Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/siGDsTOy_2AuBaBIcIYWIZ2kCP4.roa
File: siGDsTOy_2AuBaBIcIYWIZ2kCP4.roa (raw, json)
Hash identifier: kelqlg7baQLjYOB+FWOK3vNZHOOD+hAlntIFMViVXhw=
Subject key identifier: B2:21:83:B1:33:B2:FF:60:2E:05:A0:48:70:86:16:21:9D:A4:08:FE
Certificate issuer: /CN=b4b0bbd6445578edbc7ba6b5bf7ca9368d2417bf
Certificate serial: 023497
Authority key identifier: B4:B0:BB:D6:44:55:78:ED:BC:7B:A6:B5:BF:7C:A9:36:8D:24:17:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tLC71kRVeO28e6a1v3ypNo0kF78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/siGDsTOy_2AuBaBIcIYWIZ2kCP4.roa
Signing time: Fri 10 Jun 2022 16:53:02 +0000
ROA not before: Fri 10 Jun 2022 16:53:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206813
IP address blocks: 194.113.54.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144535 (0x23497)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4b0bbd6445578edbc7ba6b5bf7ca9368d2417bf
Validity
Not Before: Jun 10 16:53:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b22183b133b2ff602e05a048708616219da408fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e2:00:c5:d8:77:f6:6e:45:ae:d8:c5:6a:e3:
81:b4:ee:03:5f:e6:21:93:5f:bd:fa:62:58:78:7f:
2c:17:08:9f:e4:b7:4e:fb:91:86:c1:4c:f9:14:74:
74:2d:01:9c:31:38:4b:c6:84:f6:f5:a9:58:85:a9:
f1:37:3d:e9:12:f1:fb:25:96:50:25:91:38:c6:8e:
dc:4e:e4:f6:43:6a:01:c4:2b:29:0a:7d:01:cf:e4:
1e:2e:92:42:02:69:a1:1a:d8:a0:22:a1:c7:66:c2:
62:fd:84:7d:81:86:90:76:ef:61:e2:6a:1e:3b:83:
9d:6e:ac:52:ba:be:ff:f5:a4:99:f9:36:2d:44:89:
b4:10:c7:22:f5:be:e3:b4:39:a3:a3:30:91:44:02:
87:ec:81:f7:e6:04:84:03:91:d1:0e:c8:fb:75:46:
27:af:f7:8e:ce:0f:48:5f:94:1b:bd:3b:b7:bc:6a:
5b:90:e4:cd:a0:cc:bd:9b:0e:f7:97:22:f1:c9:1c:
77:a6:9b:1f:19:09:a6:5d:c5:02:15:3d:11:e0:02:
17:14:38:bb:d9:4d:b4:7c:a5:77:fc:60:eb:89:5b:
17:2a:43:bd:86:4b:8e:bb:87:66:5b:a5:da:d8:ef:
eb:3c:c3:58:aa:91:8a:69:b0:29:86:ea:79:56:1b:
77:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:21:83:B1:33:B2:FF:60:2E:05:A0:48:70:86:16:21:9D:A4:08:FE
X509v3 Authority Key Identifier:
keyid:B4:B0:BB:D6:44:55:78:ED:BC:7B:A6:B5:BF:7C:A9:36:8D:24:17:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tLC71kRVeO28e6a1v3ypNo0kF78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/siGDsTOy_2AuBaBIcIYWIZ2kCP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.113.54.0/23
Signature Algorithm: sha256WithRSAEncryption
a4:32:4a:d8:a4:a2:9f:bb:20:d3:0b:fe:ac:79:0e:6f:ad:49:
6a:63:0a:87:8d:0a:e6:c5:2f:f2:b3:ee:1b:a2:ea:b9:f1:74:
49:d9:e8:c6:bb:ac:69:5a:f6:29:32:e2:e9:93:a5:0a:2f:87:
c3:52:8f:d1:07:ba:24:78:f4:6e:ed:3b:95:bc:6e:d7:db:f7:
1f:a5:9f:0f:f1:d5:61:de:51:41:48:fb:fc:99:d5:3f:ee:1f:
f7:2b:e7:0d:d6:5e:4c:d1:4c:6f:2a:8d:96:0a:7a:42:07:7d:
8a:3e:a0:a0:3a:e8:c5:83:79:f0:be:3b:20:d2:e8:8a:82:ab:
53:68:2f:93:76:23:89:d6:74:37:44:8a:4a:f8:81:95:ae:4a:
37:d4:a6:de:81:ca:f0:93:a3:cb:b4:26:c8:14:97:52:89:83:
95:57:0e:d0:30:77:cb:73:2c:89:45:1c:53:e3:c3:16:c3:2e:
f1:25:b4:c9:34:2e:0f:fe:b6:78:99:50:ed:c0:5e:7e:47:f7:
a3:6d:35:24:04:8e:b9:bb:ac:0d:6b:ef:7b:36:2c:df:16:d2:
4d:a6:02:65:c5:a3:ed:1b:2b:5c:6c:20:b7:86:22:af:fa:66:
bc:44:9a:c5:4b:7e:58:c2:52:19:7d:88:01:aa:6a:76:08:3c:
f4:fe:ef:67
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAjSXMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGI0
YjBiYmQ2NDQ1NTc4ZWRiYzdiYTZiNWJmN2NhOTM2OGQyNDE3YmYwHhcNMjIwNjEw
MTY1MzAyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhiMjIxODNiMTMzYjJm
ZjYwMmUwNWEwNDg3MDg2MTYyMTlkYTQwOGZlMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAtOIAxdh39m5FrtjFauOBtO4DX+Yhk1+9+mJYeH8sFwif5LdO
+5GGwUz5FHR0LQGcMThLxoT29alYhanxNz3pEvH7JZZQJZE4xo7cTuT2Q2oBxCsp
Cn0Bz+QeLpJCAmmhGtigIqHHZsJi/YR9gYaQdu9h4moeO4OdbqxSur7/9aSZ+TYt
RIm0EMci9b7jtDmjozCRRAKH7IH35gSEA5HRDsj7dUYnr/eOzg9IX5QbvTu3vGpb
kOTNoMy9mw73lyLxyRx3ppsfGQmmXcUCFT0R4AIXFDi72U20fKV3/GDriVsXKkO9
hkuOu4dmW6Xa2O/rPMNYqpGKabAphup5Vht31wIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFLIhg7Ezsv9gLgWgSHCGFiGdpAj+MB8GA1UdIwQYMBaAFLSwu9ZEVXjtvHum
tb98qTaNJBe/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
dExDNzFrUlZlTzI4ZTZhMXYzeXBObzBrRjc4LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jYi8zNTAyZmMtZDlmNy00ZmE4LWJhZjYtNzdkNTI5YmU1M2Q3LzEv
c2lHRHNUT3lfMkF1QmFCSWNJWVdJWjJrQ1A0LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi8z
NTAyZmMtZDlmNy00ZmE4LWJhZjYtNzdkNTI5YmU1M2Q3LzEvdExDNzFrUlZlTzI4
ZTZhMXYzeXBObzBrRjc4LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwnE2MA0GCSqGSIb3DQEBCwUAA4IB
AQCkMkrYpKKfuyDTC/6seQ5vrUlqYwqHjQrmxS/ys+4bouq58XRJ2ejGu6xpWvYp
MuLpk6UKL4fDUo/RB7okePRu7TuVvG7X2/cfpZ8P8dVh3lFBSPv8mdU/7h/3K+cN
1l5M0UxvKo2WCnpCB32KPqCgOujFg3nwvjsg0uiKgqtTaC+TdiOJ1nQ3RIpK+IGV
rko31Kbegcrwk6PLtCbIFJdSiYOVVw7QMHfLcyyJRRxT48MWwy7xJbTJNC4P/rZ4
mVDtwF5+R/ejbTUkBI65u6wNa+97NizfFtJNpgJlxaPtGytcbCC3hiKv+ma8RJrF
S35YwlIZfYgBqmp2CDz0/u9n
-----END CERTIFICATE-----
Generated at Fri Apr 18 01:52:38 2025 by rpki-client