Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/f826a5-8e95-4513-b726-abd6f2b3410b/1/nzblSjoXY6J2zrtcCqvAV_Oxx1U.roa
File: nzblSjoXY6J2zrtcCqvAV_Oxx1U.roa (raw, json)
Hash identifier: oJvXoGWomZnhsVgkoUPzQQHqVSbcJC3JfH2WFasWBgI=
Subject key identifier: 9F:36:E5:4A:3A:17:63:A2:76:CE:BB:5C:0A:AB:C0:57:F3:B1:C7:55
Certificate issuer: /CN=bc1c16f5be37ff6c5d4205f2aba25fce35890335
Certificate serial: 379C13
Authority key identifier: BC:1C:16:F5:BE:37:FF:6C:5D:42:05:F2:AB:A2:5F:CE:35:89:03:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vBwW9b43_2xdQgXyq6JfzjWJAzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/f826a5-8e95-4513-b726-abd6f2b3410b/1/nzblSjoXY6J2zrtcCqvAV_Oxx1U.roa
Signing time: Sat 01 Jan 2022 01:02:07 +0000
ROA not before: Sat 01 Jan 2022 01:02:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210512
IP address blocks: 193.32.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3644435 (0x379c13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc1c16f5be37ff6c5d4205f2aba25fce35890335
Validity
Not Before: Jan 1 01:02:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f36e54a3a1763a276cebb5c0aabc057f3b1c755
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:4b:f8:77:47:69:dc:4e:b5:48:cb:c5:37:91:
bb:d9:5b:ad:9b:dc:4a:74:b9:e0:b4:fd:de:74:e5:
0c:f6:52:3e:74:8e:a6:2f:af:e1:1e:d6:42:b1:66:
20:d5:be:2f:14:0b:f4:bf:86:27:95:1e:18:27:a1:
a7:e0:52:f6:c5:10:55:69:6e:e6:f3:64:f1:44:04:
3f:a7:bc:7c:a7:27:67:40:a3:88:9c:68:54:2d:39:
52:f7:c2:5d:24:aa:48:ce:97:22:e7:80:dc:32:28:
5b:80:0c:0b:b7:34:3e:6e:7e:2e:87:38:4c:68:b4:
89:57:00:15:96:6a:60:a0:2b:9c:8b:4b:8d:81:53:
16:42:44:48:c9:80:2e:80:f4:6c:9b:26:32:90:eb:
09:76:56:fe:cb:16:82:a1:f5:5e:43:c7:ca:67:fc:
b5:f3:cb:18:e6:96:fc:b2:36:3f:94:51:51:aa:f3:
21:cd:56:c3:9a:53:15:ce:48:31:25:76:60:04:d1:
92:16:b5:f2:1a:cf:d4:e3:e5:41:e4:8d:f6:5e:37:
24:e6:f7:7e:db:fe:3c:69:08:c7:d6:5f:db:86:85:
f6:5a:62:fc:87:5b:0f:c6:ac:4f:8c:90:d7:a6:23:
99:0e:36:4c:35:6b:10:c2:d0:84:20:37:5f:af:57:
ba:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:36:E5:4A:3A:17:63:A2:76:CE:BB:5C:0A:AB:C0:57:F3:B1:C7:55
X509v3 Authority Key Identifier:
keyid:BC:1C:16:F5:BE:37:FF:6C:5D:42:05:F2:AB:A2:5F:CE:35:89:03:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vBwW9b43_2xdQgXyq6JfzjWJAzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/f826a5-8e95-4513-b726-abd6f2b3410b/1/nzblSjoXY6J2zrtcCqvAV_Oxx1U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/f826a5-8e95-4513-b726-abd6f2b3410b/1/vBwW9b43_2xdQgXyq6JfzjWJAzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.32.54.0/24
Signature Algorithm: sha256WithRSAEncryption
07:23:58:22:fa:34:53:86:14:e7:7e:b3:5d:19:14:63:63:8c:
dd:76:82:f0:04:a3:63:64:54:3c:8f:d4:a2:07:85:b8:f0:16:
2a:04:0f:fd:a3:f1:bd:bc:77:67:11:60:76:7b:1c:a5:38:25:
8f:a7:77:22:f2:da:26:aa:dd:69:c5:8d:4d:2f:6a:a0:45:51:
1f:62:9f:05:03:81:8a:6b:52:b2:5b:f7:93:5a:5c:91:d4:50:
bd:a1:09:5c:c5:0c:6e:dc:85:64:92:34:61:3e:9e:5f:44:61:
db:8f:25:0a:17:23:9c:1f:cb:9d:39:98:56:0d:72:01:85:12:
45:54:cd:40:52:90:86:56:f2:bf:ed:50:d8:31:b9:ac:79:17:
63:5c:f5:ca:90:71:62:bc:44:78:41:7d:be:f7:43:1d:5c:f6:
66:37:56:c8:0c:91:3f:ca:5a:b9:a5:2b:bb:2d:2d:ec:88:53:
79:13:49:5a:3b:fd:1a:c3:74:34:19:c4:6d:74:98:a9:9b:8d:
df:a2:20:f2:18:43:06:d6:dc:1e:33:35:62:5d:6d:f9:c7:14:
9d:58:dd:e5:50:fd:e4:27:f8:cb:2e:04:c9:ce:b7:9e:d3:4e:
ee:8f:71:d3:d6:52:b3:79:29:79:73:cc:c9:bf:4b:a3:91:74:
d2:6e:90:ed
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDN5wTMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGJj
MWMxNmY1YmUzN2ZmNmM1ZDQyMDVmMmFiYTI1ZmNlMzU4OTAzMzUwHhcNMjIwMTAx
MDEwMjA3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg5ZjM2ZTU0YTNhMTc2
M2EyNzZjZWJiNWMwYWFiYzA1N2YzYjFjNzU1MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA0Uv4d0dp3E61SMvFN5G72Vutm9xKdLngtP3edOUM9lI+dI6m
L6/hHtZCsWYg1b4vFAv0v4YnlR4YJ6Gn4FL2xRBVaW7m82TxRAQ/p7x8pydnQKOI
nGhULTlS98JdJKpIzpci54DcMihbgAwLtzQ+bn4uhzhMaLSJVwAVlmpgoCuci0uN
gVMWQkRIyYAugPRsmyYykOsJdlb+yxaCofVeQ8fKZ/y188sY5pb8sjY/lFFRqvMh
zVbDmlMVzkgxJXZgBNGSFrXyGs/U4+VB5I32Xjck5vd+2/48aQjH1l/bhoX2WmL8
h1sPxqxPjJDXpiOZDjZMNWsQwtCEIDdfr1e68QIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFJ825Uo6F2Oids67XAqrwFfzscdVMB8GA1UdIwQYMBaAFLwcFvW+N/9sXUIF
8quiX841iQM1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
dkJ3VzliNDNfMnhkUWdYeXE2SmZ6aldKQXpVLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC81YS9mODI2YTUtOGU5NS00NTEzLWI3MjYtYWJkNmYyYjM0MTBiLzEv
bnpibFNqb1hZNkoyenJ0Y0NxdkFWX094eDFVLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9m
ODI2YTUtOGU5NS00NTEzLWI3MjYtYWJkNmYyYjM0MTBiLzEvdkJ3VzliNDNfMnhk
UWdYeXE2SmZ6aldKQXpVLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwSA2MA0GCSqGSIb3DQEBCwUAA4IB
AQAHI1gi+jRThhTnfrNdGRRjY4zddoLwBKNjZFQ8j9SiB4W48BYqBA/9o/G9vHdn
EWB2exylOCWPp3ci8tomqt1pxY1NL2qgRVEfYp8FA4GKa1KyW/eTWlyR1FC9oQlc
xQxu3IVkkjRhPp5fRGHbjyUKFyOcH8udOZhWDXIBhRJFVM1AUpCGVvK/7VDYMbms
eRdjXPXKkHFivER4QX2+90MdXPZmN1bIDJE/ylq5pSu7LS3siFN5E0laO/0aw3Q0
GcRtdJipm43foiDyGEMG1tweMzViXW35xxSdWN3lUP3kJ/jLLgTJzree007uj3HT
1lKzeSl5c8zJv0ujkXTSbpDt
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:17 2023 by rpki-client on console.sobornost.net