Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/eb301d-ab50-4c3e-8c78-9df37109c81d/1/c98eLdN3430CvFE2Dy1dPfG7GzY.roa
File: c98eLdN3430CvFE2Dy1dPfG7GzY.roa (raw, json)
Hash identifier: h/o9WkJSdVA1SB1NP1SylJFP+lNQvk7BTwXUUWfccOw=
Subject key identifier: 73:DF:1E:2D:D3:77:E3:7D:02:BC:51:36:0F:2D:5D:3D:F1:BB:1B:36
Certificate issuer: /CN=9be76ef4aa498c21524dd7edad16de1d3db002e3
Certificate serial: 166F8C2E
Authority key identifier: 9B:E7:6E:F4:AA:49:8C:21:52:4D:D7:ED:AD:16:DE:1D:3D:B0:02:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m-du9KpJjCFSTdftrRbeHT2wAuM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/eb301d-ab50-4c3e-8c78-9df37109c81d/1/c98eLdN3430CvFE2Dy1dPfG7GzY.roa
Signing time: Sat 01 Jan 2022 03:51:05 +0000
ROA not before: Sat 01 Jan 2022 03:51:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12817
IP address blocks: 194.145.150.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 376409134 (0x166f8c2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9be76ef4aa498c21524dd7edad16de1d3db002e3
Validity
Not Before: Jan 1 03:51:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=73df1e2dd377e37d02bc51360f2d5d3df1bb1b36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:5e:f0:f9:ed:7c:c7:7b:b9:32:99:8e:3d:17:
fe:28:8f:1b:6c:2f:3f:4f:36:92:1f:9f:49:f8:0f:
25:c8:51:72:eb:83:f6:65:0e:d2:19:14:e1:c1:19:
27:12:a7:14:62:cf:8b:21:48:96:aa:8c:d6:df:4b:
bc:a9:c3:f6:98:ba:79:18:6b:7a:bb:7d:f4:db:ac:
82:18:10:03:cd:2c:df:b4:05:8c:47:fa:30:03:28:
2d:23:5f:40:d9:fb:93:7a:ed:c0:bd:14:bf:87:96:
a2:bf:3e:cb:a7:cb:d0:dc:67:7f:79:bc:4f:4d:4a:
c1:08:c0:c8:5c:13:f6:91:ba:aa:2a:39:9a:46:43:
ec:7d:65:59:be:5d:97:92:21:55:46:8b:0e:c8:22:
8d:6b:62:43:0f:30:a1:0d:ed:56:7e:7f:bc:9a:96:
c3:8f:59:27:25:66:b2:ac:1b:d2:aa:b4:8b:70:83:
be:6e:9d:59:7c:de:30:f3:3d:cf:ce:1b:bd:05:88:
8b:0c:15:13:45:97:f0:bd:26:77:26:80:85:c5:8f:
49:a1:71:88:5c:c1:f2:33:15:88:dd:d5:51:dc:ec:
ec:55:e4:11:11:c5:d1:a1:d2:ea:03:6e:b9:c3:0e:
1e:9c:52:a2:7b:b1:a7:b0:14:b6:2c:7e:a0:c9:59:
7f:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:DF:1E:2D:D3:77:E3:7D:02:BC:51:36:0F:2D:5D:3D:F1:BB:1B:36
X509v3 Authority Key Identifier:
keyid:9B:E7:6E:F4:AA:49:8C:21:52:4D:D7:ED:AD:16:DE:1D:3D:B0:02:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m-du9KpJjCFSTdftrRbeHT2wAuM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/eb301d-ab50-4c3e-8c78-9df37109c81d/1/c98eLdN3430CvFE2Dy1dPfG7GzY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/eb301d-ab50-4c3e-8c78-9df37109c81d/1/m-du9KpJjCFSTdftrRbeHT2wAuM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.145.150.0/23
Signature Algorithm: sha256WithRSAEncryption
92:94:4b:9f:4f:1e:f0:a8:4a:e1:23:0b:44:9d:cd:38:3e:24:
b4:53:a7:13:94:8b:70:71:8d:8a:ed:68:27:01:47:65:60:99:
70:71:dd:0e:b2:34:87:09:a7:88:d1:45:80:51:ae:5e:ae:7b:
cf:ba:e3:90:7f:d4:f7:68:87:af:28:86:fa:15:87:bc:06:72:
41:41:d6:0f:1b:f8:23:f7:c1:e3:2c:6c:29:fc:3a:93:86:b3:
38:17:81:c2:e7:b6:aa:a9:71:de:d6:5c:a2:3d:c2:54:c3:a4:
07:e9:5b:35:50:fa:c6:a1:82:76:1d:ed:32:f4:bb:96:0f:98:
71:cf:07:74:0c:f8:9b:94:ce:d6:3c:4c:74:41:d3:f0:83:4b:
4d:2b:ed:89:bb:fb:ce:73:49:27:2f:9a:bc:f2:a3:52:0b:31:
26:df:a1:69:49:a7:11:c0:0e:e9:b1:33:95:ec:26:26:c2:a0:
91:40:4d:20:df:4f:56:c7:cc:05:d2:4e:7f:d7:d2:2b:a5:0b:
ec:36:fe:c8:4a:5f:54:60:0a:eb:22:e5:be:18:c4:cd:55:a5:
cf:19:9e:ee:f2:c5:fc:52:b1:38:3d:72:8c:c6:b7:df:ce:ca:
71:76:39:56:46:b7:67:ea:a9:1d:0a:c5:c9:be:6c:d5:b5:4e:
b5:8e:93:c1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFm+MLjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
YmU3NmVmNGFhNDk4YzIxNTI0ZGQ3ZWRhZDE2ZGUxZDNkYjAwMmUzMB4XDTIyMDEw
MTAzNTEwNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzNkZjFlMmRkMzc3
ZTM3ZDAyYmM1MTM2MGYyZDVkM2RmMWJiMWIzNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJVe8PntfMd7uTKZjj0X/iiPG2wvP082kh+fSfgPJchRcuuD
9mUO0hkU4cEZJxKnFGLPiyFIlqqM1t9LvKnD9pi6eRhrert99NusghgQA80s37QF
jEf6MAMoLSNfQNn7k3rtwL0Uv4eWor8+y6fL0Nxnf3m8T01KwQjAyFwT9pG6qio5
mkZD7H1lWb5dl5IhVUaLDsgijWtiQw8woQ3tVn5/vJqWw49ZJyVmsqwb0qq0i3CD
vm6dWXzeMPM9z84bvQWIiwwVE0WX8L0mdyaAhcWPSaFxiFzB8jMViN3VUdzs7FXk
ERHF0aHS6gNuucMOHpxSonuxp7AUtix+oMlZf8ECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRz3x4t03fjfQK8UTYPLV098bsbNjAfBgNVHSMEGDAWgBSb5270qkmMIVJN
1+2tFt4dPbAC4zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L20tZHU5S3BKakNGU1RkZnRyUmJlSFQyd0F1TS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTgvZWIzMDFkLWFiNTAtNGMzZS04Yzc4LTlkZjM3MTA5YzgxZC8x
L2M5OGVMZE4zNDMwQ3ZGRTJEeTFkUGZHN0d6WS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTgv
ZWIzMDFkLWFiNTAtNGMzZS04Yzc4LTlkZjM3MTA5YzgxZC8xL20tZHU5S3BKakNG
U1RkZnRyUmJlSFQyd0F1TS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcKRljANBgkqhkiG9w0BAQsFAAOC
AQEAkpRLn08e8KhK4SMLRJ3NOD4ktFOnE5SLcHGNiu1oJwFHZWCZcHHdDrI0hwmn
iNFFgFGuXq57z7rjkH/U92iHryiG+hWHvAZyQUHWDxv4I/fB4yxsKfw6k4azOBeB
wue2qqlx3tZcoj3CVMOkB+lbNVD6xqGCdh3tMvS7lg+Ycc8HdAz4m5TO1jxMdEHT
8INLTSvtibv7znNJJy+avPKjUgsxJt+haUmnEcAO6bEzlewmJsKgkUBNIN9PVsfM
BdJOf9fSK6UL7Db+yEpfVGAK6yLlvhjEzVWlzxme7vLF/FKxOD1yjMa3387KcXY5
Vka3Z+qpHQrFyb5s1bVOtY6TwQ==
-----END CERTIFICATE-----
Generated at Sun Apr 13 02:39:03 2025 by rpki-client