Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/nT4UzXauwWbYlU8b_T3_paqjSnA.roa
File: nT4UzXauwWbYlU8b_T3_paqjSnA.roa (raw, json)
Hash identifier: w3niH/irX1r+pfAChHd9QSGaMNTXouSjT1Fb1004ZP0=
Subject key identifier: 9D:3E:14:CD:76:AE:C1:66:D8:95:4F:1B:FD:3D:FF:A5:AA:A3:4A:70
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 04E37B1C
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/nT4UzXauwWbYlU8b_T3_paqjSnA.roa
Signing time: Tue 10 May 2022 10:53:02 +0000
ROA not before: Tue 10 May 2022 10:53:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211409
IP address blocks: 185.106.93.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82017052 (0x4e37b1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: May 10 10:53:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d3e14cd76aec166d8954f1bfd3dffa5aaa34a70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:a4:a2:c5:98:52:79:f2:1e:cc:86:c7:7b:29:
fe:9a:76:ad:ce:5c:2f:b0:2f:a7:b6:ac:71:06:bc:
be:96:f8:3c:05:41:4a:68:c1:7b:07:ee:35:7f:fa:
a8:61:ef:05:41:1d:fe:7c:20:4b:e6:6e:2d:2c:4f:
18:aa:21:09:59:30:0a:e7:2f:88:2e:5f:be:4e:04:
df:03:41:96:b0:d7:54:15:fd:e4:5c:35:c4:7b:27:
da:ea:d4:05:da:06:fc:de:de:21:51:fe:10:ed:01:
3b:85:eb:71:b7:9b:a4:6b:08:02:f3:5f:95:ba:92:
35:7d:39:6b:f0:1c:19:e5:e2:46:0f:e8:e5:83:c5:
44:dc:65:a6:78:be:75:74:b4:ff:a2:56:50:04:29:
06:ab:51:7d:ce:80:09:fc:c4:5d:f3:d9:80:5a:12:
2d:2b:80:22:d1:38:6b:ab:25:9b:0b:bd:3a:22:c5:
70:c7:52:47:ab:ed:8e:9c:cc:e6:f2:40:82:1a:09:
f3:9e:d4:99:7b:b0:98:61:b4:14:ca:c8:01:df:a0:
96:fa:1d:41:6e:6a:a3:f0:ed:3d:6b:e7:4f:79:67:
16:5d:89:9e:8d:d3:fb:5e:fb:2e:38:5b:8d:fc:8f:
5d:c5:f3:17:91:7b:3a:75:89:55:81:9b:bd:8a:45:
c5:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:3E:14:CD:76:AE:C1:66:D8:95:4F:1B:FD:3D:FF:A5:AA:A3:4A:70
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/nT4UzXauwWbYlU8b_T3_paqjSnA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.106.93.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:43:9c:01:3c:3a:05:3c:24:a3:4e:0c:9a:fe:f0:03:02:93:
01:01:ca:37:1a:df:20:84:18:0a:b6:23:9d:ff:f2:2d:11:aa:
41:0f:2e:f4:ca:fb:7c:82:07:16:7e:2c:d9:b5:dd:a7:06:c6:
e8:9a:fb:94:e0:87:b8:bd:14:c8:e2:81:b5:bb:0a:ff:d3:cd:
7f:dd:0b:e3:2f:f3:1b:11:8d:81:8f:09:2e:82:3f:4e:4c:26:
60:10:51:88:24:59:09:3d:c9:8e:75:fa:ff:7a:dd:4e:e0:16:
b8:02:c7:99:c7:20:c9:24:86:be:6f:25:01:0b:41:49:75:85:
7e:a4:dd:c7:43:0a:68:8e:05:5e:dc:6e:5a:53:5a:1b:04:4c:
82:81:ca:cd:bf:d1:f9:5a:90:64:96:a9:3e:fb:39:16:4c:0d:
85:0f:b0:8d:76:6c:cc:23:34:11:a5:f7:ef:1b:1b:c2:88:65:
ed:35:59:ab:9b:b8:13:15:a2:ac:7c:7c:ca:1c:93:ba:a2:f8:
39:c4:7f:36:e3:53:17:1e:4f:ae:70:14:6b:1b:15:34:dc:fe:
65:cf:3d:15:1e:3b:b4:d7:aa:a0:26:b4:48:e2:ff:9c:9e:36:
66:6e:69:4b:58:b2:46:fe:f7:cc:19:b7:f0:23:10:18:a9:0b:
f1:d7:b9:e0
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBON7HDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NGY5NjM0NWQzZjIyZWRiMzk1ZDI0N2Y3Yjg2ZDJkNzNlNGEwMDkxMB4XDTIyMDUx
MDEwNTMwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWQzZTE0Y2Q3NmFl
YzE2NmQ4OTU0ZjFiZmQzZGZmYTVhYWEzNGE3MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIqkosWYUnnyHsyGx3sp/pp2rc5cL7Avp7ascQa8vpb4PAVB
SmjBewfuNX/6qGHvBUEd/nwgS+ZuLSxPGKohCVkwCucviC5fvk4E3wNBlrDXVBX9
5Fw1xHsn2urUBdoG/N7eIVH+EO0BO4XrcbebpGsIAvNflbqSNX05a/AcGeXiRg/o
5YPFRNxlpni+dXS0/6JWUAQpBqtRfc6ACfzEXfPZgFoSLSuAItE4a6slmwu9OiLF
cMdSR6vtjpzM5vJAghoJ857UmXuwmGG0FMrIAd+glvodQW5qo/DtPWvnT3lnFl2J
no3T+177LjhbjfyPXcXzF5F7OnWJVYGbvYpFxWECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSdPhTNdq7BZtiVTxv9Pf+lqqNKcDAfBgNVHSMEGDAWgBS0+WNF0/Iu2zld
JH97htLXPkoAkTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3RQbGpSZFB5THRzNVhTUl9lNGJTMXo1S0FKRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzUvOGUxMjFkLTczYjMtNDM4YS04M2M0LTZmYzM0M2Q3N2NkMi8x
L25UNFV6WGF1d1diWWxVOGJfVDNfcGFxalNuQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzUv
OGUxMjFkLTczYjMtNDM4YS04M2M0LTZmYzM0M2Q3N2NkMi8xL3RQbGpSZFB5THRz
NVhTUl9lNGJTMXo1S0FKRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALlqXTANBgkqhkiG9w0BAQsFAAOC
AQEAv0OcATw6BTwko04Mmv7wAwKTAQHKNxrfIIQYCrYjnf/yLRGqQQ8u9Mr7fIIH
Fn4s2bXdpwbG6Jr7lOCHuL0UyOKBtbsK/9PNf90L4y/zGxGNgY8JLoI/TkwmYBBR
iCRZCT3JjnX6/3rdTuAWuALHmccgySSGvm8lAQtBSXWFfqTdx0MKaI4FXtxuWlNa
GwRMgoHKzb/R+VqQZJapPvs5FkwNhQ+wjXZszCM0EaX37xsbwohl7TVZq5u4ExWi
rHx8yhyTuqL4OcR/NuNTFx5PrnAUaxsVNNz+Zc89FR47tNeqoCa0SOL/nJ42Zm5p
S1iyRv73zBm38CMQGKkL8de54A==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:29 2023 by rpki-client on console-ams.rpki-client.org