Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/6b60ed-0c46-4873-91fe-f5948c716e16/1/ot0wJyKAcet9Hu7BI1mIRlzs3rQ.roa
File: ot0wJyKAcet9Hu7BI1mIRlzs3rQ.roa (raw, json)
Hash identifier: 6w/hglZX0Rjyqfjb+9bSaNxFDRIDPYoOu5Q6TKonS+4=
Subject key identifier: A2:DD:30:27:22:80:71:EB:7D:1E:EE:C1:23:59:88:46:5C:EC:DE:B4
Certificate issuer: /CN=1adc0093c5af894cf520b5936e30b215090de9f8
Certificate serial: 409C7C
Authority key identifier: 1A:DC:00:93:C5:AF:89:4C:F5:20:B5:93:6E:30:B2:15:09:0D:E9:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GtwAk8WviUz1ILWTbjCyFQkN6fg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/6b60ed-0c46-4873-91fe-f5948c716e16/1/ot0wJyKAcet9Hu7BI1mIRlzs3rQ.roa
Signing time: Thu 10 Mar 2022 14:54:43 +0000
ROA not before: Thu 10 Mar 2022 14:54:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3301
IP address blocks: 193.188.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4234364 (0x409c7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1adc0093c5af894cf520b5936e30b215090de9f8
Validity
Not Before: Mar 10 14:54:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a2dd3027228071eb7d1eeec1235988465cecdeb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:50:07:10:09:8a:a7:8b:81:db:4a:13:53:ac:
08:61:11:c8:f0:2c:df:a5:2b:fd:fe:c6:05:09:7f:
21:fa:06:e0:3e:2c:40:8e:55:3e:42:42:37:6b:84:
a2:82:1c:7b:63:22:b2:bf:9b:b8:91:56:c6:eb:70:
89:6b:50:81:06:89:cf:a2:58:72:67:da:1b:33:98:
2b:bb:4f:4e:d4:73:13:d6:c3:c4:41:86:3f:2d:1d:
11:c2:99:20:79:88:00:3c:a4:aa:8e:f1:0f:9f:d5:
c4:7d:81:5f:e0:0d:28:e2:60:a3:82:4d:de:37:d6:
b8:73:2e:70:72:39:f8:d2:6a:34:d5:9f:ca:2b:4e:
70:ad:20:94:1e:3a:c4:6f:d7:bb:03:f3:1f:8d:d9:
24:79:ce:13:d1:f9:4b:8f:5b:09:0b:be:3d:95:dc:
8f:8b:58:05:d3:1e:ca:93:84:16:61:43:29:f2:32:
ff:da:b5:f8:7c:96:4b:06:59:c6:04:59:39:2f:7d:
4c:fb:35:1e:7f:e4:5b:2a:b7:f5:5c:b7:d8:c6:78:
8f:77:be:c4:e7:21:0a:de:9e:ed:08:d9:20:ce:64:
63:cd:d0:e6:e6:42:5d:fb:bf:c3:8c:55:b8:d0:18:
b7:56:d9:9a:c2:18:6b:3a:f0:48:b3:29:9f:f3:f8:
8f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:DD:30:27:22:80:71:EB:7D:1E:EE:C1:23:59:88:46:5C:EC:DE:B4
X509v3 Authority Key Identifier:
keyid:1A:DC:00:93:C5:AF:89:4C:F5:20:B5:93:6E:30:B2:15:09:0D:E9:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GtwAk8WviUz1ILWTbjCyFQkN6fg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/6b60ed-0c46-4873-91fe-f5948c716e16/1/ot0wJyKAcet9Hu7BI1mIRlzs3rQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/6b60ed-0c46-4873-91fe-f5948c716e16/1/GtwAk8WviUz1ILWTbjCyFQkN6fg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.188.248.0/24
Signature Algorithm: sha256WithRSAEncryption
70:40:15:43:49:15:d6:9e:08:6c:34:4b:f5:38:dc:89:07:71:
85:3f:71:bf:b9:ce:c7:fe:98:2d:7d:71:f5:50:f4:a3:dd:4e:
1c:1a:9c:8c:59:c7:fb:67:a0:56:8a:3c:20:5f:96:09:5c:20:
b1:ae:bc:b9:4f:94:68:bb:dd:30:1b:1f:a3:fc:5f:3e:f5:91:
2d:c1:90:25:93:95:7a:cb:e6:13:11:25:92:aa:ba:33:f9:e3:
5c:4d:c2:c8:4f:b7:ff:d5:b0:c0:5e:e5:c8:37:e2:14:83:47:
96:be:7e:3a:94:f4:40:54:fa:d3:c7:95:cc:17:7f:88:1f:0f:
90:0f:08:da:4b:68:54:4c:6c:92:ab:72:79:8c:dd:74:e2:bc:
37:12:d6:5e:9a:6e:2f:56:e5:27:71:5d:70:dc:33:b6:4a:ee:
56:5f:0f:04:49:d0:ab:37:d1:03:e5:0d:70:ee:fc:73:57:79:
33:f4:aa:48:8c:86:bb:b2:ec:55:d7:ac:87:0b:a5:a3:df:21:
a3:ee:8a:6f:55:26:53:0f:a6:a7:4d:97:5c:c1:4b:53:30:da:
0d:a0:f5:c5:00:92:3e:a5:78:3c:1f:7d:ea:b0:20:a1:80:5e:
56:80:3b:c6:d7:95:74:38:53:9f:f9:09:50:cd:3f:9b:e7:3d:
c3:6b:b5:3b
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDQJx8MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDFh
ZGMwMDkzYzVhZjg5NGNmNTIwYjU5MzZlMzBiMjE1MDkwZGU5ZjgwHhcNMjIwMzEw
MTQ1NDQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhhMmRkMzAyNzIyODA3
MWViN2QxZWVlYzEyMzU5ODg0NjVjZWNkZWI0MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAqlAHEAmKp4uB20oTU6wIYRHI8CzfpSv9/sYFCX8h+gbgPixA
jlU+QkI3a4Sighx7YyKyv5u4kVbG63CJa1CBBonPolhyZ9obM5gru09O1HMT1sPE
QYY/LR0RwpkgeYgAPKSqjvEPn9XEfYFf4A0o4mCjgk3eN9a4cy5wcjn40mo01Z/K
K05wrSCUHjrEb9e7A/Mfjdkkec4T0flLj1sJC749ldyPi1gF0x7Kk4QWYUMp8jL/
2rX4fJZLBlnGBFk5L31M+zUef+RbKrf1XLfYxniPd77E5yEK3p7tCNkgzmRjzdDm
5kJd+7/DjFW40Bi3VtmawhhrOvBIsymf8/iPUQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFKLdMCcigHHrfR7uwSNZiEZc7N60MB8GA1UdIwQYMBaAFBrcAJPFr4lM9SC1
k24wshUJDen4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
R3R3QWs4V3ZpVXoxSUxXVGJqQ3lGUWtONmZnLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8xOC82YjYwZWQtMGM0Ni00ODczLTkxZmUtZjU5NDhjNzE2ZTE2LzEv
b3Qwd0p5S0FjZXQ5SHU3QkkxbUlSbHpzM3JRLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC82
YjYwZWQtMGM0Ni00ODczLTkxZmUtZjU5NDhjNzE2ZTE2LzEvR3R3QWs4V3ZpVXox
SUxXVGJqQ3lGUWtONmZnLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwbz4MA0GCSqGSIb3DQEBCwUAA4IB
AQBwQBVDSRXWnghsNEv1ONyJB3GFP3G/uc7H/pgtfXH1UPSj3U4cGpyMWcf7Z6BW
ijwgX5YJXCCxrry5T5Rou90wGx+j/F8+9ZEtwZAlk5V6y+YTESWSqroz+eNcTcLI
T7f/1bDAXuXIN+IUg0eWvn46lPRAVPrTx5XMF3+IHw+QDwjaS2hUTGySq3J5jN10
4rw3EtZemm4vVuUncV1w3DO2Su5WXw8ESdCrN9ED5Q1w7vxzV3kz9KpIjIa7suxV
16yHC6Wj3yGj7opvVSZTD6anTZdcwUtTMNoNoPXFAJI+pXg8H33qsCChgF5WgDvG
15V0OFOf+QlQzT+b5z3Da7U7
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:11 2025 by rpki-client