Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/oDqsqWlajc_QFq_-kpFrnbo21vM.roa
File: oDqsqWlajc_QFq_-kpFrnbo21vM.roa (raw, json)
Hash identifier: tCjGmJue5yIjA9rNIjuBeYKFjUUG1sgO1DpVCYbbns8=
Subject key identifier: A0:3A:AC:A9:69:5A:8D:CF:D0:16:AF:FE:92:91:6B:9D:BA:36:D6:F3
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0D0700C5
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/oDqsqWlajc_QFq_-kpFrnbo21vM.roa
Signing time: Sun 24 Apr 2022 06:45:58 +0000
ROA not before: Sun 24 Apr 2022 06:45:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 194.195.232.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 218562757 (0xd0700c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Apr 24 06:45:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a03aaca9695a8dcfd016affe92916b9dba36d6f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e4:5b:eb:52:b7:50:72:21:a7:2b:53:65:ed:
e1:3e:b7:25:6e:83:44:4b:01:73:5c:ba:d7:ed:28:
96:ec:52:c9:ba:44:cc:b7:58:c5:3e:0c:8a:7d:94:
4a:ea:23:33:1c:23:10:81:65:e2:0b:92:73:2a:33:
8d:31:88:1b:e3:fc:30:a1:d6:b8:cb:40:cc:de:4d:
7e:30:6e:bf:88:78:01:00:4c:b5:8f:43:c9:17:fd:
59:ca:0e:dd:c4:0f:0f:ae:40:5a:a1:ea:c3:81:f2:
98:47:59:a9:16:a2:84:29:62:9d:78:0f:08:46:a5:
25:d3:f2:31:57:b7:2d:9a:98:88:e0:02:e9:6b:97:
e3:0d:db:83:9d:f0:6d:09:f3:07:90:2a:68:91:47:
35:33:11:37:3f:8e:bd:10:b8:66:68:41:64:78:bb:
46:ec:9d:12:92:fb:44:2c:fc:1c:05:6b:23:b2:e0:
78:69:35:b6:b4:50:d3:c8:6e:d3:6a:58:a4:8f:c1:
bc:6f:74:aa:1d:fd:60:4b:83:c2:cc:9c:5e:7f:7d:
6b:4c:39:7d:a1:2d:ba:68:97:10:e9:91:4f:84:a4:
94:56:14:42:80:40:04:1f:2a:c2:9d:68:28:d5:aa:
45:90:98:5f:45:b3:a0:59:1f:4b:6e:98:95:b1:1d:
1e:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:3A:AC:A9:69:5A:8D:CF:D0:16:AF:FE:92:91:6B:9D:BA:36:D6:F3
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/oDqsqWlajc_QFq_-kpFrnbo21vM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.195.232.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:4c:ad:b2:b7:ad:4a:5f:31:6f:9a:f8:bd:ef:24:21:43:c5:
2d:d0:2e:99:c5:a0:43:4c:6d:bc:0a:a3:e4:da:dc:1e:d1:28:
f5:44:e5:9f:70:82:ce:fc:ca:3c:a9:ba:71:65:79:4f:50:f8:
ac:f7:68:e2:4f:b6:34:be:25:aa:93:cf:9c:b7:90:42:70:24:
ee:b4:38:3e:25:90:1d:ca:79:ed:61:ff:b1:ec:b8:e2:b0:67:
51:d1:66:ea:e5:59:98:d2:48:1a:ee:41:be:89:cd:f6:2d:cb:
da:93:8c:34:5c:ac:e9:2b:ba:a6:84:64:d8:7e:33:70:2d:55:
24:3f:a6:2b:94:3b:71:3a:60:6c:99:f1:a8:c3:5b:6d:de:88:
e1:2c:34:b4:fa:e1:32:d0:64:6d:fd:0b:dc:08:b0:ac:89:39:
bc:9b:30:95:bb:42:eb:6d:46:56:e6:a1:f9:8f:71:4d:d9:b4:
1a:f2:4b:14:5d:95:db:0e:ac:98:7a:09:7f:87:d5:b3:9c:4d:
ea:44:d6:95:da:81:bc:2a:e3:a7:2a:18:3c:ba:d3:bd:7f:9c:
bc:03:98:56:8d:4e:a2:7f:ee:50:71:cf:7e:ae:a3:0f:17:f1:
21:97:1f:b9:fd:55:51:c0:47:d5:27:73:9a:f0:34:f5:74:3c:
b9:e9:fd:c9
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDQcAxTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NzQ3MDE3NTY0YzcxMWJjYmQ1NzY4MGEwZGZkMDBmMmE1ZDA5OWRiMB4XDTIyMDQy
NDA2NDU1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTAzYWFjYTk2OTVh
OGRjZmQwMTZhZmZlOTI5MTZiOWRiYTM2ZDZmMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKDkW+tSt1ByIacrU2Xt4T63JW6DREsBc1y61+0oluxSybpE
zLdYxT4Min2USuojMxwjEIFl4guScyozjTGIG+P8MKHWuMtAzN5NfjBuv4h4AQBM
tY9DyRf9WcoO3cQPD65AWqHqw4HymEdZqRaihClinXgPCEalJdPyMVe3LZqYiOAC
6WuX4w3bg53wbQnzB5AqaJFHNTMRNz+OvRC4ZmhBZHi7RuydEpL7RCz8HAVrI7Lg
eGk1trRQ08hu02pYpI/BvG90qh39YEuDwsycXn99a0w5faEtumiXEOmRT4SklFYU
QoBABB8qwp1oKNWqRZCYX0WzoFkfS26YlbEdHusCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSgOqypaVqNz9AWr/6SkWudujbW8zAfBgNVHSMEGDAWgBTXRwF1ZMcRvL1X
aAoN/QDypdCZ2zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEwY0JkV1RIRWJ5OVYyZ0tEZjBBOHFYUW1kcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTgvYmEyMzYyLTBjYzUtNDliZC1hNTIyLTRmMGU4Y2UxMWE3ZC8x
L29EcXNxV2xhamNfUUZxXy1rcEZybmJvMjF2TS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTgv
YmEyMzYyLTBjYzUtNDliZC1hNTIyLTRmMGU4Y2UxMWE3ZC8xLzEwY0JkV1RIRWJ5
OVYyZ0tEZjBBOHFYUW1kcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsLD6DANBgkqhkiG9w0BAQsFAAOC
AQEAWkytsretSl8xb5r4ve8kIUPFLdAumcWgQ0xtvAqj5NrcHtEo9UTln3CCzvzK
PKm6cWV5T1D4rPdo4k+2NL4lqpPPnLeQQnAk7rQ4PiWQHcp57WH/sey44rBnUdFm
6uVZmNJIGu5BvonN9i3L2pOMNFys6Su6poRk2H4zcC1VJD+mK5Q7cTpgbJnxqMNb
bd6I4Sw0tPrhMtBkbf0L3AiwrIk5vJswlbtC621GVuah+Y9xTdm0GvJLFF2V2w6s
mHoJf4fVs5xN6kTWldqBvCrjpyoYPLrTvX+cvAOYVo1Oon/uUHHPfq6jDxfxIZcf
uf1VUcBH1SdzmvA09XQ8uen9yQ==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:10:34 2025 by rpki-client