Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/877e6c-325a-47ea-aa56-1096bfd6bf6d/1/jXxrsRhfdA4Mmfd6vg5jCj652Ds.roa
File: jXxrsRhfdA4Mmfd6vg5jCj652Ds.roa (raw, json)
Hash identifier: esQnwqAktEi9RI47cOEnph7TixnJ/4o8UOBaXs7nqm8=
Subject key identifier: 8D:7C:6B:B1:18:5F:74:0E:0C:99:F7:7A:BE:0E:63:0A:3E:B9:D8:3B
Certificate issuer: /CN=1246f23a048763aa3ad0aede5a489ab8fcd26384
Certificate serial: 06263F1C
Authority key identifier: 12:46:F2:3A:04:87:63:AA:3A:D0:AE:DE:5A:48:9A:B8:FC:D2:63:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EkbyOgSHY6o60K7eWkiauPzSY4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/877e6c-325a-47ea-aa56-1096bfd6bf6d/1/jXxrsRhfdA4Mmfd6vg5jCj652Ds.roa
Signing time: Sat 01 Jan 2022 13:07:13 +0000
ROA not before: Sat 01 Jan 2022 13:07:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207553
IP address blocks: 194.9.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 103169820 (0x6263f1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1246f23a048763aa3ad0aede5a489ab8fcd26384
Validity
Not Before: Jan 1 13:07:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d7c6bb1185f740e0c99f77abe0e630a3eb9d83b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:88:0e:6a:b5:a4:dc:b9:8f:03:58:4c:23:ab:
01:b9:07:58:07:72:c6:81:18:7d:9c:e6:ae:fb:78:
9d:5e:0a:e2:43:9e:da:02:02:d7:40:29:e5:73:30:
59:bf:dd:78:cd:84:61:a3:75:01:68:b0:0a:24:c3:
a5:62:3c:14:36:d0:56:5f:7b:79:3d:a7:08:40:17:
51:62:7d:b7:19:0e:39:03:50:13:70:75:f1:60:e5:
b1:6a:b0:77:13:7f:22:01:76:3c:8d:2e:70:54:e0:
a3:07:6c:8e:b1:69:4f:c9:3a:0c:a5:14:7d:b0:1d:
3b:c3:ed:36:bd:5f:b2:43:99:e9:a1:51:55:45:b3:
da:29:55:27:65:f5:79:0b:40:eb:c8:1d:8d:9e:96:
7a:b7:1b:c3:77:a6:50:b8:df:38:9f:cd:a6:8f:d1:
ef:4c:ab:ba:6c:9c:99:57:64:d0:08:db:09:34:91:
26:3c:88:43:a9:b2:07:24:a2:96:03:84:65:9e:86:
91:3d:2e:e8:27:8f:e9:8c:4a:6d:34:f6:3d:64:84:
f6:2e:87:bb:06:8f:82:2e:18:68:69:00:24:ae:e0:
ec:10:bb:8c:46:1f:fe:d2:4a:92:83:fd:ee:bf:10:
d9:56:2c:ce:27:b9:c3:dd:64:3e:b2:7b:89:33:50:
75:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:7C:6B:B1:18:5F:74:0E:0C:99:F7:7A:BE:0E:63:0A:3E:B9:D8:3B
X509v3 Authority Key Identifier:
keyid:12:46:F2:3A:04:87:63:AA:3A:D0:AE:DE:5A:48:9A:B8:FC:D2:63:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EkbyOgSHY6o60K7eWkiauPzSY4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/877e6c-325a-47ea-aa56-1096bfd6bf6d/1/jXxrsRhfdA4Mmfd6vg5jCj652Ds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/877e6c-325a-47ea-aa56-1096bfd6bf6d/1/EkbyOgSHY6o60K7eWkiauPzSY4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.9.191.0/24
Signature Algorithm: sha256WithRSAEncryption
30:98:51:4b:99:60:40:47:2e:91:5d:d4:7e:0f:d1:d5:dd:45:
10:5a:bd:fd:3d:5b:24:bb:e3:54:54:57:1d:70:39:5f:3d:48:
c4:27:44:12:6d:93:cc:76:78:fd:5f:66:7f:49:00:a1:81:14:
94:19:00:58:58:2e:82:99:10:73:c8:a7:df:fd:89:c0:0f:3e:
d5:98:36:03:30:49:45:11:57:52:8a:66:1d:b9:32:9a:07:f0:
a0:5b:d6:11:1c:92:2c:db:57:02:11:4b:81:20:2f:9f:b7:cd:
f2:7c:aa:37:ab:07:79:91:ec:9f:5f:62:1e:08:22:e2:cc:af:
b5:23:8b:a6:94:c8:22:4d:87:ac:1d:a2:2d:bc:34:67:e3:ed:
2b:52:1c:5b:b8:49:72:2b:88:8b:49:bc:56:45:16:58:f2:38:
1a:42:0e:58:23:43:97:2f:a4:0a:21:e7:c6:88:13:57:7b:99:
38:be:0a:a9:db:6b:80:ef:26:2f:dd:e0:c2:df:a2:a6:77:52:
27:c8:cc:ab:18:1e:34:37:fd:d1:2c:b4:02:e3:ea:ec:a8:4b:
3d:40:3b:6c:52:39:bd:00:76:06:15:c8:fc:ff:70:93:a3:df:
78:1b:db:f1:75:37:23:4f:54:86:9c:6e:e8:97:ce:94:7e:a3:
d7:9a:17:ad
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBiY/HDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
MjQ2ZjIzYTA0ODc2M2FhM2FkMGFlZGU1YTQ4OWFiOGZjZDI2Mzg0MB4XDTIyMDEw
MTEzMDcxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGQ3YzZiYjExODVm
NzQwZTBjOTlmNzdhYmUwZTYzMGEzZWI5ZDgzYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOWIDmq1pNy5jwNYTCOrAbkHWAdyxoEYfZzmrvt4nV4K4kOe
2gIC10Ap5XMwWb/deM2EYaN1AWiwCiTDpWI8FDbQVl97eT2nCEAXUWJ9txkOOQNQ
E3B18WDlsWqwdxN/IgF2PI0ucFTgowdsjrFpT8k6DKUUfbAdO8PtNr1fskOZ6aFR
VUWz2ilVJ2X1eQtA68gdjZ6Wercbw3emULjfOJ/Npo/R70yrumycmVdk0AjbCTSR
JjyIQ6myBySilgOEZZ6GkT0u6CeP6YxKbTT2PWSE9i6HuwaPgi4YaGkAJK7g7BC7
jEYf/tJKkoP97r8Q2VYszie5w91kPrJ7iTNQdUUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSNfGuxGF90DgyZ93q+DmMKPrnYOzAfBgNVHSMEGDAWgBQSRvI6BIdjqjrQ
rt5aSJq4/NJjhDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0VrYnlPZ1NIWTZvNjBLN2VXa2lhdVB6U1k0US5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDUvODc3ZTZjLTMyNWEtNDdlYS1hYTU2LTEwOTZiZmQ2YmY2ZC8x
L2pYeHJzUmhmZEE0TW1mZDZ2ZzVqQ2o2NTJEcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDUv
ODc3ZTZjLTMyNWEtNDdlYS1hYTU2LTEwOTZiZmQ2YmY2ZC8xL0VrYnlPZ1NIWTZv
NjBLN2VXa2lhdVB6U1k0US5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMIJvzANBgkqhkiG9w0BAQsFAAOC
AQEAMJhRS5lgQEcukV3Ufg/R1d1FEFq9/T1bJLvjVFRXHXA5Xz1IxCdEEm2TzHZ4
/V9mf0kAoYEUlBkAWFgugpkQc8in3/2JwA8+1Zg2AzBJRRFXUopmHbkymgfwoFvW
ERySLNtXAhFLgSAvn7fN8nyqN6sHeZHsn19iHggi4syvtSOLppTIIk2HrB2iLbw0
Z+PtK1IcW7hJciuIi0m8VkUWWPI4GkIOWCNDly+kCiHnxogTV3uZOL4KqdtrgO8m
L93gwt+ipndSJ8jMqxgeNDf90Sy0AuPq7KhLPUA7bFI5vQB2BhXI/P9wk6PfeBvb
8XU3I09Uhpxu6JfOlH6j15oXrQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:56 2025 by rpki-client