Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/a3fb67-d514-4aee-adb9-72bad9d73c80/1/hSjA9JaMa71GlHJE0_95bzMTmOE.roa
File: hSjA9JaMa71GlHJE0_95bzMTmOE.roa (raw, json)
Hash identifier: knmor4PVonfyWfv+ru4CZZIF/y5NCFL9h2fQFShEqcc=
Subject key identifier: 85:28:C0:F4:96:8C:6B:BD:46:94:72:44:D3:FF:79:6F:33:13:98:E1
Certificate issuer: /CN=d0b849b9bc9042a1557331937e4ad71518af61cf
Certificate serial: 09AE3560
Authority key identifier: D0:B8:49:B9:BC:90:42:A1:55:73:31:93:7E:4A:D7:15:18:AF:61:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0LhJubyQQqFVczGTfkrXFRivYc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/a3fb67-d514-4aee-adb9-72bad9d73c80/1/hSjA9JaMa71GlHJE0_95bzMTmOE.roa
Signing time: Wed 18 May 2022 15:06:18 +0000
ROA not before: Wed 18 May 2022 15:06:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50939
IP address blocks: 194.36.140.0/24 maxlen: 24
194.36.140.0/23 maxlen: 23
194.36.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 162411872 (0x9ae3560)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0b849b9bc9042a1557331937e4ad71518af61cf
Validity
Not Before: May 18 15:06:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8528c0f4968c6bbd46947244d3ff796f331398e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:09:0d:f8:56:6b:cd:6a:c5:04:e5:3d:ab:15:
0f:5a:9a:1f:95:b5:50:95:7a:ef:2e:b6:ba:63:43:
b0:3d:a9:92:42:56:b4:61:be:6e:82:7a:73:82:53:
9a:f0:1b:81:43:91:83:cf:b8:01:f6:fd:6b:90:2e:
67:88:13:ac:fa:96:b8:d2:b8:1c:3a:b5:13:3f:f7:
1d:fc:2c:36:c2:26:0f:eb:a9:32:04:6c:e4:f9:7f:
11:58:e3:91:eb:7e:4e:8a:e7:d7:77:2e:10:9a:d1:
94:03:89:9d:57:46:4b:e4:c5:45:3d:66:7e:61:ad:
d6:11:f9:57:e7:13:a1:47:04:fd:f9:67:81:83:d2:
9d:e2:97:07:05:6e:90:d4:63:fc:2e:10:5a:1b:e4:
b8:a1:24:60:cd:b2:ab:c0:ff:18:26:6c:72:f2:66:
2d:12:ba:38:9b:0c:fe:07:0a:c3:a8:00:c6:2e:c7:
9f:b9:82:44:ce:30:7c:1e:2b:7d:ae:4e:e6:04:68:
5f:4e:cb:0a:ee:93:4d:c9:cb:24:d9:11:7a:b8:66:
77:e0:e0:a9:72:d2:7a:ec:d7:b8:5c:ef:f2:34:9d:
7c:be:fe:d5:06:b4:41:58:a7:ec:25:38:50:f7:4b:
cd:cc:7d:6d:76:c9:b7:83:2f:16:be:8e:e9:7b:fd:
20:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:28:C0:F4:96:8C:6B:BD:46:94:72:44:D3:FF:79:6F:33:13:98:E1
X509v3 Authority Key Identifier:
keyid:D0:B8:49:B9:BC:90:42:A1:55:73:31:93:7E:4A:D7:15:18:AF:61:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0LhJubyQQqFVczGTfkrXFRivYc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/a3fb67-d514-4aee-adb9-72bad9d73c80/1/hSjA9JaMa71GlHJE0_95bzMTmOE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/a3fb67-d514-4aee-adb9-72bad9d73c80/1/0LhJubyQQqFVczGTfkrXFRivYc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.36.140.0/23
Signature Algorithm: sha256WithRSAEncryption
2c:33:26:d8:70:1e:3e:04:14:65:c0:22:70:9d:f7:e8:cd:d2:
e8:4b:3a:91:6a:0d:ac:4f:71:42:93:b9:38:fb:ba:db:bc:9d:
fc:72:39:4e:13:91:3d:01:e1:ad:76:dd:bd:06:38:12:28:70:
2f:b6:c3:8f:b7:87:f9:50:86:74:43:08:b7:3c:0c:09:a8:ae:
08:d9:58:4b:c7:56:3e:7a:92:1e:cf:b3:f1:22:63:98:bc:9d:
23:aa:49:0a:14:cc:8f:3a:c2:e7:a4:15:06:36:f7:33:38:2a:
21:79:10:e5:d2:c2:19:1f:12:81:c0:8a:dd:9c:5e:99:25:80:
48:51:ab:21:8e:3f:de:fe:ff:84:b0:71:6a:cf:e1:fa:61:dc:
91:c0:3f:30:7f:ca:35:cc:70:c5:01:74:aa:4c:52:63:52:c8:
06:f8:6a:ef:13:da:67:59:8f:73:27:04:19:32:8e:8f:12:40:
d0:d2:78:53:91:ea:3c:d4:00:2f:58:33:09:85:19:91:84:fb:
b8:e6:bf:2d:05:29:07:e5:d8:b3:b7:0d:3e:99:42:8c:f4:69:
08:41:23:66:52:6e:cf:40:5f:4c:31:a1:27:70:a0:2a:b5:f2:
97:e5:c7:43:6b:a4:75:09:0b:a0:ed:85:cc:f4:2c:3a:69:c8:
51:1f:9a:fe
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECa41YDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
MGI4NDliOWJjOTA0MmExNTU3MzMxOTM3ZTRhZDcxNTE4YWY2MWNmMB4XDTIyMDUx
ODE1MDYxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODUyOGMwZjQ5Njhj
NmJiZDQ2OTQ3MjQ0ZDNmZjc5NmYzMzEzOThlMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKMJDfhWa81qxQTlPasVD1qaH5W1UJV67y62umNDsD2pkkJW
tGG+boJ6c4JTmvAbgUORg8+4Afb9a5AuZ4gTrPqWuNK4HDq1Ez/3HfwsNsImD+up
MgRs5Pl/EVjjket+Torn13cuEJrRlAOJnVdGS+TFRT1mfmGt1hH5V+cToUcE/fln
gYPSneKXBwVukNRj/C4QWhvkuKEkYM2yq8D/GCZscvJmLRK6OJsM/gcKw6gAxi7H
n7mCRM4wfB4rfa5O5gRoX07LCu6TTcnLJNkRerhmd+DgqXLSeuzXuFzv8jSdfL7+
1Qa0QVin7CU4UPdLzcx9bXbJt4MvFr6O6Xv9IM8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSFKMD0loxrvUaUckTT/3lvMxOY4TAfBgNVHSMEGDAWgBTQuEm5vJBCoVVz
MZN+StcVGK9hzzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzBMaEp1YnlRUXFGVmN6R1Rma3JYRlJpdlljOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDAvYTNmYjY3LWQ1MTQtNGFlZS1hZGI5LTcyYmFkOWQ3M2M4MC8x
L2hTakE5SmFNYTcxR2xISkUwXzk1YnpNVG1PRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDAv
YTNmYjY3LWQ1MTQtNGFlZS1hZGI5LTcyYmFkOWQ3M2M4MC8xLzBMaEp1YnlRUXFG
VmN6R1Rma3JYRlJpdlljOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcIkjDANBgkqhkiG9w0BAQsFAAOC
AQEALDMm2HAePgQUZcAicJ336M3S6Es6kWoNrE9xQpO5OPu627yd/HI5ThORPQHh
rXbdvQY4EihwL7bDj7eH+VCGdEMItzwMCaiuCNlYS8dWPnqSHs+z8SJjmLydI6pJ
ChTMjzrC56QVBjb3MzgqIXkQ5dLCGR8SgcCK3ZxemSWASFGrIY4/3v7/hLBxas/h
+mHckcA/MH/KNcxwxQF0qkxSY1LIBvhq7xPaZ1mPcycEGTKOjxJA0NJ4U5HqPNQA
L1gzCYUZkYT7uOa/LQUpB+XYs7cNPplCjPRpCEEjZlJuz0BfTDGhJ3CgKrXyl+XH
Q2ukdQkLoO2FzPQsOmnIUR+a/g==
-----END CERTIFICATE-----
Generated at Thu Apr 17 03:46:38 2025 by rpki-client