Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/j3dg06iRV5MCpaC1vSxB0pFrRTQ.roa
File: j3dg06iRV5MCpaC1vSxB0pFrRTQ.roa (raw, json)
Hash identifier: udEPEJM3ehwUBm4m0rRopfxS2uMDZOmg2GQ8Iknz5BU=
Subject key identifier: 8F:77:60:D3:A8:91:57:93:02:A5:A0:B5:BD:2C:41:D2:91:6B:45:34
Certificate issuer: /CN=a85310f503137ae8b35d4f329f46f069dd703815
Certificate serial: 01837AB29E9EDBD74DE2E7701F2BC4B8D8C5
Authority key identifier: A8:53:10:F5:03:13:7A:E8:B3:5D:4F:32:9F:46:F0:69:DD:70:38:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/j3dg06iRV5MCpaC1vSxB0pFrRTQ.roa
Signing time: Mon 26 Sep 2022 16:47:49 +0000
ROA not before: Mon 26 Sep 2022 16:47:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35478
IP address blocks: 194.50.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7a:b2:9e:9e:db:d7:4d:e2:e7:70:1f:2b:c4:b8:d8:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a85310f503137ae8b35d4f329f46f069dd703815
Validity
Not Before: Sep 26 16:47:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f7760d3a891579302a5a0b5bd2c41d2916b4534
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2c:10:2d:db:2b:b8:a7:06:85:68:9b:58:87:
97:1f:1a:4b:d1:ba:69:f2:66:a9:6a:e4:a1:31:85:
c1:9a:0a:bf:aa:ae:ff:9a:61:22:2f:b8:72:6f:b2:
56:5c:81:d6:a4:f6:18:9c:ab:0e:d9:78:ef:47:1a:
e8:cb:24:54:e1:66:2a:62:75:cb:1d:f4:19:0b:fe:
0f:82:b9:16:e7:58:46:09:21:c1:54:af:61:0c:5f:
29:40:62:6b:82:a0:e6:74:78:c9:b8:30:1a:e8:06:
d7:ee:f4:3c:b8:90:7b:48:2d:11:37:33:69:46:22:
9f:65:2e:d5:7b:cf:6a:74:02:67:4b:16:63:a6:b8:
fb:68:21:68:03:07:e8:83:bc:94:0d:6a:79:3b:d6:
2a:79:3a:be:f7:56:25:9e:b7:ce:57:4e:97:7d:f2:
59:da:62:4d:6b:5a:6f:4d:9e:5d:ab:c3:e1:d7:a3:
30:13:6e:2f:d1:76:64:0c:66:d8:c1:47:00:26:a5:
5a:79:4a:58:34:8e:30:e5:26:bd:05:45:ab:ae:19:
08:04:b2:d8:1a:df:27:43:7a:4d:05:aa:60:56:c5:
18:da:50:87:9b:f1:83:51:cd:dd:ec:37:37:ce:67:
40:0d:18:9d:bb:29:e3:82:5b:bc:c2:d6:26:2c:f1:
7b:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:77:60:D3:A8:91:57:93:02:A5:A0:B5:BD:2C:41:D2:91:6B:45:34
X509v3 Authority Key Identifier:
keyid:A8:53:10:F5:03:13:7A:E8:B3:5D:4F:32:9F:46:F0:69:DD:70:38:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/j3dg06iRV5MCpaC1vSxB0pFrRTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/qFMQ9QMTeuizXU8yn0bwad1wOBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.82.0/24
Signature Algorithm: sha256WithRSAEncryption
93:cb:9a:7c:85:13:d0:5b:d5:94:1d:64:95:30:70:c8:69:fc:
0e:31:ab:dc:00:4e:fc:90:6a:b1:24:6a:40:7a:c4:20:86:82:
b7:a8:87:ad:3a:4f:26:e2:7a:17:89:0c:91:4a:cb:99:d5:c6:
54:49:d4:a3:cb:d5:31:ea:af:ff:75:ba:47:8c:0c:6c:11:89:
ad:a1:dc:7b:28:8f:09:e7:4f:d3:55:d9:31:cb:a0:6f:1a:3e:
18:e1:e5:7d:8e:5b:3e:f2:bf:82:ee:3e:40:f5:a5:f7:3e:82:
15:29:6d:6c:5f:c1:ef:f6:2f:88:03:65:b8:1c:7d:68:a9:be:
10:08:f7:f3:f2:ad:2c:76:3b:87:04:50:09:ba:70:0d:55:54:
f6:03:2a:c4:21:99:fd:0b:12:b0:bd:07:f5:fe:32:5d:e7:f3:
4a:ba:b3:e2:6a:f2:01:c5:4d:4a:df:13:73:1d:5f:73:1b:63:
3c:ec:fd:a7:f9:7c:46:9a:43:cb:a2:bf:6a:84:80:67:83:62:
68:01:ed:93:e4:36:55:59:53:d7:55:6a:ac:9f:21:0e:2e:5c:
f1:75:8f:ec:24:c6:8c:f4:c0:af:90:e5:af:54:76:f1:bb:bd:
15:37:cd:71:62:41:9d:9d:32:4c:41:ce:ff:fd:33:31:d6:29:
6e:77:60:bc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYN6sp6e29dN4udwHyvEuNjFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE4NTMxMGY1MDMxMzdhZThiMzVkNGYzMjlmNDZmMDY5ZGQ3
MDM4MTUwHhcNMjIwOTI2MTY0NzQ5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4Zjc3NjBkM2E4OTE1NzkzMDJhNWEwYjViZDJjNDFkMjkxNmI0NTM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApywQLdsruKcGhWibWIeXHxpL0bpp
8mapauShMYXBmgq/qq7/mmEiL7hyb7JWXIHWpPYYnKsO2XjvRxroyyRU4WYqYnXL
HfQZC/4PgrkW51hGCSHBVK9hDF8pQGJrgqDmdHjJuDAa6AbX7vQ8uJB7SC0RNzNp
RiKfZS7Ve89qdAJnSxZjprj7aCFoAwfog7yUDWp5O9YqeTq+91YlnrfOV06XffJZ
2mJNa1pvTZ5dq8Ph16MwE24v0XZkDGbYwUcAJqVaeUpYNI4w5Sa9BUWrrhkIBLLY
Gt8nQ3pNBapgVsUY2lCHm/GDUc3d7Dc3zmdADRiduynjglu8wtYmLPF7cwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFI93YNOokVeTAqWgtb0sQdKRa0U0MB8GA1UdIwQY
MBaAFKhTEPUDE3ros11PMp9G8GndcDgVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcUZNUTlRTVRldWl6WFU4eW4wYndhZDF3T0JVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9iNDI5NDktZWUwYS00MTIzLTg3YmYt
MzAxODlhNWE0ZWJhLzEvajNkZzA2aVJWNU1DcGFDMXZTeEIwcEZyUlRRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi9iNDI5NDktZWUwYS00MTIzLTg3YmYtMzAxODlhNWE0ZWJh
LzEvcUZNUTlRTVRldWl6WFU4eW4wYndhZDF3T0JVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwjJSMA0G
CSqGSIb3DQEBCwUAA4IBAQCTy5p8hRPQW9WUHWSVMHDIafwOMavcAE78kGqxJGpA
esQghoK3qIetOk8m4noXiQyRSsuZ1cZUSdSjy9Ux6q//dbpHjAxsEYmtodx7KI8J
50/TVdkxy6BvGj4Y4eV9jls+8r+C7j5A9aX3PoIVKW1sX8Hv9i+IA2W4HH1oqb4Q
CPfz8q0sdjuHBFAJunANVVT2AyrEIZn9CxKwvQf1/jJd5/NKurPiavIBxU1K3xNz
HV9zG2M87P2n+XxGmkPLor9qhIBng2JoAe2T5DZVWVPXVWqsnyEOLlzxdY/sJMaM
9MCvkOWvVHbxu70VN81xYkGdnTJMQc7//TMx1ilud2C8
-----END CERTIFICATE-----
Generated at Tue Apr 8 15:37:58 2025 by rpki-client