Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/b5cf0b-ec31-4705-8f68-6f1fece87c89/1/N0YnNeBC_udMmVdbAAfKlmn24rU.roa
File: N0YnNeBC_udMmVdbAAfKlmn24rU.roa (raw, json)
Hash identifier: 29IvIah4ISrFsyVsVWYAptinYqjeRsRjAYX3S4Y2eFE=
Subject key identifier: 37:46:27:35:E0:42:FE:E7:4C:99:57:5B:00:07:CA:96:69:F6:E2:B5
Certificate issuer: /CN=22d54df89b8fd921dada3f0daa29efff5cce0a79
Certificate serial: 035DBE7B
Authority key identifier: 22:D5:4D:F8:9B:8F:D9:21:DA:DA:3F:0D:AA:29:EF:FF:5C:CE:0A:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ItVN-JuP2SHa2j8Nqinv_1zOCnk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/b5cf0b-ec31-4705-8f68-6f1fece87c89/1/N0YnNeBC_udMmVdbAAfKlmn24rU.roa
Signing time: Sat 01 Jan 2022 05:52:16 +0000
ROA not before: Sat 01 Jan 2022 05:52:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49605
IP address blocks: 188.65.85.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56475259 (0x35dbe7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22d54df89b8fd921dada3f0daa29efff5cce0a79
Validity
Not Before: Jan 1 05:52:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=37462735e042fee74c99575b0007ca9669f6e2b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:99:5d:f2:5a:af:42:51:f2:5c:37:26:2d:06:
f0:15:e7:dc:41:f4:5c:d0:2f:0c:c5:46:f8:89:77:
fe:2c:18:d6:48:19:71:94:fd:df:8b:ba:6b:ca:9f:
6a:f1:a7:7c:b4:98:c5:2c:1d:97:b8:c1:98:0e:a3:
9c:a3:03:73:5f:30:28:4c:0e:07:20:05:2a:ea:12:
9c:3d:e0:94:74:06:e1:8c:de:3a:cd:67:8d:a9:80:
80:6e:09:27:ed:82:c9:e1:40:16:ed:d5:e0:97:5d:
a7:ad:ae:a7:6a:9e:dd:82:05:c5:8d:9a:ff:59:61:
04:cb:58:0d:a5:14:77:38:74:51:84:b5:f7:0d:49:
14:63:c3:87:5c:9f:ea:7a:cc:14:7b:a9:7b:f0:4d:
7f:76:d7:c5:eb:2c:2e:9b:52:e0:cb:70:34:b9:fd:
61:8b:31:26:4f:d1:31:0a:a1:9c:55:db:4f:27:0c:
25:e6:b4:35:f3:e6:a7:c8:a0:e6:cf:02:d0:bd:ed:
2f:79:82:7d:ae:f2:b3:4e:0f:85:d0:57:7c:15:2e:
a3:1e:62:50:98:ea:52:48:93:59:1a:ea:90:3d:e7:
ed:04:e7:96:a4:69:dc:d1:cf:87:95:bd:13:bf:01:
91:a4:41:fd:94:61:5f:e9:d9:0a:f1:d0:8e:4e:de:
a4:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:46:27:35:E0:42:FE:E7:4C:99:57:5B:00:07:CA:96:69:F6:E2:B5
X509v3 Authority Key Identifier:
keyid:22:D5:4D:F8:9B:8F:D9:21:DA:DA:3F:0D:AA:29:EF:FF:5C:CE:0A:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ItVN-JuP2SHa2j8Nqinv_1zOCnk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/b5cf0b-ec31-4705-8f68-6f1fece87c89/1/N0YnNeBC_udMmVdbAAfKlmn24rU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/b5cf0b-ec31-4705-8f68-6f1fece87c89/1/ItVN-JuP2SHa2j8Nqinv_1zOCnk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.65.85.0/24
Signature Algorithm: sha256WithRSAEncryption
56:2b:77:4f:5e:12:a6:8b:9d:c2:d0:9e:ad:af:31:11:d2:32:
df:f7:d9:d3:e1:ee:ac:4a:a0:79:fe:a5:28:31:17:f2:b9:89:
24:98:3d:98:d6:c3:68:13:c4:4a:72:73:b6:3f:10:99:af:2a:
f1:3e:dc:7f:de:58:76:46:f4:54:32:19:80:7b:be:4b:63:c2:
37:70:c3:e9:be:c3:e1:23:a8:be:0b:6d:dc:3d:17:31:cf:d3:
37:8e:47:a3:60:fb:5e:c8:88:0e:76:f1:8c:4f:65:97:91:db:
59:b5:96:6a:5f:1a:fe:b6:36:f6:94:8f:d0:20:7f:46:0f:70:
19:e5:9f:26:52:5a:20:b6:c2:c6:c2:c6:ea:30:2f:d6:4f:14:
e9:5f:63:ea:cb:f8:ca:93:74:98:4c:66:08:bf:07:ae:c5:01:
0a:6f:a1:0a:93:ec:69:10:65:5f:d8:e3:ac:9f:66:0d:47:28:
cc:04:63:6f:ae:11:06:18:3e:9f:ea:56:08:13:49:bd:8d:60:
f4:0a:22:7a:db:c4:9d:c9:83:f7:c8:ef:85:9b:d3:4c:ae:a1:
b5:3d:c8:91:d3:8c:ab:c7:d7:ba:e8:43:cf:34:fe:73:fc:cf:
8d:29:b4:94:c3:41:7c:c0:a2:be:c0:79:2d:4e:e4:02:24:e2:
71:25:ee:ad
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA12+ezANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MmQ1NGRmODliOGZkOTIxZGFkYTNmMGRhYTI5ZWZmZjVjY2UwYTc5MB4XDTIyMDEw
MTA1NTIxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzc0NjI3MzVlMDQy
ZmVlNzRjOTk1NzViMDAwN2NhOTY2OWY2ZTJiNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJyZXfJar0JR8lw3Ji0G8BXn3EH0XNAvDMVG+Il3/iwY1kgZ
cZT934u6a8qfavGnfLSYxSwdl7jBmA6jnKMDc18wKEwOByAFKuoSnD3glHQG4Yze
Os1njamAgG4JJ+2CyeFAFu3V4Jddp62up2qe3YIFxY2a/1lhBMtYDaUUdzh0UYS1
9w1JFGPDh1yf6nrMFHupe/BNf3bXxessLptS4MtwNLn9YYsxJk/RMQqhnFXbTycM
Jea0NfPmp8ig5s8C0L3tL3mCfa7ys04PhdBXfBUuox5iUJjqUkiTWRrqkD3n7QTn
lqRp3NHPh5W9E78BkaRB/ZRhX+nZCvHQjk7epGkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ3Ric14EL+50yZV1sAB8qWafbitTAfBgNVHSMEGDAWgBQi1U34m4/ZIdra
Pw2qKe//XM4KeTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0l0Vk4tSnVQMlNIYTJqOE5xaW52XzF6T0Nuay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzcvYjVjZjBiLWVjMzEtNDcwNS04ZjY4LTZmMWZlY2U4N2M4OS8x
L04wWW5OZUJDX3VkTW1WZGJBQWZLbG1uMjRyVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzcv
YjVjZjBiLWVjMzEtNDcwNS04ZjY4LTZmMWZlY2U4N2M4OS8xL0l0Vk4tSnVQMlNI
YTJqOE5xaW52XzF6T0Nuay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALxBVTANBgkqhkiG9w0BAQsFAAOC
AQEAVit3T14SpoudwtCera8xEdIy3/fZ0+HurEqgef6lKDEX8rmJJJg9mNbDaBPE
SnJztj8Qma8q8T7cf95Ydkb0VDIZgHu+S2PCN3DD6b7D4SOovgtt3D0XMc/TN45H
o2D7XsiIDnbxjE9ll5HbWbWWal8a/rY29pSP0CB/Rg9wGeWfJlJaILbCxsLG6jAv
1k8U6V9j6sv4ypN0mExmCL8HrsUBCm+hCpPsaRBlX9jjrJ9mDUcozARjb64RBhg+
n+pWCBNJvY1g9AoietvEncmD98jvhZvTTK6htT3IkdOMq8fXuuhDzzT+c/zPjSm0
lMNBfMCivsB5LU7kAiTicSXurQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:41 2023 by rpki-client on console-ams.rpki-client.org