Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/LeIEiXOlIoXjL2CQ_jBd_Y2PDxQ.roa
File: LeIEiXOlIoXjL2CQ_jBd_Y2PDxQ.roa (raw, json)
Hash identifier: PSCLSCbgxX2dnqvQBjEuGfXp7FEGD3WE6UZZd4ZlKTg=
Subject key identifier: 2D:E2:04:89:73:A5:22:85:E3:2F:60:90:FE:30:5D:FD:8D:8F:0F:14
Certificate issuer: /CN=1e14eb1eef66c2d349f3f7d7bafa68e49fbfec9c
Certificate serial: 03B6090B
Authority key identifier: 1E:14:EB:1E:EF:66:C2:D3:49:F3:F7:D7:BA:FA:68:E4:9F:BF:EC:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HhTrHu9mwtNJ8_fXuvpo5J-_7Jw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/LeIEiXOlIoXjL2CQ_jBd_Y2PDxQ.roa
Signing time: Sat 01 Jan 2022 08:53:58 +0000
ROA not before: Sat 01 Jan 2022 08:53:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201104
IP address blocks: 94.45.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62261515 (0x3b6090b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e14eb1eef66c2d349f3f7d7bafa68e49fbfec9c
Validity
Not Before: Jan 1 08:53:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2de2048973a52285e32f6090fe305dfd8d8f0f14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:22:b1:9a:10:ea:e4:8c:ea:b5:73:29:f6:22:
5c:55:ea:bb:a7:b1:bf:e7:83:37:d9:30:fe:4b:a0:
54:e6:ba:bb:f7:d0:90:6d:76:86:57:5c:2e:18:f5:
07:db:bb:40:d9:b9:5f:04:ff:ac:9c:a8:3a:3f:7a:
60:ba:f1:fe:34:73:9c:98:f9:6d:f9:03:8e:94:c0:
9b:b7:62:40:16:19:4e:52:88:b0:d5:74:56:31:7f:
2a:b9:b9:9c:6d:56:b8:e8:59:e5:4d:35:29:d2:fa:
61:25:2e:16:af:03:3e:07:f8:17:07:12:25:fb:7f:
65:7c:bc:98:d5:0f:74:69:c0:d5:02:5a:67:65:d9:
5f:91:aa:04:f1:f1:a6:6b:32:c9:e7:fc:3f:9f:35:
ee:41:2a:52:50:35:6d:ea:58:00:13:32:6d:52:91:
1e:a5:d8:a5:32:4a:ab:74:16:79:78:9d:ff:e6:6e:
0d:a1:26:80:ad:be:29:e7:93:ce:2d:21:fe:c0:80:
da:83:86:0d:dd:a4:2e:84:69:3b:e8:a3:92:f6:ff:
a9:b7:fa:cf:01:55:f7:5c:6d:c7:73:fb:bd:28:48:
8a:a8:47:d9:b4:3f:1d:ca:43:b2:4f:93:0d:b8:a5:
34:94:f7:a0:22:01:b4:80:54:66:a2:e1:7d:1b:1b:
4a:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:E2:04:89:73:A5:22:85:E3:2F:60:90:FE:30:5D:FD:8D:8F:0F:14
X509v3 Authority Key Identifier:
keyid:1E:14:EB:1E:EF:66:C2:D3:49:F3:F7:D7:BA:FA:68:E4:9F:BF:EC:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HhTrHu9mwtNJ8_fXuvpo5J-_7Jw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/LeIEiXOlIoXjL2CQ_jBd_Y2PDxQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/HhTrHu9mwtNJ8_fXuvpo5J-_7Jw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.45.150.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:44:55:71:37:8f:bc:a2:3e:da:13:8b:b4:bf:80:bc:c3:a9:
70:6e:ce:30:cf:47:69:82:de:c9:a6:95:22:b5:02:2a:5d:33:
f9:61:61:d0:9b:3e:55:d4:8b:b0:36:ed:c2:68:6b:24:9d:5f:
f2:e5:47:08:9a:4b:0f:a1:5c:1f:47:c8:54:25:8f:c8:14:8a:
53:5b:8b:ad:4b:04:22:9e:ae:82:53:62:21:96:21:47:85:42:
8e:84:16:d4:a0:53:1d:a4:08:20:01:ab:20:3b:fa:87:b0:b9:
79:64:a3:f3:70:79:94:c4:84:72:84:f7:b4:ba:6e:56:f8:c2:
a9:bb:58:c0:73:03:b9:1b:51:92:59:1e:11:78:d3:ab:4f:ee:
3a:bb:44:be:cc:fe:76:9f:16:77:bf:af:00:30:57:75:e8:04:
4f:66:a0:58:bd:b0:6a:52:3d:c5:90:12:d0:8a:9d:a7:e1:f2:
7c:e7:4c:f7:06:a9:08:67:47:cf:19:56:5b:fb:f6:1b:73:e9:
99:01:b1:1f:11:a3:26:44:5b:b4:c8:5d:aa:4a:0a:0d:ea:94:
fd:c4:95:aa:53:61:49:ea:d4:87:72:e4:c7:4c:89:7e:3e:59:
e3:63:53:a7:d1:b3:fe:f5:a8:e0:6a:62:64:15:f9:40:41:d1:
8d:c1:d6:63
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA7YJCzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZTE0ZWIxZWVmNjZjMmQzNDlmM2Y3ZDdiYWZhNjhlNDlmYmZlYzljMB4XDTIyMDEw
MTA4NTM1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmRlMjA0ODk3M2E1
MjI4NWUzMmY2MDkwZmUzMDVkZmQ4ZDhmMGYxNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL8isZoQ6uSM6rVzKfYiXFXqu6exv+eDN9kw/kugVOa6u/fQ
kG12hldcLhj1B9u7QNm5XwT/rJyoOj96YLrx/jRznJj5bfkDjpTAm7diQBYZTlKI
sNV0VjF/Krm5nG1WuOhZ5U01KdL6YSUuFq8DPgf4FwcSJft/ZXy8mNUPdGnA1QJa
Z2XZX5GqBPHxpmsyyef8P5817kEqUlA1bepYABMybVKRHqXYpTJKq3QWeXid/+Zu
DaEmgK2+KeeTzi0h/sCA2oOGDd2kLoRpO+ijkvb/qbf6zwFV91xtx3P7vShIiqhH
2bQ/HcpDsk+TDbilNJT3oCIBtIBUZqLhfRsbSjMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQt4gSJc6UiheMvYJD+MF39jY8PFDAfBgNVHSMEGDAWgBQeFOse72bC00nz
99e6+mjkn7/snDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0hoVHJIdTltd3ROSjhfZlh1dnBvNUotXzdKdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTMvMzMzYWIxLWFmOWItNDM0Yy04ZDEzLTljYTk4ZjQ5NTBjZi8x
L0xlSUVpWE9sSW9YakwyQ1FfakJkX1kyUER4US5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTMv
MzMzYWIxLWFmOWItNDM0Yy04ZDEzLTljYTk4ZjQ5NTBjZi8xL0hoVHJIdTltd3RO
SjhfZlh1dnBvNUotXzdKdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAF4tljANBgkqhkiG9w0BAQsFAAOC
AQEAykRVcTePvKI+2hOLtL+AvMOpcG7OMM9HaYLeyaaVIrUCKl0z+WFh0Js+VdSL
sDbtwmhrJJ1f8uVHCJpLD6FcH0fIVCWPyBSKU1uLrUsEIp6uglNiIZYhR4VCjoQW
1KBTHaQIIAGrIDv6h7C5eWSj83B5lMSEcoT3tLpuVvjCqbtYwHMDuRtRklkeEXjT
q0/uOrtEvsz+dp8Wd7+vADBXdegET2agWL2walI9xZAS0Iqdp+HyfOdM9wapCGdH
zxlWW/v2G3PpmQGxHxGjJkRbtMhdqkoKDeqU/cSVqlNhSerUh3Lkx0yJfj5Z42NT
p9Gz/vWo4GpiZBX5QEHRjcHWYw==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:41:46 2025 by rpki-client