Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/051035-200d-41e8-adf1-d33f08f3a48d/1/0VuiQURkxWmr-RtHmOgj3nTwfbw.roa
File: 0VuiQURkxWmr-RtHmOgj3nTwfbw.roa (raw, json)
Hash identifier: 9jVjGkSlA8EhUKlggiEFWO/OMyPIliV4iQgxjjKlW7w=
Subject key identifier: D1:5B:A2:41:44:64:C5:69:AB:F9:1B:47:98:E8:23:DE:74:F0:7D:BC
Certificate issuer: /CN=e2110acce33ac85011ca8c22d2001666e45b9377
Certificate serial: 0D93795B
Authority key identifier: E2:11:0A:CC:E3:3A:C8:50:11:CA:8C:22:D2:00:16:66:E4:5B:93:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4hEKzOM6yFARyowi0gAWZuRbk3c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/051035-200d-41e8-adf1-d33f08f3a48d/1/0VuiQURkxWmr-RtHmOgj3nTwfbw.roa
Signing time: Sat 01 Jan 2022 09:06:15 +0000
ROA not before: Sat 01 Jan 2022 09:06:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9150
IP address blocks: 194.165.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 227768667 (0xd93795b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2110acce33ac85011ca8c22d2001666e45b9377
Validity
Not Before: Jan 1 09:06:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d15ba2414464c569abf91b4798e823de74f07dbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8b:6e:2e:4c:88:dc:cb:88:14:f4:be:8a:c8:
ee:32:b7:22:46:8d:25:58:cb:3d:ff:4e:6f:25:7d:
99:69:ce:59:fc:9e:66:f6:06:ff:c4:38:51:cf:7c:
58:d9:da:52:75:dd:78:45:49:b5:92:e2:fc:55:34:
7e:58:be:2d:e1:0e:c2:c1:f0:0a:42:4c:56:2a:e9:
fa:f9:37:59:a6:95:13:f8:4d:b5:78:81:b2:e0:30:
a2:6e:93:5a:07:1f:a0:29:d5:d0:32:00:19:ec:f0:
86:df:fd:e6:ff:89:52:50:f9:cf:78:f4:5b:da:f7:
65:4e:ce:a9:31:37:4a:bc:d1:d1:9d:63:42:fc:b5:
a5:fc:eb:95:e1:69:cd:d9:50:ba:db:e6:5b:fb:26:
d7:c8:b9:30:8d:ed:2f:71:d0:8b:39:ae:99:72:2b:
50:ba:1e:4c:b8:cb:75:37:85:87:52:fe:10:91:f3:
62:14:0e:2d:04:b6:8b:12:7b:c1:b4:b0:58:f1:56:
c1:fc:8a:b3:ce:af:d1:16:40:4f:e9:d1:31:08:ca:
33:61:82:49:b1:8b:27:48:27:8f:5c:47:44:be:30:
16:7c:38:3f:20:0a:20:50:ef:ae:bf:3c:17:c5:1a:
a9:3d:cd:76:e4:1a:ae:11:cb:a7:99:2b:bb:28:ae:
81:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:5B:A2:41:44:64:C5:69:AB:F9:1B:47:98:E8:23:DE:74:F0:7D:BC
X509v3 Authority Key Identifier:
keyid:E2:11:0A:CC:E3:3A:C8:50:11:CA:8C:22:D2:00:16:66:E4:5B:93:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4hEKzOM6yFARyowi0gAWZuRbk3c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/051035-200d-41e8-adf1-d33f08f3a48d/1/0VuiQURkxWmr-RtHmOgj3nTwfbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/051035-200d-41e8-adf1-d33f08f3a48d/1/4hEKzOM6yFARyowi0gAWZuRbk3c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.165.51.0/24
Signature Algorithm: sha256WithRSAEncryption
30:76:fe:ff:ce:8d:b6:a0:7e:93:2c:2e:68:08:ab:99:83:71:
c1:a6:d7:95:26:e3:aa:d5:59:07:55:01:fe:85:a6:1f:11:8b:
22:d6:2b:30:fa:d2:96:07:1f:69:6f:e8:b3:8a:09:67:a3:5f:
44:3b:a8:ee:46:cb:4a:08:95:20:08:f4:3d:57:3a:89:08:f4:
45:80:70:b2:d5:bb:65:fb:e1:66:ce:e2:87:ce:c7:89:38:f2:
14:6a:37:0b:df:5e:10:da:5a:b9:45:ca:38:05:0e:ea:d6:c3:
95:8e:d4:05:06:7b:19:d8:19:75:54:3b:36:45:2d:4d:ab:d5:
70:77:c1:ff:48:eb:f0:55:71:f4:4d:b9:b8:51:1b:c0:78:d3:
e3:05:59:2f:50:9b:45:6f:4c:2e:f4:4b:c5:d7:22:86:dc:57:
90:88:40:14:55:f6:67:99:e2:03:ab:8e:fb:02:3b:f9:39:cf:
aa:c9:87:e2:9c:1a:28:92:59:d8:e6:71:3d:1a:5c:28:29:fc:
81:c3:f9:dd:76:c3:2f:54:13:8d:5e:77:cc:e4:c0:aa:2b:8c:
8b:33:25:16:2f:1a:be:ac:98:01:1b:6c:78:fd:2b:32:29:7e:
fc:bb:bb:2f:1c:b3:4c:b4:c9:84:58:ee:03:71:64:2b:06:90:
d7:27:48:b9
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDZN5WzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MjExMGFjY2UzM2FjODUwMTFjYThjMjJkMjAwMTY2NmU0NWI5Mzc3MB4XDTIyMDEw
MTA5MDYxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDE1YmEyNDE0NDY0
YzU2OWFiZjkxYjQ3OThlODIzZGU3NGYwN2RiYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALCLbi5MiNzLiBT0vorI7jK3IkaNJVjLPf9ObyV9mWnOWfye
ZvYG/8Q4Uc98WNnaUnXdeEVJtZLi/FU0fli+LeEOwsHwCkJMVirp+vk3WaaVE/hN
tXiBsuAwom6TWgcfoCnV0DIAGezwht/95v+JUlD5z3j0W9r3ZU7OqTE3SrzR0Z1j
Qvy1pfzrleFpzdlQutvmW/sm18i5MI3tL3HQizmumXIrULoeTLjLdTeFh1L+EJHz
YhQOLQS2ixJ7wbSwWPFWwfyKs86v0RZAT+nRMQjKM2GCSbGLJ0gnj1xHRL4wFnw4
PyAKIFDvrr88F8UaqT3NduQarhHLp5kruyiugesCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTRW6JBRGTFaav5G0eY6CPedPB9vDAfBgNVHSMEGDAWgBTiEQrM4zrIUBHK
jCLSABZm5FuTdzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzRoRUt6T002eUZBUnlvd2kwZ0FXWnVSYmszYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDQvMDUxMDM1LTIwMGQtNDFlOC1hZGYxLWQzM2YwOGYzYTQ4ZC8x
LzBWdWlRVVJreFdtci1SdEhtT2dqM25Ud2Zidy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDQv
MDUxMDM1LTIwMGQtNDFlOC1hZGYxLWQzM2YwOGYzYTQ4ZC8xLzRoRUt6T002eUZB
Unlvd2kwZ0FXWnVSYmszYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMKlMzANBgkqhkiG9w0BAQsFAAOC
AQEAMHb+/86NtqB+kywuaAirmYNxwabXlSbjqtVZB1UB/oWmHxGLItYrMPrSlgcf
aW/os4oJZ6NfRDuo7kbLSgiVIAj0PVc6iQj0RYBwstW7ZfvhZs7ih87HiTjyFGo3
C99eENpauUXKOAUO6tbDlY7UBQZ7GdgZdVQ7NkUtTavVcHfB/0jr8FVx9E25uFEb
wHjT4wVZL1CbRW9MLvRLxdcihtxXkIhAFFX2Z5niA6uO+wI7+TnPqsmH4pwaKJJZ
2OZxPRpcKCn8gcP53XbDL1QTjV53zOTAqiuMizMlFi8avqyYARtseP0rMil+/Lu7
LxyzTLTJhFjuA3FkKwaQ1ydIuQ==
-----END CERTIFICATE-----
Generated at Thu Apr 17 23:37:45 2025 by rpki-client