Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/d5e5cb-5b27-47f6-8acb-0350787225c8/1/dUtXepIQ8Nvtrwn1IAWiw-27C0k.roa
File: dUtXepIQ8Nvtrwn1IAWiw-27C0k.roa (raw, json)
Hash identifier: 1O41TbA6o8ajcBWYkUMNY4iP+laiXoSW0J03YY23MCY=
Subject key identifier: 75:4B:57:7A:92:10:F0:DB:ED:AF:09:F5:20:05:A2:C3:ED:BB:0B:49
Certificate issuer: /CN=bc903403c20a6cdb22366cc7acf48e9f99be34ff
Certificate serial: 5F42
Authority key identifier: BC:90:34:03:C2:0A:6C:DB:22:36:6C:C7:AC:F4:8E:9F:99:BE:34:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vJA0A8IKbNsiNmzHrPSOn5m-NP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/d5e5cb-5b27-47f6-8acb-0350787225c8/1/dUtXepIQ8Nvtrwn1IAWiw-27C0k.roa
Signing time: Sat 07 May 2022 03:38:52 +0000
ROA not before: Sat 07 May 2022 03:38:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39385
IP address blocks: 195.254.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24386 (0x5f42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc903403c20a6cdb22366cc7acf48e9f99be34ff
Validity
Not Before: May 7 03:38:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=754b577a9210f0dbedaf09f52005a2c3edbb0b49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a3:2c:26:59:c8:1f:02:40:ad:f2:73:d2:b4:
4b:96:f8:dc:3d:51:86:7d:3c:4d:16:00:02:cb:ec:
61:c9:ba:f0:4f:23:7d:05:da:dd:fa:57:be:79:93:
4c:34:2b:59:ae:56:fa:2e:8c:8e:6d:92:39:26:37:
4d:4e:72:70:02:29:c1:b1:0f:b3:1a:16:4d:62:0c:
3b:f8:c3:47:b9:43:09:38:7f:bf:5f:26:f3:7e:f2:
34:32:cf:2c:e7:61:b1:37:8d:5c:0c:8e:98:63:c1:
1b:72:c4:3e:eb:48:d9:ae:52:5e:66:4a:35:36:75:
22:5c:0c:ac:25:56:6e:22:12:53:98:98:e8:5c:23:
27:e9:ca:ed:1b:df:6f:c5:d5:f6:40:97:8a:94:da:
0c:81:51:30:5f:1f:28:74:fe:69:48:f7:e6:7c:2b:
1f:0b:0b:00:39:87:87:6f:d2:7d:8f:ec:de:98:18:
00:b9:97:ea:e3:bd:6c:6d:6d:5c:d2:0d:38:9e:e7:
d1:4a:24:fc:ac:ec:1a:3e:31:b5:53:4f:32:51:94:
9c:b8:01:66:aa:04:4a:5e:14:cb:79:b2:55:ff:d6:
7d:9d:bc:f4:70:64:6e:bd:c7:b9:df:85:58:42:30:
88:f0:1d:07:37:da:c5:dd:6c:67:bd:5a:3e:a6:9a:
f4:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:4B:57:7A:92:10:F0:DB:ED:AF:09:F5:20:05:A2:C3:ED:BB:0B:49
X509v3 Authority Key Identifier:
keyid:BC:90:34:03:C2:0A:6C:DB:22:36:6C:C7:AC:F4:8E:9F:99:BE:34:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vJA0A8IKbNsiNmzHrPSOn5m-NP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d5e5cb-5b27-47f6-8acb-0350787225c8/1/dUtXepIQ8Nvtrwn1IAWiw-27C0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d5e5cb-5b27-47f6-8acb-0350787225c8/1/vJA0A8IKbNsiNmzHrPSOn5m-NP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.254.133.0/24
Signature Algorithm: sha256WithRSAEncryption
94:7b:15:73:93:27:01:51:7b:e7:fe:7e:0d:26:9c:5f:96:e9:
e7:9f:5f:2e:67:6d:93:d1:7e:50:f6:13:b9:50:8e:df:ad:67:
06:74:38:47:74:78:71:90:72:6e:b4:b0:bc:dd:3e:08:79:5d:
c6:7d:e7:37:e9:45:d3:c6:bb:4e:8b:de:e4:bc:07:20:43:31:
2e:3a:18:42:a7:6a:63:4c:05:aa:91:23:64:59:a1:c6:cf:a7:
a2:33:95:2d:f8:25:67:51:a5:82:df:85:b8:51:36:01:11:ac:
7f:d0:2a:b6:ee:80:a7:e6:de:cf:fb:c6:73:6e:e6:7b:62:8e:
57:12:20:03:a6:a9:b0:2e:b3:fd:96:00:95:cf:b4:b8:3f:0c:
c8:ae:82:40:01:ba:f2:b6:25:93:ec:fa:30:32:63:df:da:b6:
b3:0d:19:a9:ad:dd:87:1d:d8:c8:52:34:a5:82:b7:72:44:10:
a9:dd:91:0e:89:52:39:2d:7f:8c:a9:d0:ab:27:a5:c0:81:1a:
bb:6e:f8:a1:8a:02:d8:bf:ce:8a:e3:de:45:23:ff:59:6b:61:
05:d2:fa:4f:6d:10:d6:53:c9:86:02:f5:b9:2f:d8:79:14:c4:
06:3c:69:6b:10:66:13:5d:09:87:a8:e6:90:f2:be:3b:56:d8:
62:bb:46:77
-----BEGIN CERTIFICATE-----
MIIE7TCCA9WgAwIBAgICX0IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoYmM5
MDM0MDNjMjBhNmNkYjIyMzY2Y2M3YWNmNDhlOWY5OWJlMzRmZjAeFw0yMjA1MDcw
MzM4NTJaFw0yMzA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDc1NGI1NzdhOTIxMGYw
ZGJlZGFmMDlmNTIwMDVhMmMzZWRiYjBiNDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC8oywmWcgfAkCt8nPStEuW+Nw9UYZ9PE0WAALL7GHJuvBPI30F
2t36V755k0w0K1muVvoujI5tkjkmN01OcnACKcGxD7MaFk1iDDv4w0e5Qwk4f79f
JvN+8jQyzyznYbE3jVwMjphjwRtyxD7rSNmuUl5mSjU2dSJcDKwlVm4iElOYmOhc
Iyfpyu0b32/F1fZAl4qU2gyBUTBfHyh0/mlI9+Z8Kx8LCwA5h4dv0n2P7N6YGAC5
l+rjvWxtbVzSDTie59FKJPys7Bo+MbVTTzJRlJy4AWaqBEpeFMt5slX/1n2dvPRw
ZG69x7nfhVhCMIjwHQc32sXdbGe9Wj6mmvRvAgMBAAGjggIJMIICBTAdBgNVHQ4E
FgQUdUtXepIQ8Nvtrwn1IAWiw+27C0kwHwYDVR0jBBgwFoAUvJA0A8IKbNsiNmzH
rPSOn5m+NP8wDgYDVR0PAQH/BAQDAgeAMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEF
BQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC92
SkEwQThJS2JOc2lObXpIclBTT241bS1OUDguY2VyMIGNBggrBgEFBQcBCwSBgDB+
MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9E
RUZBVUxULzFmL2Q1ZTVjYi01YjI3LTQ3ZjYtOGFjYi0wMzUwNzg3MjI1YzgvMS9k
VXRYZXBJUThOdnRyd24xSUFXaXctMjdDMGsucm9hMIGBBgNVHR8EejB4MHagdKBy
hnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzFmL2Q1
ZTVjYi01YjI3LTQ3ZjYtOGFjYi0wMzUwNzg3MjI1YzgvMS92SkEwQThJS2JOc2lO
bXpIclBTT241bS1OUDguY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADD/oUwDQYJKoZIhvcNAQELBQADggEB
AJR7FXOTJwFRe+f+fg0mnF+W6eefXy5nbZPRflD2E7lQjt+tZwZ0OEd0eHGQcm60
sLzdPgh5XcZ95zfpRdPGu06L3uS8ByBDMS46GEKnamNMBaqRI2RZocbPp6IzlS34
JWdRpYLfhbhRNgERrH/QKrbugKfm3s/7xnNu5ntijlcSIAOmqbAus/2WAJXPtLg/
DMiugkABuvK2JZPs+jAyY9/atrMNGamt3Ycd2MhSNKWCt3JEEKndkQ6JUjktf4yp
0KsnpcCBGrtu+KGKAti/zorj3kUj/1lrYQXS+k9tENZTyYYC9bkv2HkUxAY8aWsQ
ZhNdCYeo5pDyvjtW2GK7Rnc=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:59:12 2025 by rpki-client