Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/67d57e-f3de-4d10-bd9d-87a10bc68a37/1/nKm-XAInIx2AYux3CiTz-10eP1E.roa
File: nKm-XAInIx2AYux3CiTz-10eP1E.roa (raw, json)
Hash identifier: 1tdi9/uqHdZv33Csk3sUwa8NrlyoR7PgibvrZQWXi7E=
Subject key identifier: 9C:A9:BE:5C:02:27:23:1D:80:62:EC:77:0A:24:F3:FB:5D:1E:3F:51
Certificate issuer: /CN=b4112bb59b0627da23af90c0f0584b71b50f778f
Certificate serial: 05A7B9FB
Authority key identifier: B4:11:2B:B5:9B:06:27:DA:23:AF:90:C0:F0:58:4B:71:B5:0F:77:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tBErtZsGJ9ojr5DA8FhLcbUPd48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/67d57e-f3de-4d10-bd9d-87a10bc68a37/1/nKm-XAInIx2AYux3CiTz-10eP1E.roa
Signing time: Sat 01 Jan 2022 08:04:15 +0000
ROA not before: Sat 01 Jan 2022 08:04:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49537
IP address blocks: 194.169.214.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94878203 (0x5a7b9fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4112bb59b0627da23af90c0f0584b71b50f778f
Validity
Not Before: Jan 1 08:04:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ca9be5c0227231d8062ec770a24f3fb5d1e3f51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:38:c2:57:36:f5:e9:d3:cc:e5:4f:d9:55:6a:
33:a0:d1:ea:c8:88:52:c6:75:b2:b9:e8:27:60:fe:
dc:ca:8d:d1:69:dd:14:8f:8d:4c:1f:0f:f3:5d:58:
2c:24:94:9a:b8:21:f5:54:7c:9e:42:7d:9d:2b:53:
71:76:2a:c5:36:b9:a4:56:f0:8e:81:29:c4:4c:e7:
90:6c:2e:6e:01:b6:15:d3:63:4a:86:3d:57:9c:9b:
90:48:ee:09:ff:26:c6:cb:e4:09:65:58:5f:00:59:
c0:da:f5:58:36:7b:a4:cc:f6:95:2f:bc:28:4d:2f:
c4:57:93:01:9d:f0:f6:6b:e0:09:af:7b:17:85:94:
98:1f:10:08:27:ba:2d:30:92:f9:44:e7:81:88:e4:
aa:de:5d:26:18:fb:90:e9:7a:a0:5c:20:6b:11:c2:
2a:fc:5d:4d:06:9a:2a:4c:6d:cd:87:3e:a9:c8:61:
58:f1:86:e1:be:e6:f2:36:75:03:a3:cf:79:26:ea:
2d:63:26:f2:ff:56:74:65:9c:c2:81:68:59:61:9d:
cd:b8:eb:84:4e:ec:69:fd:18:3e:64:03:40:60:d8:
d6:29:50:63:4b:ba:a0:4a:00:0c:c5:14:77:ae:24:
aa:9f:2c:0b:e4:d0:b3:71:be:9e:25:31:15:77:8b:
c8:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:A9:BE:5C:02:27:23:1D:80:62:EC:77:0A:24:F3:FB:5D:1E:3F:51
X509v3 Authority Key Identifier:
keyid:B4:11:2B:B5:9B:06:27:DA:23:AF:90:C0:F0:58:4B:71:B5:0F:77:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tBErtZsGJ9ojr5DA8FhLcbUPd48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/67d57e-f3de-4d10-bd9d-87a10bc68a37/1/nKm-XAInIx2AYux3CiTz-10eP1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/67d57e-f3de-4d10-bd9d-87a10bc68a37/1/tBErtZsGJ9ojr5DA8FhLcbUPd48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.169.214.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:2a:6f:f5:a0:58:db:9d:09:be:1e:39:9e:dd:48:d5:40:29:
c7:38:14:47:2c:ab:03:e8:9a:1b:92:37:91:ab:7d:06:8e:c5:
67:68:75:9b:92:4a:e8:62:81:b7:67:67:83:c3:da:24:a6:29:
db:1c:1f:77:f8:38:3d:db:51:d3:b1:23:8f:f9:c0:f1:41:4a:
cf:22:41:44:0b:c0:28:d1:00:bf:bf:75:57:c0:e8:e8:3a:ae:
d3:dd:0d:1a:7d:f1:fc:bc:71:08:63:f6:43:25:39:18:3d:ba:
42:99:ca:27:47:ce:99:45:9c:56:e3:8d:fc:b0:af:9b:eb:5d:
14:03:ab:a2:63:da:da:b0:21:2d:56:fd:81:f2:fc:b0:b7:8d:
1d:5a:b3:8e:68:59:04:2b:c4:a7:df:31:18:10:89:a1:b2:01:
9f:5a:38:5c:03:9a:fa:2f:67:71:ae:bf:c0:8c:c8:6d:fe:ce:
92:5d:51:9e:12:c5:81:bc:44:c1:12:33:01:81:16:c2:46:93:
26:f5:c2:c2:bb:d7:f9:6f:59:fe:cb:aa:65:b5:d7:8b:28:f7:
d9:9b:0f:b5:5b:40:8d:8c:83:6b:f7:0e:42:9a:bb:6a:e6:0c:
3d:04:eb:1e:f5:46:b8:38:eb:f9:2b:96:1c:c9:54:c8:84:c7:
b2:77:8d:a4
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBae5+zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NDExMmJiNTliMDYyN2RhMjNhZjkwYzBmMDU4NGI3MWI1MGY3NzhmMB4XDTIyMDEw
MTA4MDQxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWNhOWJlNWMwMjI3
MjMxZDgwNjJlYzc3MGEyNGYzZmI1ZDFlM2Y1MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALM4wlc29enTzOVP2VVqM6DR6siIUsZ1srnoJ2D+3MqN0Wnd
FI+NTB8P811YLCSUmrgh9VR8nkJ9nStTcXYqxTa5pFbwjoEpxEznkGwubgG2FdNj
SoY9V5ybkEjuCf8mxsvkCWVYXwBZwNr1WDZ7pMz2lS+8KE0vxFeTAZ3w9mvgCa97
F4WUmB8QCCe6LTCS+UTngYjkqt5dJhj7kOl6oFwgaxHCKvxdTQaaKkxtzYc+qchh
WPGG4b7m8jZ1A6PPeSbqLWMm8v9WdGWcwoFoWWGdzbjrhE7saf0YPmQDQGDY1ilQ
Y0u6oEoADMUUd64kqp8sC+TQs3G+niUxFXeLyNsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBScqb5cAicjHYBi7HcKJPP7XR4/UTAfBgNVHSMEGDAWgBS0ESu1mwYn2iOv
kMDwWEtxtQ93jzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3RCRXJ0WnNHSjlvanI1REE4RmhMY2JVUGQ0OC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmMvNjdkNTdlLWYzZGUtNGQxMC1iZDlkLTg3YTEwYmM2OGEzNy8x
L25LbS1YQUluSXgyQVl1eDNDaVR6LTEwZVAxRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmMv
NjdkNTdlLWYzZGUtNGQxMC1iZDlkLTg3YTEwYmM2OGEzNy8xL3RCRXJ0WnNHSjlv
anI1REE4RmhMY2JVUGQ0OC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMKp1jANBgkqhkiG9w0BAQsFAAOC
AQEAfipv9aBY250Jvh45nt1I1UApxzgURyyrA+iaG5I3kat9Bo7FZ2h1m5JK6GKB
t2dng8PaJKYp2xwfd/g4PdtR07Ejj/nA8UFKzyJBRAvAKNEAv791V8Do6Dqu090N
Gn3x/LxxCGP2QyU5GD26QpnKJ0fOmUWcVuON/LCvm+tdFAOromPa2rAhLVb9gfL8
sLeNHVqzjmhZBCvEp98xGBCJobIBn1o4XAOa+i9nca6/wIzIbf7Okl1RnhLFgbxE
wRIzAYEWwkaTJvXCwrvX+W9Z/suqZbXXiyj32ZsPtVtAjYyDa/cOQpq7auYMPQTr
HvVGuDjr+SuWHMlUyITHsneNpA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:52 2023 by rpki-client on console-ams.rpki-client.org