Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/e4ffc5-fb8d-4c40-8b73-bfeb7cea209d/1/eyQ4mQb0hStrxdPBcywfbnw1r8g.roa
File: eyQ4mQb0hStrxdPBcywfbnw1r8g.roa (raw, json)
Hash identifier: VvUrOlZgQmUKiWpW1xd7b7IIk7AKhHWn2u9OE98fCE8=
Subject key identifier: 7B:24:38:99:06:F4:85:2B:6B:C5:D3:C1:73:2C:1F:6E:7C:35:AF:C8
Certificate issuer: /CN=4baff48ad1145b100c783fb7afb6f3028bd8f34e
Certificate serial: 016076
Authority key identifier: 4B:AF:F4:8A:D1:14:5B:10:0C:78:3F:B7:AF:B6:F3:02:8B:D8:F3:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S6_0itEUWxAMeD-3r7bzAovY804.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/e4ffc5-fb8d-4c40-8b73-bfeb7cea209d/1/eyQ4mQb0hStrxdPBcywfbnw1r8g.roa
Signing time: Wed 30 Mar 2022 09:59:36 +0000
ROA not before: Wed 30 Mar 2022 09:59:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1764
IP address blocks: 185.254.140.0/22 maxlen: 22
2a0c:4e40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90230 (0x16076)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4baff48ad1145b100c783fb7afb6f3028bd8f34e
Validity
Not Before: Mar 30 09:59:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b24389906f4852b6bc5d3c1732c1f6e7c35afc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:44:95:0f:c2:f0:3a:8b:1d:44:23:6c:54:f1:
27:e4:98:67:5d:86:7e:fb:eb:83:7a:2c:94:c5:6a:
df:bb:52:d3:a9:c7:b2:18:f4:c5:c3:bf:fb:19:e6:
28:27:05:99:11:5e:ea:8e:3b:d6:67:9b:d1:a5:c2:
5a:08:b4:fb:36:07:33:3a:bb:9e:6f:69:a1:ff:5d:
e5:73:29:ae:2b:e6:8c:8c:73:23:35:a9:d0:4e:9e:
31:91:4c:c1:a5:44:15:b7:89:a4:2e:e6:9a:0d:e2:
1f:39:7c:9a:a8:1b:80:c3:11:27:1e:8c:45:ef:10:
5b:16:fc:99:e6:63:0b:c2:28:ea:4d:21:e0:6c:0e:
52:27:a6:de:b1:38:61:0c:b2:8c:a3:75:0b:b9:e8:
7e:35:87:10:f4:c0:ae:31:10:71:93:4d:a5:68:65:
e0:2d:63:88:c9:9b:ca:63:2d:39:dc:35:e9:ee:33:
e6:5c:84:7d:96:f8:b5:30:4b:53:2e:88:7b:63:c9:
12:3d:c4:fb:3f:e0:d5:8d:c3:b3:3e:9a:4b:02:73:
69:7a:4e:d6:b7:5a:ea:4b:76:73:1e:97:a3:77:e2:
6d:18:ab:db:7c:87:0f:45:f0:24:6a:1d:7d:9b:a1:
0f:14:35:65:1a:39:ed:61:4f:a8:21:5b:40:78:b7:
c8:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:24:38:99:06:F4:85:2B:6B:C5:D3:C1:73:2C:1F:6E:7C:35:AF:C8
X509v3 Authority Key Identifier:
keyid:4B:AF:F4:8A:D1:14:5B:10:0C:78:3F:B7:AF:B6:F3:02:8B:D8:F3:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S6_0itEUWxAMeD-3r7bzAovY804.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/e4ffc5-fb8d-4c40-8b73-bfeb7cea209d/1/eyQ4mQb0hStrxdPBcywfbnw1r8g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/e4ffc5-fb8d-4c40-8b73-bfeb7cea209d/1/S6_0itEUWxAMeD-3r7bzAovY804.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.254.140.0/22
IPv6:
2a0c:4e40::/29
Signature Algorithm: sha256WithRSAEncryption
39:18:68:79:1d:ee:d7:fb:a5:29:0a:36:39:c4:c6:89:66:21:
8e:dd:ef:93:96:0c:cf:73:39:bc:12:0e:83:8a:84:6d:64:08:
91:8b:5f:a0:cc:7b:7f:36:5c:eb:1f:10:8d:8c:ba:ba:dd:a5:
fc:ed:9c:d0:ef:cf:8f:86:d1:37:d9:e2:6e:76:0e:bc:4d:5a:
dd:11:e3:d9:5b:dc:3b:28:55:fd:b7:80:ad:e5:0e:a2:48:c2:
7b:d7:40:0f:3c:74:2a:0e:86:54:d7:33:e1:dc:95:3f:3a:51:
06:77:54:53:af:a4:7d:4f:4e:7a:7c:3f:a2:43:5a:9d:78:77:
4b:95:5c:ad:11:8e:28:07:40:44:40:cf:52:e4:d5:2c:48:30:
bd:54:fc:c4:d0:6a:a0:94:ad:2e:64:2f:2d:59:40:d1:56:be:
b6:27:0f:eb:2a:c1:90:d8:18:3f:0a:55:8f:26:21:2e:eb:3c:
3a:7c:ae:4b:7d:44:02:52:a4:21:23:22:b6:c0:f1:ad:d2:ff:
5f:f8:d4:0b:f4:e4:ba:8f:bb:c2:75:64:a5:eb:d1:54:2e:11:
d2:10:e0:6a:32:e8:c9:1d:8f:1c:61:db:eb:39:aa:2a:19:8e:
00:4d:a3:76:35:b4:d0:27:93:ee:7d:f8:28:42:80:bd:3c:89:
c5:1e:9f:79
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgIDAWB2MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDRi
YWZmNDhhZDExNDViMTAwYzc4M2ZiN2FmYjZmMzAyOGJkOGYzNGUwHhcNMjIwMzMw
MDk1OTM2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg3YjI0Mzg5OTA2ZjQ4
NTJiNmJjNWQzYzE3MzJjMWY2ZTdjMzVhZmM4MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA3kSVD8LwOosdRCNsVPEn5JhnXYZ+++uDeiyUxWrfu1LTqcey
GPTFw7/7GeYoJwWZEV7qjjvWZ5vRpcJaCLT7NgczOrueb2mh/13lcymuK+aMjHMj
NanQTp4xkUzBpUQVt4mkLuaaDeIfOXyaqBuAwxEnHoxF7xBbFvyZ5mMLwijqTSHg
bA5SJ6besThhDLKMo3ULueh+NYcQ9MCuMRBxk02laGXgLWOIyZvKYy053DXp7jPm
XIR9lvi1MEtTLoh7Y8kSPcT7P+DVjcOzPppLAnNpek7Wt1rqS3ZzHpejd+JtGKvb
fIcPRfAkah19m6EPFDVlGjntYU+oIVtAeLfI0wIDAQABo4ICGDCCAhQwHQYDVR0O
BBYEFHskOJkG9IUra8XTwXMsH258Na/IMB8GA1UdIwQYMBaAFEuv9IrRFFsQDHg/
t6+28wKL2PNOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
UzZfMGl0RVVXeEFNZUQtM3I3YnpBb3ZZODA0LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8wNS9lNGZmYzUtZmI4ZC00YzQwLThiNzMtYmZlYjdjZWEyMDlkLzEv
ZXlRNG1RYjBoU3RyeGRQQmN5d2ZibncxcjhnLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS9l
NGZmYzUtZmI4ZC00YzQwLThiNzMtYmZlYjdjZWEyMDlkLzEvUzZfMGl0RVVXeEFN
ZUQtM3I3YnpBb3ZZODA0LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4G
CCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuf6MMA0EAgACMAcDBQMqDE5AMA0G
CSqGSIb3DQEBCwUAA4IBAQA5GGh5He7X+6UpCjY5xMaJZiGO3e+TlgzPczm8Eg6D
ioRtZAiRi1+gzHt/NlzrHxCNjLq63aX87ZzQ78+PhtE32eJudg68TVrdEePZW9w7
KFX9t4Ct5Q6iSMJ710APPHQqDoZU1zPh3JU/OlEGd1RTr6R9T056fD+iQ1qdeHdL
lVytEY4oB0BEQM9S5NUsSDC9VPzE0GqglK0uZC8tWUDRVr62Jw/rKsGQ2Bg/ClWP
JiEu6zw6fK5LfUQCUqQhIyK2wPGt0v9f+NQL9OS6j7vCdWSl69FULhHSEOBqMujJ
HY8cYdvrOaoqGY4ATaN2NbTQJ5PuffgoQoC9PInFHp95
-----END CERTIFICATE-----
Generated at Fri Apr 18 00:00:48 2025 by rpki-client