C:D0:94:33:30:18:C4:1D:AA:FB:47:4C:6C:FA:80:D0:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BKKuLNCUMzAYxB2q-0dMbPqA0H0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/nHMkMcx92zatJQPD51DJph_pZgE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/BKKuLNCUMzAYxB2q-0dMbPqA0H0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.28.64.0/19
IPv6:
2a00:9060::/32
2a02:dd8::/29
Signature Algorithm: sha256WithRSAEncryption
2a:07:c2:1a:e3:7c:4e:15:69:fe:d5:7d:3f:94:5d:c5:80:9c:
cb:e3:23:3e:89:5f:4c:fb:28:f1:cf:42:69:ed:32:ef:a1:a5:
c4:85:86:0a:e9:59:b5:f2:ea:fa:20:d1:7d:87:43:b2:db:e1:
28:e0:74:7a:69:2e:6b:a5:4d:a5:e0:13:b4:5c:d9:44:c9:63:
af:89:28:b8:9a:34:25:d8:d6:25:e9:97:87:9c:1d:7d:8c:0d:
f5:52:73:08:71:47:00:5e:8a:ac:78:3c:d0:71:be:29:8d:91:
38:5f:33:29:92:4a:09:10:50:96:ae:5e:f4:20:2d:05:02:16:
4a:03:59:f3:4d:1a:b8:31:2f:66:4a:22:92:af:e7:06:f8:cb:
c1:a0:9f:82:3d:e2:07:98:9d:fd:b8:75:ee:83:ff:05:e9:a7:
6e:f9:3e:a3:d5:33:cd:ec:87:10:a9:3a:60:9a:ce:d4:a7:65:
25:ff:f0:b2:69:40:ae:30:08:22:17:ca:54:85:a4:bf:2a:7f:
3d:da:97:2b:dd:5a:cf:58:b9:51:c5:01:3f:d5:af:66:1d:d0:
f3:48:94:6c:52:32:cf:8a:b4:d2:93:2f:30:4b:cd:20:3e:52:
c5:51:c5:f0:95:2e:34:05:64:2e:ac:00:d2:54:1f:28:48:bc:
67:20:c8:a1
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgIEAYb4zDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NGEyYWUyY2QwOTQzMzMwMThjNDFkYWFmYjQ3NGM2Y2ZhODBkMDdkMB4XDTIyMDMy
NDA4MjE1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWM3MzI0MzFjYzdk
ZGIzNmFkMjUwM2MzZTc1MGM5YTYxZmU5NjYwMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANQ11NKZM1IXPrTPNb3M3ZMtnGXH1/pph4eq8s2uBvAfQeqT
CSGd644fcYhtTC3hSmq1pUT9V9+kZmwNDUxLVxam+GCSGnqe2+jr+WzM5rRooTqC
UqV264Gfc+pPAc36FKID25Dy/2BRmiUJGPO0/b6YtoA4SmH1rIR7lCA8NpyTWwIe
Fk0pi7FtjHic9xs+r5OPb986V0ehAEC4y7bCc/kwbIKzthdB4FiKRNcXUUKXEdUt
TG1Hs2vIptexiO1E4W0DGd99PYdi4pKfe3Jc7xk3Q1VXlIaDC0m2MCVwQNbLjFwb
YTbO6cGGfVdViTbsKqYzLn5JdZuV/IJQnW4oHsECAwEAAaOCAh8wggIbMB0GA1Ud
DgQWBBSccyQxzH3bNq0lA8PnUMmmH+lmATAfBgNVHSMEGDAWgBQEoq4s0JQzMBjE
Har7R0xs+oDQfTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JLS3VMTkNVTXpBWXhCMnEtMGRNYlBxQTBIMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmEvNjM0YTEyLWU1OGMtNDU1Yy04OTMzLTZlNmU4ZDkzMDNlOS8x
L25ITWtNY3g5MnphdEpRUEQ1MURKcGhfcFpnRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmEv
NjM0YTEyLWU1OGMtNDU1Yy04OTMzLTZlNmU4ZDkzMDNlOS8xL0JLS3VMTkNVTXpB
WXhCMnEtMGRNYlBxQTBIMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA1
BggrBgEFBQcBBwEB/wQmMCQwDAQCAAEwBgMEBcMcQDAUBAIAAjAOAwUAKgCQYAMF
AyoCDdgwDQYJKoZIhvcNAQELBQADggEBACoHwhrjfE4Vaf7VfT+UXcWAnMvjIz6J
X0z7KPHPQmntMu+hpcSFhgrpWbXy6vog0X2HQ7Lb4SjgdHppLmulTaXgE7Rc2UTJ
Y6+JKLiaNCXY1iXpl4ecHX2MDfVScwhxRwBeiqx4PNBxvimNkThfMymSSgkQUJau
XvQgLQUCFkoDWfNNGrgxL2ZKIpKv5wb4y8Ggn4I94geYnf24de6D/wXpp275PqPV
M83shxCpOmCaztSnZSX/8LJpQK4wCCIXylSFpL8qfz3alyvdWs9YuVHFAT/Vr2Yd
0PNIlGxSMs+KtNKTLzBLzSA+UsVRxfCVLjQFZC6sANJUHyhIvGcgyKE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:28 2024 by rpki-client on console-fra.rpki-client.org