Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/nbB5X9MX6WuGyg8PDeEVCnOoU8M.roa
File: nbB5X9MX6WuGyg8PDeEVCnOoU8M.roa (raw, json)
Hash identifier: Gmp2J4I2sOosHWabDIooCu7Fq2uggwOE8xaXwhu7cis=
Subject key identifier: 9D:B0:79:5F:D3:17:E9:6B:86:CA:0F:0F:0D:E1:15:0A:73:A8:53:C3
Certificate issuer: /CN=d434f1686102876c6216bcea28a5e502ec0d7b6b
Certificate serial: 36B486D1
Authority key identifier: D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/nbB5X9MX6WuGyg8PDeEVCnOoU8M.roa
Signing time: Mon 23 May 2022 07:55:29 +0000
ROA not before: Mon 23 May 2022 07:55:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201748
IP address blocks: 95.39.17.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 917800657 (0x36b486d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d434f1686102876c6216bcea28a5e502ec0d7b6b
Validity
Not Before: May 23 07:55:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9db0795fd317e96b86ca0f0f0de1150a73a853c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ab:be:c3:a1:c3:91:6e:bb:12:5c:69:f1:8a:
a9:76:cd:17:6d:66:58:ad:7d:77:34:c8:31:26:3e:
73:b1:3f:3e:80:b3:0c:28:8a:41:5c:9d:cb:b2:f2:
28:6a:53:7a:a6:85:46:2d:22:77:6d:e0:1c:90:a0:
f5:e3:c8:84:27:0a:b9:d1:8f:d5:44:fd:06:7a:bf:
3a:9a:a0:ab:30:04:6b:20:7d:ac:79:90:96:c2:3c:
2f:36:32:e6:bc:d8:b0:ef:83:b3:35:eb:33:e8:ad:
e9:7d:8f:c1:ab:cd:18:62:7c:d6:5a:56:9e:7d:d3:
87:5f:94:5d:c9:8b:4d:43:65:bd:9b:32:aa:09:61:
58:52:5a:50:df:6d:fe:d5:90:50:ce:9d:9a:04:70:
ed:05:22:cc:fd:2a:60:bb:cc:68:69:28:b7:c0:df:
13:1f:bb:d7:ac:8c:85:38:ab:f0:39:a3:4c:ea:e6:
18:72:f7:67:f1:56:4c:52:ae:e6:4c:6d:07:59:2d:
65:98:ce:8f:6e:2a:de:5c:ad:46:da:aa:31:77:6a:
24:92:b7:f1:fc:7b:2e:17:0d:e4:83:55:9b:85:0b:
df:fa:db:6b:17:ee:ef:a4:0f:04:fe:d7:96:78:9e:
79:a5:dd:d6:36:a6:5e:cd:9e:02:34:27:f3:ab:a6:
4e:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:B0:79:5F:D3:17:E9:6B:86:CA:0F:0F:0D:E1:15:0A:73:A8:53:C3
X509v3 Authority Key Identifier:
keyid:D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/nbB5X9MX6WuGyg8PDeEVCnOoU8M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.39.17.0/24
Signature Algorithm: sha256WithRSAEncryption
31:93:f3:bb:78:32:9b:64:d3:c5:30:5f:9a:14:0b:91:21:0c:
0e:97:19:c9:ab:2b:4e:a8:47:5b:96:84:b9:3a:cf:ad:a6:0e:
99:ba:d4:07:5e:31:e3:bf:a3:f9:82:32:c6:6f:90:e5:5a:d4:
87:b6:b3:e4:48:c0:fa:9f:d9:af:59:fe:4c:ba:7d:ba:a9:34:
74:57:83:3d:d5:dc:7e:74:b6:89:e8:06:97:3d:1a:c2:5f:f2:
fd:c8:63:f5:4d:f1:78:a3:a6:3b:64:76:da:01:95:e9:0e:8a:
fa:c7:60:df:bf:80:3a:71:5c:a6:93:2a:69:c4:35:4e:b0:2c:
24:5a:5e:86:09:42:90:9e:06:be:8c:c7:26:b2:b9:60:ab:d1:
5d:e7:e3:09:ed:e9:43:3d:29:66:1c:04:9b:bb:bb:c7:44:ae:
16:73:86:c5:31:d4:f3:71:7b:fe:43:00:a1:21:f6:65:21:b3:
71:ec:47:d1:d9:ef:cd:1b:a3:56:c1:6c:b2:42:26:eb:71:b0:
84:bf:a4:b6:d5:54:76:9d:2e:cd:1f:74:6d:8e:b3:ac:37:49:
0f:dd:7a:c7:4f:e8:e0:73:a3:67:e5:bd:0c:da:f8:aa:13:a3:
75:59:2a:cc:bb:32:77:63:c6:20:43:78:48:10:fd:64:2f:08:
52:83:a5:32
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIENrSG0TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NDM0ZjE2ODYxMDI4NzZjNjIxNmJjZWEyOGE1ZTUwMmVjMGQ3YjZiMB4XDTIyMDUy
MzA3NTUyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWRiMDc5NWZkMzE3
ZTk2Yjg2Y2EwZjBmMGRlMTE1MGE3M2E4NTNjMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMmrvsOhw5FuuxJcafGKqXbNF21mWK19dzTIMSY+c7E/PoCz
DCiKQVydy7LyKGpTeqaFRi0id23gHJCg9ePIhCcKudGP1UT9Bnq/OpqgqzAEayB9
rHmQlsI8LzYy5rzYsO+DszXrM+it6X2PwavNGGJ81lpWnn3Th1+UXcmLTUNlvZsy
qglhWFJaUN9t/tWQUM6dmgRw7QUizP0qYLvMaGkot8DfEx+716yMhTir8DmjTOrm
GHL3Z/FWTFKu5kxtB1ktZZjOj24q3lytRtqqMXdqJJK38fx7LhcN5INVm4UL3/rb
axfu76QPBP7XlnieeaXd1jamXs2eAjQn86umTrECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSdsHlf0xfpa4bKDw8N4RUKc6hTwzAfBgNVHSMEGDAWgBTUNPFoYQKHbGIW
vOoopeUC7A17azAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzFEVHhhR0VDaDJ4aUZyenFLS1hsQXV3TmUycy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmQvNzI2YmI0LTVkODctNDAyZC05MWNlLTU3MTJkOTVhZTYzOC8x
L25iQjVYOU1YNld1R3lnOFBEZUVWQ25Pb1U4TS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmQv
NzI2YmI0LTVkODctNDAyZC05MWNlLTU3MTJkOTVhZTYzOC8xLzFEVHhhR0VDaDJ4
aUZyenFLS1hsQXV3TmUycy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAF8nETANBgkqhkiG9w0BAQsFAAOC
AQEAMZPzu3gym2TTxTBfmhQLkSEMDpcZyasrTqhHW5aEuTrPraYOmbrUB14x47+j
+YIyxm+Q5VrUh7az5EjA+p/Zr1n+TLp9uqk0dFeDPdXcfnS2iegGlz0awl/y/chj
9U3xeKOmO2R22gGV6Q6K+sdg37+AOnFcppMqacQ1TrAsJFpehglCkJ4GvozHJrK5
YKvRXefjCe3pQz0pZhwEm7u7x0SuFnOGxTHU83F7/kMAoSH2ZSGzcexH0dnvzRuj
VsFsskIm63GwhL+kttVUdp0uzR90bY6zrDdJD916x0/o4HOjZ+W9DNr4qhOjdVkq
zLsyd2PGIEN4SBD9ZC8IUoOlMg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:48 2023 by rpki-client on console-ams.rpki-client.org