Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/b5f80d-2a7d-4bab-aaaa-bf264a215b32/1/Cqti2vaHD7_4cRuK0VwjXaAw0cM.roa
File: Cqti2vaHD7_4cRuK0VwjXaAw0cM.roa (raw, json)
Hash identifier: slTxQokTLncsO2hsREAtptyppKzLkamg029B9GYHEyY=
Subject key identifier: 0A:AB:62:DA:F6:87:0F:BF:F8:71:1B:8A:D1:5C:23:5D:A0:30:D1:C3
Certificate issuer: /CN=9ed76829ba6314a035fda799fc0370336657083e
Certificate serial: 02DB5A77
Authority key identifier: 9E:D7:68:29:BA:63:14:A0:35:FD:A7:99:FC:03:70:33:66:57:08:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ntdoKbpjFKA1_aeZ_ANwM2ZXCD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/b5f80d-2a7d-4bab-aaaa-bf264a215b32/1/Cqti2vaHD7_4cRuK0VwjXaAw0cM.roa
Signing time: Tue 17 May 2022 15:58:59 +0000
ROA not before: Tue 17 May 2022 15:58:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203120
IP address blocks: 185.144.180.0/23 maxlen: 23
185.144.182.0/23 maxlen: 23
2a07:4180::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47929975 (0x2db5a77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ed76829ba6314a035fda799fc0370336657083e
Validity
Not Before: May 17 15:58:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0aab62daf6870fbff8711b8ad15c235da030d1c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:75:a4:e6:10:c0:42:8d:de:79:fc:fa:54:e1:
50:48:84:04:46:a8:25:e7:8e:91:05:c4:43:f9:ac:
0b:1f:96:5f:3e:61:c0:82:3f:5b:ff:a4:06:27:99:
5d:14:01:64:48:6b:43:23:36:d4:74:57:72:42:89:
92:a5:83:2e:27:fc:33:e4:63:df:ec:4e:80:c7:48:
b0:86:63:e6:95:7f:41:d9:05:db:e2:0e:21:f6:89:
73:0d:60:74:8c:d0:4d:b8:73:88:e5:2d:09:67:aa:
76:9e:14:3d:08:57:0a:04:53:84:d8:e1:b2:ad:04:
45:00:28:aa:10:44:74:cc:59:26:12:5a:7a:4b:65:
c6:f5:d5:57:ba:44:2b:2f:05:73:4e:5f:fa:ba:5f:
c4:87:2e:71:7c:35:cb:a4:ee:92:72:3d:6b:e9:a4:
7e:b1:c5:e2:9e:be:7b:6f:d9:64:b6:cd:6f:78:50:
fc:89:e4:c4:1a:f6:d2:b1:d1:4d:8e:2c:cf:d4:c3:
d5:d4:a4:89:9f:04:fd:01:3d:e6:6a:1c:ae:08:fa:
39:90:d5:a8:c9:e0:69:11:31:c6:f8:b3:1a:0e:53:
fa:ac:2d:e9:e8:17:fc:61:3e:37:7e:5d:6c:77:02:
b7:23:c3:95:81:c0:8c:e0:0d:5e:c9:c5:30:a9:d5:
d7:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:AB:62:DA:F6:87:0F:BF:F8:71:1B:8A:D1:5C:23:5D:A0:30:D1:C3
X509v3 Authority Key Identifier:
keyid:9E:D7:68:29:BA:63:14:A0:35:FD:A7:99:FC:03:70:33:66:57:08:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ntdoKbpjFKA1_aeZ_ANwM2ZXCD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b5f80d-2a7d-4bab-aaaa-bf264a215b32/1/Cqti2vaHD7_4cRuK0VwjXaAw0cM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b5f80d-2a7d-4bab-aaaa-bf264a215b32/1/ntdoKbpjFKA1_aeZ_ANwM2ZXCD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.180.0/22
IPv6:
2a07:4180::/29
Signature Algorithm: sha256WithRSAEncryption
53:a0:9e:71:c0:25:dc:45:78:d1:76:3e:10:ff:44:5e:02:65:
94:dd:a4:62:42:fd:d7:69:cf:e5:b6:53:59:e1:34:72:be:b5:
12:b4:fb:4a:a2:9a:b1:00:7b:ee:e7:06:f6:5f:8a:c0:0d:68:
af:23:b2:c9:fc:81:3b:99:21:03:f8:92:b1:07:c8:f6:86:c2:
c5:a6:60:cc:0a:b1:5b:11:3a:7f:de:24:da:92:08:8d:66:45:
a5:9f:bf:da:d3:c1:4a:a6:31:e8:c1:92:25:54:50:5c:a3:3f:
1f:c8:8c:8a:df:f9:10:ff:14:ae:1f:b3:f1:64:e5:a2:2a:2f:
e9:1f:5c:b1:60:b9:ce:5a:c8:eb:79:77:c4:6a:74:6e:f3:04:
82:ff:a1:d7:6b:a7:f3:41:b5:21:92:72:f9:79:b4:c1:ac:82:
e6:82:04:1b:40:cd:9c:5e:0d:31:97:4c:70:c2:ff:74:fd:1b:
66:23:35:67:b0:c4:4e:cb:41:ee:c5:4c:50:44:50:6e:1b:e4:
c9:c7:e5:ec:41:66:54:9f:97:4c:3a:be:04:8d:07:e7:4c:c6:
86:40:17:c9:d9:14:2e:af:63:98:db:7c:13:9b:05:32:06:c8:
84:f5:e0:01:0b:6c:31:27:05:ab:1e:e9:ad:46:8c:92:95:96:
0c:7e:a4:93
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEAttadzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ZWQ3NjgyOWJhNjMxNGEwMzVmZGE3OTlmYzAzNzAzMzY2NTcwODNlMB4XDTIyMDUx
NzE1NTg1OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGFhYjYyZGFmNjg3
MGZiZmY4NzExYjhhZDE1YzIzNWRhMDMwZDFjMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANJ1pOYQwEKN3nn8+lThUEiEBEaoJeeOkQXEQ/msCx+WXz5h
wII/W/+kBieZXRQBZEhrQyM21HRXckKJkqWDLif8M+Rj3+xOgMdIsIZj5pV/QdkF
2+IOIfaJcw1gdIzQTbhziOUtCWeqdp4UPQhXCgRThNjhsq0ERQAoqhBEdMxZJhJa
ektlxvXVV7pEKy8Fc05f+rpfxIcucXw1y6TuknI9a+mkfrHF4p6+e2/ZZLbNb3hQ
/InkxBr20rHRTY4sz9TD1dSkiZ8E/QE95mocrgj6OZDVqMngaRExxvizGg5T+qwt
6egX/GE+N35dbHcCtyPDlYHAjOANXsnFMKnV1x8CAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBQKq2La9ocPv/hxG4rRXCNdoDDRwzAfBgNVHSMEGDAWgBSe12gpumMUoDX9
p5n8A3AzZlcIPjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L250ZG9LYnBqRktBMV9hZVpfQU53TTJaWENENC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGIvYjVmODBkLTJhN2QtNGJhYi1hYWFhLWJmMjY0YTIxNWIzMi8x
L0NxdGkydmFIRDdfNGNSdUswVndqWGFBdzBjTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGIv
YjVmODBkLTJhN2QtNGJhYi1hYWFhLWJmMjY0YTIxNWIzMi8xL250ZG9LYnBqRktB
MV9hZVpfQU53TTJaWENENC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArmQtDANBAIAAjAHAwUDKgdBgDAN
BgkqhkiG9w0BAQsFAAOCAQEAU6CeccAl3EV40XY+EP9EXgJllN2kYkL912nP5bZT
WeE0cr61ErT7SqKasQB77ucG9l+KwA1oryOyyfyBO5khA/iSsQfI9obCxaZgzAqx
WxE6f94k2pIIjWZFpZ+/2tPBSqYx6MGSJVRQXKM/H8iMit/5EP8Urh+z8WTloiov
6R9csWC5zlrI63l3xGp0bvMEgv+h12un80G1IZJy+Xm0wayC5oIEG0DNnF4NMZdM
cML/dP0bZiM1Z7DETstB7sVMUERQbhvkycfl7EFmVJ+XTDq+BI0H50zGhkAXydkU
Lq9jmNt8E5sFMgbIhPXgAQtsMScFqx7prUaMkpWWDH6kkw==
-----END CERTIFICATE-----
Generated at Sat Apr 19 12:13:16 2025 by rpki-client