Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/f8ea84-c0db-4c5a-a3c6-3eb09ede3ed5/1/TWdjdnIuAPRYLxby-o97Ihi4lkY.roa
File: TWdjdnIuAPRYLxby-o97Ihi4lkY.roa (raw, json)
Hash identifier: Fh3/VTIMrp5B01M/WlByjj95KYq/UC6ByueNBSD0G7w=
Subject key identifier: 4D:67:63:76:72:2E:00:F4:58:2F:16:F2:FA:8F:7B:22:18:B8:96:46
Certificate issuer: /CN=c9ec77df59ed72a5457dece6a53d05ed0ae600aa
Certificate serial: 10631F25
Authority key identifier: C9:EC:77:DF:59:ED:72:A5:45:7D:EC:E6:A5:3D:05:ED:0A:E6:00:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yex331ntcqVFfezmpT0F7QrmAKo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/f8ea84-c0db-4c5a-a3c6-3eb09ede3ed5/1/TWdjdnIuAPRYLxby-o97Ihi4lkY.roa
Signing time: Sat 01 Jan 2022 05:57:36 +0000
ROA not before: Sat 01 Jan 2022 05:57:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44447
IP address blocks: 93.92.0.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 274931493 (0x10631f25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9ec77df59ed72a5457dece6a53d05ed0ae600aa
Validity
Not Before: Jan 1 05:57:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d676376722e00f4582f16f2fa8f7b2218b89646
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:51:af:08:0b:6d:f6:9d:d0:31:f2:59:34:46:
7e:d9:55:e8:73:da:95:33:1f:e8:02:c8:6f:6c:97:
b5:54:38:78:c2:e9:fb:31:4c:06:43:f4:26:f0:e5:
c8:de:6c:e7:6e:ba:be:50:52:34:d0:80:90:2b:ec:
1b:ea:d2:e5:06:a7:bb:b0:47:d7:a5:f4:c0:76:ea:
4a:26:32:3e:d8:90:9b:d7:5f:45:be:5a:cf:aa:44:
54:25:0d:39:c0:35:e3:dc:51:cf:20:90:49:59:30:
7b:23:90:c8:36:ff:98:dc:1d:94:f7:4e:ed:cd:45:
1a:62:ad:ed:90:94:dd:ce:af:af:e0:07:a6:e2:13:
a6:b9:5a:0a:b1:2d:75:92:16:7e:da:24:af:20:b3:
3f:f6:23:0a:bb:fe:85:90:06:e9:2b:a1:eb:b7:38:
21:05:95:fd:d2:45:04:2b:ce:b5:60:4e:7d:59:97:
bb:3c:8b:7c:1a:84:88:84:11:b7:a7:4d:f2:b8:ff:
ba:1e:84:b0:58:29:72:af:3d:04:84:ee:73:af:22:
a2:34:59:61:c8:7a:43:3c:cc:49:ed:39:40:8b:11:
9c:44:2a:d8:df:59:f4:0e:41:5d:c1:b3:10:0c:c1:
5c:be:57:d0:ba:22:f2:68:4a:a3:7b:a7:8e:1b:5f:
ab:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:67:63:76:72:2E:00:F4:58:2F:16:F2:FA:8F:7B:22:18:B8:96:46
X509v3 Authority Key Identifier:
keyid:C9:EC:77:DF:59:ED:72:A5:45:7D:EC:E6:A5:3D:05:ED:0A:E6:00:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yex331ntcqVFfezmpT0F7QrmAKo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/f8ea84-c0db-4c5a-a3c6-3eb09ede3ed5/1/TWdjdnIuAPRYLxby-o97Ihi4lkY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/f8ea84-c0db-4c5a-a3c6-3eb09ede3ed5/1/yex331ntcqVFfezmpT0F7QrmAKo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.92.0.0/21
Signature Algorithm: sha256WithRSAEncryption
4b:22:1a:dd:60:75:c0:1c:5b:6f:5d:42:c5:f8:1d:3f:d4:89:
33:4c:40:91:ed:42:6f:e8:05:13:c2:95:6a:c2:0b:6f:de:b5:
4b:dd:d1:b9:99:99:91:cd:17:e8:5c:04:ae:b7:a1:b9:34:eb:
48:4c:e9:ac:ab:6b:6e:92:2e:eb:71:38:d0:ea:58:ae:c4:6f:
a2:77:ff:00:2d:8c:f8:d6:f8:c0:0e:d7:69:78:61:5a:65:a1:
9a:8e:3f:a6:0a:19:45:3e:fd:0c:23:e3:84:13:10:1c:f1:a1:
7c:0b:4f:5e:32:1d:f5:47:f1:46:3d:3c:62:8d:f8:72:f5:d8:
67:75:78:01:c2:1a:0c:75:11:4f:8b:81:2e:ee:d9:a4:7a:88:
84:90:74:d9:57:2c:90:cf:1e:00:da:0e:07:84:87:21:13:6e:
5e:5d:de:db:33:fd:c1:cd:63:91:9c:a6:ea:7a:34:1e:0c:02:
e4:95:62:30:d1:c9:0b:8c:ec:df:34:f8:c1:9c:ab:a7:19:ac:
8d:26:32:65:d1:ca:c8:44:80:6f:2d:f5:dd:68:48:ff:ac:af:
26:01:2c:0e:3d:b1:4e:17:ce:88:f1:f2:a5:63:5d:9f:c1:94:
79:3a:5b:98:ef:27:a6:b4:d1:70:74:dd:02:f9:1e:b1:7e:35:
84:96:3a:71
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEEGMfJTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
OWVjNzdkZjU5ZWQ3MmE1NDU3ZGVjZTZhNTNkMDVlZDBhZTYwMGFhMB4XDTIyMDEw
MTA1NTczNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGQ2NzYzNzY3MjJl
MDBmNDU4MmYxNmYyZmE4ZjdiMjIxOGI4OTY0NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJJRrwgLbfad0DHyWTRGftlV6HPalTMf6ALIb2yXtVQ4eMLp
+zFMBkP0JvDlyN5s5266vlBSNNCAkCvsG+rS5Qanu7BH16X0wHbqSiYyPtiQm9df
Rb5az6pEVCUNOcA149xRzyCQSVkweyOQyDb/mNwdlPdO7c1FGmKt7ZCU3c6vr+AH
puITprlaCrEtdZIWftokryCzP/YjCrv+hZAG6Suh67c4IQWV/dJFBCvOtWBOfVmX
uzyLfBqEiIQRt6dN8rj/uh6EsFgpcq89BITuc68iojRZYch6QzzMSe05QIsRnEQq
2N9Z9A5BXcGzEAzBXL5X0Loi8mhKo3unjhtfq1ECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRNZ2N2ci4A9FgvFvL6j3siGLiWRjAfBgNVHSMEGDAWgBTJ7HffWe1ypUV9
7OalPQXtCuYAqjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3lleDMzMW50Y3FWRmZlem1wVDBGN1FybUFLby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDQvZjhlYTg0LWMwZGItNGM1YS1hM2M2LTNlYjA5ZWRlM2VkNS8x
L1RXZGpkbkl1QVBSWUx4Ynktbzk3SWhpNGxrWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDQv
ZjhlYTg0LWMwZGItNGM1YS1hM2M2LTNlYjA5ZWRlM2VkNS8xL3lleDMzMW50Y3FW
RmZlem1wVDBGN1FybUFLby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA11cADANBgkqhkiG9w0BAQsFAAOC
AQEASyIa3WB1wBxbb11CxfgdP9SJM0xAke1Cb+gFE8KVasILb961S93RuZmZkc0X
6FwErrehuTTrSEzprKtrbpIu63E40OpYrsRvonf/AC2M+Nb4wA7XaXhhWmWhmo4/
pgoZRT79DCPjhBMQHPGhfAtPXjId9UfxRj08Yo34cvXYZ3V4AcIaDHURT4uBLu7Z
pHqIhJB02VcskM8eANoOB4SHIRNuXl3e2zP9wc1jkZym6no0HgwC5JViMNHJC4zs
3zT4wZyrpxmsjSYyZdHKyESAby313WhI/6yvJgEsDj2xThfOiPHypWNdn8GUeTpb
mO8nprTRcHTdAvkesX41hJY6cQ==
-----END CERTIFICATE-----
Generated at Fri Apr 18 19:04:15 2025 by rpki-client