Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/2ede8e-f7f5-4045-9341-940dfb961630/1/SOrVoSRLF6-iK4ozy1kZiFC8CL8.roa
File: SOrVoSRLF6-iK4ozy1kZiFC8CL8.roa (raw, json)
Hash identifier: PmExT96CXNy+fwWQ5NChpIbqqWphyZ/E1JdwPqEW0oU=
Subject key identifier: 48:EA:D5:A1:24:4B:17:AF:A2:2B:8A:33:CB:59:19:88:50:BC:08:BF
Certificate issuer: /CN=798b85b51e33df0c694dbd77bc8c2ba3eab4d519
Certificate serial: 018570FB9D8AAC8C0A59F90A30EAA6922166
Authority key identifier: 79:8B:85:B5:1E:33:DF:0C:69:4D:BD:77:BC:8C:2B:A3:EA:B4:D5:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eYuFtR4z3wxpTb13vIwro-q01Rk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/2ede8e-f7f5-4045-9341-940dfb961630/1/SOrVoSRLF6-iK4ozy1kZiFC8CL8.roa
Signing time: Mon 02 Jan 2023 05:36:56 +0000
ROA not before: Mon 02 Jan 2023 05:36:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209646
IP address blocks: 185.63.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:9d:8a:ac:8c:0a:59:f9:0a:30:ea:a6:92:21:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=798b85b51e33df0c694dbd77bc8c2ba3eab4d519
Validity
Not Before: Jan 2 05:36:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=48ead5a1244b17afa22b8a33cb59198850bc08bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:e0:a4:a0:19:ad:39:7b:e7:8a:2c:dc:27:2b:
4a:d8:7e:5f:83:17:6f:95:5f:60:36:6b:d9:f0:b7:
42:57:94:66:38:71:5c:8d:1a:a7:29:d2:86:51:34:
0b:7d:5b:76:3e:ec:78:99:bc:50:da:a1:b1:1e:ee:
2d:88:95:ba:35:dd:88:16:18:28:9a:3f:1a:fd:c7:
4f:83:bb:92:de:53:cf:59:d3:86:a1:f8:67:ea:1c:
67:d4:ae:3e:6c:d4:42:ac:3d:66:76:35:93:e2:18:
aa:79:17:5c:65:3c:21:eb:1b:53:78:fc:bc:80:fc:
a6:76:af:45:7a:83:1f:11:1b:77:a8:c3:15:09:99:
b8:98:e0:9a:ee:1f:cc:2e:96:e1:b9:75:3f:49:85:
22:ea:fa:2e:77:f4:6e:4a:22:a8:e8:c3:92:50:00:
a3:00:23:d1:f5:d2:fe:8e:64:cf:da:47:7b:d7:0d:
79:ae:3e:a4:ee:5a:e9:bb:5f:3c:86:ad:ec:cc:15:
45:32:95:6a:a2:4e:74:44:d4:2e:e3:e8:50:5b:19:
63:dd:da:19:70:e1:20:0c:07:e0:a9:2c:8b:b4:88:
ba:22:24:21:b0:b2:06:6a:b7:61:88:32:f9:e9:9f:
38:9e:ee:d1:cb:18:93:97:dd:49:0b:5d:ca:71:32:
e6:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:EA:D5:A1:24:4B:17:AF:A2:2B:8A:33:CB:59:19:88:50:BC:08:BF
X509v3 Authority Key Identifier:
keyid:79:8B:85:B5:1E:33:DF:0C:69:4D:BD:77:BC:8C:2B:A3:EA:B4:D5:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eYuFtR4z3wxpTb13vIwro-q01Rk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/2ede8e-f7f5-4045-9341-940dfb961630/1/SOrVoSRLF6-iK4ozy1kZiFC8CL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/2ede8e-f7f5-4045-9341-940dfb961630/1/eYuFtR4z3wxpTb13vIwro-q01Rk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.160.0/24
Signature Algorithm: sha256WithRSAEncryption
41:c0:a4:ac:c3:1a:b4:13:f3:ac:a1:b1:85:98:3d:4c:fd:06:
e4:5c:74:79:2a:0c:f0:f7:21:78:0b:57:67:25:35:fc:65:e1:
73:4c:0c:c1:2b:05:4a:ee:03:fa:e1:e2:97:67:9d:a8:0a:f8:
22:6f:26:48:96:f9:af:07:ee:b2:69:5e:a5:3e:fc:d7:b7:90:
7a:8a:f6:46:0c:b5:18:f7:ff:78:6f:43:6a:5b:55:aa:27:5c:
bc:e6:6b:0b:5f:d0:af:1f:a8:49:12:ed:d9:25:e2:f6:9e:cd:
9d:c6:42:84:2d:23:2c:e6:ad:8f:23:67:4e:6d:6b:0d:ac:e7:
a9:8b:99:4a:84:f7:dc:d3:d8:5e:f9:b0:34:08:85:fd:46:40:
11:7a:27:f9:df:c5:75:0b:a9:16:47:7c:9c:ea:79:15:88:3d:
b9:36:b4:da:85:96:fb:69:e2:0d:fe:1f:33:64:1a:7e:f4:a2:
9e:4b:6d:dd:fb:01:42:55:e8:b0:05:21:a1:01:04:5e:ab:9d:
c8:46:84:37:ba:54:e2:74:31:78:88:0d:1d:7c:1b:d9:1d:26:
08:1a:94:57:22:23:58:d7:e0:a3:8d:45:04:f6:3b:13:d5:a1:
75:f0:ad:e1:dc:8d:fe:41:22:e8:d2:52:9e:ab:17:7d:28:bc:
e7:a5:46:43
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVw+52KrIwKWfkKMOqmkiFmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc5OGI4NWI1MWUzM2RmMGM2OTRkYmQ3N2JjOGMyYmEzZWFi
NGQ1MTkwHhcNMjMwMTAyMDUzNjU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OGVhZDVhMTI0NGIxN2FmYTIyYjhhMzNjYjU5MTk4ODUwYmMwOGJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg+CkoBmtOXvniizcJytK2H5fgxdv
lV9gNmvZ8LdCV5RmOHFcjRqnKdKGUTQLfVt2Pux4mbxQ2qGxHu4tiJW6Nd2IFhgo
mj8a/cdPg7uS3lPPWdOGofhn6hxn1K4+bNRCrD1mdjWT4hiqeRdcZTwh6xtTePy8
gPymdq9FeoMfERt3qMMVCZm4mOCa7h/MLpbhuXU/SYUi6voud/RuSiKo6MOSUACj
ACPR9dL+jmTP2kd71w15rj6k7lrpu188hq3szBVFMpVqok50RNQu4+hQWxlj3doZ
cOEgDAfgqSyLtIi6IiQhsLIGardhiDL56Z84nu7RyxiTl91JC13KcTLm5wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEjq1aEkSxevoiuKM8tZGYhQvAi/MB8GA1UdIwQY
MBaAFHmLhbUeM98MaU29d7yMK6PqtNUZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZVl1RnRSNHozd3hwVGIxM3ZJd3JvLXEwMVJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC8yZWRlOGUtZjdmNS00MDQ1LTkzNDEt
OTQwZGZiOTYxNjMwLzEvU09yVm9TUkxGNi1pSzRvenkxa1ppRkM4Q0w4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC8yZWRlOGUtZjdmNS00MDQ1LTkzNDEtOTQwZGZiOTYxNjMw
LzEvZVl1RnRSNHozd3hwVGIxM3ZJd3JvLXEwMVJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuT+gMA0G
CSqGSIb3DQEBCwUAA4IBAQBBwKSswxq0E/OsobGFmD1M/QbkXHR5Kgzw9yF4C1dn
JTX8ZeFzTAzBKwVK7gP64eKXZ52oCvgibyZIlvmvB+6yaV6lPvzXt5B6ivZGDLUY
9/94b0NqW1WqJ1y85msLX9CvH6hJEu3ZJeL2ns2dxkKELSMs5q2PI2dObWsNrOep
i5lKhPfc09he+bA0CIX9RkAReif538V1C6kWR3yc6nkViD25NrTahZb7aeIN/h8z
ZBp+9KKeS23d+wFCVeiwBSGhAQReq53IRoQ3ulTidDF4iA0dfBvZHSYIGpRXIiNY
1+CjjUUE9jsT1aF18K3h3I3+QSLo0lKeqxd9KLznpUZD
-----END CERTIFICATE-----
Generated at Sun Apr 20 02:17:00 2025 by rpki-client