Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/dSg7mMG-A3o0_37669pHdt7r5Mg.roa
File: dSg7mMG-A3o0_37669pHdt7r5Mg.roa (raw, json)
Hash identifier: Wl5EaaAn1LuE2pAi2MGCdB7i/1zNLHOiupQvIGY/bqY=
Subject key identifier: 75:28:3B:98:C1:BE:03:7A:34:FF:7E:FA:EB:DA:47:76:DE:EB:E4:C8
Certificate issuer: /CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8
Certificate serial: 018842FE0A142A5D1F2C04444B7FB74614E6
Authority key identifier: 62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/dSg7mMG-A3o0_37669pHdt7r5Mg.roa
Signing time: Mon 22 May 2023 10:25:24 +0000
ROA not before: Mon 22 May 2023 10:25:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50952
IP address blocks: 178.18.224.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:42:fe:0a:14:2a:5d:1f:2c:04:44:4b:7f:b7:46:14:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8
Validity
Not Before: May 22 10:25:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75283b98c1be037a34ff7efaebda4776deebe4c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:2d:8a:00:72:c7:bf:a4:e6:20:8c:a9:09:ea:
f6:6d:52:fc:e1:25:9b:9a:18:d1:b5:71:a1:f0:e7:
8a:40:4b:64:9b:f2:ce:63:d1:30:1b:2c:e5:5d:4d:
51:50:ac:d3:37:63:b1:c8:90:ef:58:2b:66:6a:fa:
35:67:ff:7b:4d:17:f3:15:1f:d3:26:54:6e:51:3f:
b1:05:f0:d4:49:29:e4:94:96:23:07:89:6d:3e:e9:
60:9b:e4:ae:8c:29:55:5f:a0:30:56:de:3f:5c:72:
35:d7:e2:f1:2b:c6:f6:43:9d:75:6c:bc:f8:ac:dc:
52:86:7d:d4:5d:8d:37:10:cc:8b:73:4c:74:85:da:
d4:7d:77:62:c5:ce:73:8a:09:79:36:bd:c6:d7:b6:
5f:0b:3d:3e:b1:b2:b8:c9:dc:33:17:5a:5d:3d:b2:
3d:cc:f4:01:28:e4:4a:3e:e9:f8:b3:6d:86:78:c6:
a7:39:3c:6d:aa:47:04:1f:8b:3e:50:a8:c6:f4:9a:
cf:82:3d:fa:22:1d:04:27:bf:f0:73:8d:41:d5:d8:
18:b8:1f:28:d2:32:8f:a6:53:60:46:38:f7:4e:08:
4a:6c:8e:e1:29:06:29:0f:56:ae:17:9a:69:06:1c:
1c:c1:c2:ca:ea:af:6f:da:d4:62:9d:11:8b:af:a4:
53:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:28:3B:98:C1:BE:03:7A:34:FF:7E:FA:EB:DA:47:76:DE:EB:E4:C8
X509v3 Authority Key Identifier:
keyid:62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/dSg7mMG-A3o0_37669pHdt7r5Mg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/Yijn4B-tpJwaUvoT82JsQbQaUbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.18.224.0/22
Signature Algorithm: sha256WithRSAEncryption
56:73:13:ce:53:56:d3:5d:cb:dd:89:cd:d6:96:a2:23:cf:02:
c7:04:d5:7c:30:d7:06:5c:29:85:fb:89:a1:7e:2b:ea:90:80:
27:08:74:3d:5e:3e:d3:c3:16:56:cf:26:3f:45:fc:ea:31:05:
45:27:00:3d:37:d9:5e:1c:05:46:9a:3c:e2:59:92:9e:1c:c6:
b7:e2:85:52:d6:c2:09:d0:6f:4c:91:53:69:bc:73:8c:ea:f4:
5f:54:95:e7:87:f6:7e:20:15:f8:a2:e2:b4:93:39:58:bb:d6:
87:1d:11:32:c4:74:ee:b9:c5:d2:d6:41:fc:57:2a:7a:4b:26:
94:63:b1:56:1a:3f:13:ab:60:1a:94:1c:f3:fd:09:36:bf:65:
a0:9b:a0:32:74:d3:9d:ed:06:f7:93:d4:5b:43:0b:74:16:6e:
86:88:a3:27:7c:e5:3c:81:1f:b1:ae:b0:0f:a8:c9:b1:08:ec:
1d:e7:0f:4d:b7:fd:ea:0b:7c:c9:b9:7e:60:da:00:98:45:fb:
8b:67:94:d6:45:47:23:f9:ec:a5:bc:cf:c1:1b:be:cc:7f:3b:
1a:2e:64:1e:05:2c:12:15:e6:db:8f:b8:4e:d4:80:df:4c:7d:
61:a4:82:50:86:aa:04:c7:89:e4:97:26:4b:45:b7:ad:7f:a7:
24:2f:96:d5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYhC/goUKl0fLARES3+3RhTmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyMjhlN2UwMWZhZGE0OWMxYTUyZmExM2YzNjI2YzQxYjQx
YTUxYjgwHhcNMjMwNTIyMTAyNTI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NTI4M2I5OGMxYmUwMzdhMzRmZjdlZmFlYmRhNDc3NmRlZWJlNGM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgy2KAHLHv6TmIIypCer2bVL84SWb
mhjRtXGh8OeKQEtkm/LOY9EwGyzlXU1RUKzTN2OxyJDvWCtmavo1Z/97TRfzFR/T
JlRuUT+xBfDUSSnklJYjB4ltPulgm+SujClVX6AwVt4/XHI11+LxK8b2Q511bLz4
rNxShn3UXY03EMyLc0x0hdrUfXdixc5zigl5Nr3G17ZfCz0+sbK4ydwzF1pdPbI9
zPQBKORKPun4s22GeManOTxtqkcEH4s+UKjG9JrPgj36Ih0EJ7/wc41B1dgYuB8o
0jKPplNgRjj3TghKbI7hKQYpD1auF5ppBhwcwcLK6q9v2tRinRGLr6RTJQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHUoO5jBvgN6NP9++uvaR3be6+TIMB8GA1UdIwQY
MBaAFGIo5+AfraScGlL6E/NibEG0GlG4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWlqbjRCLXRwSndhVXZvVDgySnNRYlFhVWJnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS9iYWFmZjMtYWViNC00NjE2LThmYjUt
NzY3NDE2NTI1MTBkLzEvZFNnN21NRy1BM28wXzM3NjY5cEhkdDdyNU1nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS9iYWFmZjMtYWViNC00NjE2LThmYjUtNzY3NDE2NTI1MTBk
LzEvWWlqbjRCLXRwSndhVXZvVDgySnNRYlFhVWJnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCshLgMA0G
CSqGSIb3DQEBCwUAA4IBAQBWcxPOU1bTXcvdic3WlqIjzwLHBNV8MNcGXCmF+4mh
fivqkIAnCHQ9Xj7TwxZWzyY/RfzqMQVFJwA9N9leHAVGmjziWZKeHMa34oVS1sIJ
0G9MkVNpvHOM6vRfVJXnh/Z+IBX4ouK0kzlYu9aHHREyxHTuucXS1kH8Vyp6SyaU
Y7FWGj8Tq2AalBzz/Qk2v2Wgm6AydNOd7Qb3k9RbQwt0Fm6GiKMnfOU8gR+xrrAP
qMmxCOwd5w9Nt/3qC3zJuX5g2gCYRfuLZ5TWRUcj+eylvM/BG77MfzsaLmQeBSwS
Febbj7hO1IDfTH1hpIJQhqoEx4nklyZLRbetf6ckL5bV
-----END CERTIFICATE-----
Generated at Sat Apr 19 08:28:39 2025 by rpki-client