Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/efba93-2973-4213-b6f1-449124ace026/1/EQiVn5s4_gAf1FYYmImPVelGv3Q.roa
File: EQiVn5s4_gAf1FYYmImPVelGv3Q.roa (raw, json)
Hash identifier: AtgoG36P9zFuG1wYZvxiuaj2v4uJVpUs6RZljsq3dHg=
Subject key identifier: 11:08:95:9F:9B:38:FE:00:1F:D4:56:18:98:89:8F:55:E9:46:BF:74
Certificate issuer: /CN=2becef943d34c80e0a0fd81426e6136b31508fee
Certificate serial: 01876FEC963D3215A12A71146552753C4A5E
Authority key identifier: 2B:EC:EF:94:3D:34:C8:0E:0A:0F:D8:14:26:E6:13:6B:31:50:8F:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K-zvlD00yA4KD9gUJuYTazFQj-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/efba93-2973-4213-b6f1-449124ace026/1/EQiVn5s4_gAf1FYYmImPVelGv3Q.roa
Signing time: Tue 11 Apr 2023 10:46:28 +0000
ROA not before: Tue 11 Apr 2023 10:46:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15704
IP address blocks: 185.195.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:6f:ec:96:3d:32:15:a1:2a:71:14:65:52:75:3c:4a:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2becef943d34c80e0a0fd81426e6136b31508fee
Validity
Not Before: Apr 11 10:46:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1108959f9b38fe001fd4561898898f55e946bf74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c8:c8:bd:61:16:3a:18:b3:b6:38:a1:72:55:
33:28:c1:3f:ec:36:f1:9a:42:02:d2:e3:20:0c:88:
87:e4:b9:ce:1e:df:e7:32:d1:58:12:f5:a3:66:42:
7d:8a:f0:f5:31:aa:c4:84:98:26:c6:f9:89:8d:ff:
01:5d:f9:bb:02:03:13:67:90:1b:c5:ab:d6:77:08:
52:62:82:d2:76:2e:84:0b:61:12:7f:40:36:2e:5b:
dc:0f:04:4f:e0:47:e7:36:5c:8b:65:db:22:80:0e:
4f:ef:e5:fa:81:d7:da:d8:2a:36:1e:ee:d9:e2:1d:
66:e0:a1:5d:e7:88:4f:03:f5:fa:36:53:90:7e:03:
a5:06:fe:55:aa:f5:a5:61:e3:14:99:a2:c8:6d:59:
4a:06:80:eb:eb:75:2e:a5:98:b0:a1:18:ab:ac:b2:
ba:38:77:94:ad:26:86:f3:1b:6d:12:64:1d:ad:59:
ad:6e:30:e7:c1:34:74:17:3a:84:83:ee:c0:e5:8b:
56:c0:d8:6c:ca:10:5c:61:d4:11:1c:31:43:a7:a2:
b1:bc:5d:29:78:5c:99:70:79:cc:ed:dd:74:61:15:
f6:48:7c:05:0a:90:aa:62:0d:9e:23:ff:1d:5a:f9:
b0:2a:76:24:da:0b:0f:cb:44:90:c0:2b:80:97:9e:
82:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:08:95:9F:9B:38:FE:00:1F:D4:56:18:98:89:8F:55:E9:46:BF:74
X509v3 Authority Key Identifier:
keyid:2B:EC:EF:94:3D:34:C8:0E:0A:0F:D8:14:26:E6:13:6B:31:50:8F:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K-zvlD00yA4KD9gUJuYTazFQj-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/efba93-2973-4213-b6f1-449124ace026/1/EQiVn5s4_gAf1FYYmImPVelGv3Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/efba93-2973-4213-b6f1-449124ace026/1/K-zvlD00yA4KD9gUJuYTazFQj-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.195.176.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:ce:44:63:3a:ef:51:79:fe:82:61:04:a6:06:4b:1b:88:7d:
5c:76:6e:dc:f5:45:7f:65:29:3c:92:62:93:6a:3d:46:0c:43:
0b:4e:b5:be:ac:c1:a4:f9:df:ec:4a:b6:17:2f:16:55:df:74:
02:a7:cd:a3:a9:99:ca:0a:bc:6c:0a:0e:93:33:57:68:6e:1d:
1b:82:cf:5d:fd:88:61:3a:f8:ee:d1:96:d4:f1:bd:09:5f:a3:
d1:9b:a6:26:c9:4c:31:ea:a8:5a:05:d6:5d:90:fc:e2:51:26:
44:99:89:ea:ff:ef:b3:8c:32:a5:72:ba:7d:63:02:bc:84:c7:
91:e1:0a:eb:90:14:16:5e:96:a7:31:91:9b:6a:c2:43:50:6c:
d0:1a:32:1b:3b:6f:9a:78:e2:d8:4c:3b:33:a3:2c:af:7f:1e:
0b:94:50:c1:30:ec:e7:cf:ac:45:53:f0:10:cd:e6:8b:2e:49:
4b:62:10:de:b2:cf:82:6c:50:0a:a4:ee:b8:c1:1c:66:03:7b:
2f:d9:20:98:ee:f3:2f:c5:79:b1:43:f3:32:4c:a0:f3:74:b4:
45:42:98:0a:8b:9b:f5:9e:ef:db:81:6d:97:7f:a0:bd:95:1a:
d7:56:a2:3f:87:1e:8f:54:5c:da:61:8b:7e:7c:7f:e9:a5:82:
e0:d4:1d:c5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYdv7JY9MhWhKnEUZVJ1PEpeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiZWNlZjk0M2QzNGM4MGUwYTBmZDgxNDI2ZTYxMzZiMzE1
MDhmZWUwHhcNMjMwNDExMTA0NjI4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMTA4OTU5ZjliMzhmZTAwMWZkNDU2MTg5ODg5OGY1NWU5NDZiZjc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp8jIvWEWOhiztjihclUzKME/7Dbx
mkIC0uMgDIiH5LnOHt/nMtFYEvWjZkJ9ivD1MarEhJgmxvmJjf8BXfm7AgMTZ5Ab
xavWdwhSYoLSdi6EC2ESf0A2LlvcDwRP4EfnNlyLZdsigA5P7+X6gdfa2Co2Hu7Z
4h1m4KFd54hPA/X6NlOQfgOlBv5VqvWlYeMUmaLIbVlKBoDr63UupZiwoRirrLK6
OHeUrSaG8xttEmQdrVmtbjDnwTR0FzqEg+7A5YtWwNhsyhBcYdQRHDFDp6KxvF0p
eFyZcHnM7d10YRX2SHwFCpCqYg2eI/8dWvmwKnYk2gsPy0SQwCuAl56C3wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBEIlZ+bOP4AH9RWGJiJj1XpRr90MB8GA1UdIwQY
MBaAFCvs75Q9NMgOCg/YFCbmE2sxUI/uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSy16dmxEMDB5QTRLRDlnVUp1WVRhekZRai00LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9lZmJhOTMtMjk3My00MjEzLWI2ZjEt
NDQ5MTI0YWNlMDI2LzEvRVFpVm41czRfZ0FmMUZZWW1JbVBWZWxHdjNRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy9lZmJhOTMtMjk3My00MjEzLWI2ZjEtNDQ5MTI0YWNlMDI2
LzEvSy16dmxEMDB5QTRLRDlnVUp1WVRhekZRai00LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAucOwMA0G
CSqGSIb3DQEBCwUAA4IBAQC1zkRjOu9Ref6CYQSmBksbiH1cdm7c9UV/ZSk8kmKT
aj1GDEMLTrW+rMGk+d/sSrYXLxZV33QCp82jqZnKCrxsCg6TM1dobh0bgs9d/Yhh
Ovju0ZbU8b0JX6PRm6YmyUwx6qhaBdZdkPziUSZEmYnq/++zjDKlcrp9YwK8hMeR
4QrrkBQWXpanMZGbasJDUGzQGjIbO2+aeOLYTDszoyyvfx4LlFDBMOznz6xFU/AQ
zeaLLklLYhDess+CbFAKpO64wRxmA3sv2SCY7vMvxXmxQ/MyTKDzdLRFQpgKi5v1
nu/bgW2Xf6C9lRrXVqI/hx6PVFzaYYt+fH/ppYLg1B3F
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:24:46 2025 by rpki-client