Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/6OpqFbZEpUU7PyzqH0hWyLctegY.roa
File: 6OpqFbZEpUU7PyzqH0hWyLctegY.roa (raw, json)
Hash identifier: c0A3zk8bGdCASh2DLrMLof61/4U1qtsAd+yDqP7QW74=
Subject key identifier: E8:EA:6A:15:B6:44:A5:45:3B:3F:2C:EA:1F:48:56:C8:B7:2D:7A:06
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 0184C41E79C5E316CC4F4478A207CD438335
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/6OpqFbZEpUU7PyzqH0hWyLctegY.roa
Signing time: Tue 29 Nov 2022 16:00:42 +0000
ROA not before: Tue 29 Nov 2022 16:00:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201295
IP address blocks: 94.74.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c4:1e:79:c5:e3:16:cc:4f:44:78:a2:07:cd:43:83:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Nov 29 16:00:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e8ea6a15b644a5453b3f2cea1f4856c8b72d7a06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:11:43:6a:74:fe:67:a2:e7:a1:79:65:e3:e1:
f4:35:e2:43:76:9f:c9:b7:30:af:34:3a:10:74:3f:
1d:f0:3a:d1:3d:10:be:f4:1b:77:ca:45:bc:a8:e2:
84:87:06:83:33:d3:30:3c:27:60:0c:96:32:79:24:
ec:12:f6:d5:87:f6:0e:91:c5:2a:dc:b1:86:12:a3:
68:33:b8:2c:1b:30:3f:9b:f8:a8:1c:99:2b:97:15:
3c:6b:5a:4b:d9:ae:fc:85:f0:c6:3c:66:96:d0:f6:
aa:db:42:2c:0e:09:00:75:c7:2c:43:76:1f:d4:c5:
89:5d:82:a5:e8:aa:2a:f7:76:79:3f:15:aa:b3:da:
14:e4:6a:d6:cd:cb:07:ae:8f:e8:d1:b5:2c:13:9f:
54:9b:b1:20:b0:b8:31:36:17:ca:70:8c:24:95:d3:
f5:fc:ca:40:cc:45:94:43:ff:d8:8d:5d:a0:7b:a9:
97:9e:32:82:bb:02:e5:e0:c7:fa:4c:a3:7f:28:67:
61:2f:5a:67:f4:38:38:aa:24:40:4f:21:75:99:33:
6f:7f:f3:64:8e:9f:05:6c:68:13:2e:b4:e1:a3:10:
60:24:39:c0:3c:7d:d7:28:8c:96:61:17:3a:80:fa:
31:33:b1:31:f3:66:8e:51:1d:b3:3d:24:a8:1d:06:
d5:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:EA:6A:15:B6:44:A5:45:3B:3F:2C:EA:1F:48:56:C8:B7:2D:7A:06
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/6OpqFbZEpUU7PyzqH0hWyLctegY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.74.182.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:f7:bd:b2:eb:87:ca:21:e8:f8:71:13:4b:b8:d4:4f:cb:75:
7c:0f:ef:fd:77:3c:0c:5b:41:c9:71:de:ab:d4:10:41:ab:d5:
07:50:a3:95:d1:8d:5a:b9:50:6f:99:cd:1b:b0:18:06:9f:1b:
41:f5:38:9f:35:8d:3e:36:3a:b2:82:e6:42:49:77:cd:f6:b2:
1a:c5:b4:32:3d:5f:c3:98:c9:de:e2:8e:05:86:a2:85:c7:2f:
4b:ec:de:67:a7:20:fa:40:98:51:d8:70:5d:f9:8e:ff:cd:6b:
bc:03:d6:b8:91:3b:b7:95:7c:be:74:22:00:72:2d:0a:bc:22:
da:d7:66:cf:bf:c0:ba:f9:3a:ae:47:e6:d9:ca:32:aa:33:4b:
d1:a9:14:0a:44:12:ff:a7:9c:4a:c5:45:a6:10:88:57:90:a1:
d1:7b:34:2a:23:90:97:f9:27:6c:09:d1:28:e0:bb:97:35:9c:
55:d2:74:ee:4d:08:0f:d7:69:d6:5b:52:64:d1:f9:cc:f5:ac:
ac:1f:10:13:1a:4a:c5:5e:1e:27:35:46:b1:e0:95:12:d0:c3:
25:73:71:a7:5f:bf:22:cb:e1:e8:51:9a:18:ac:1a:3b:3e:c0:
e5:cf:58:28:63:62:08:aa:d1:fd:ec:4d:ef:55:be:f3:2b:de:
e5:01:c1:98
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYTEHnnF4xbMT0R4ogfNQ4M1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ2MDQ3NWViZTdmMDdkNzQxNTNjYjFjY2EzMzhjMTZkODAx
ZjQ1ZjcwHhcNMjIxMTI5MTYwMDQyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOGVhNmExNWI2NDRhNTQ1M2IzZjJjZWExZjQ4NTZjOGI3MmQ3YTA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1BFDanT+Z6LnoXll4+H0NeJDdp/J
tzCvNDoQdD8d8DrRPRC+9Bt3ykW8qOKEhwaDM9MwPCdgDJYyeSTsEvbVh/YOkcUq
3LGGEqNoM7gsGzA/m/ioHJkrlxU8a1pL2a78hfDGPGaW0Paq20IsDgkAdccsQ3Yf
1MWJXYKl6Koq93Z5PxWqs9oU5GrWzcsHro/o0bUsE59Um7EgsLgxNhfKcIwkldP1
/MpAzEWUQ//YjV2ge6mXnjKCuwLl4Mf6TKN/KGdhL1pn9Dg4qiRATyF1mTNvf/Nk
jp8FbGgTLrThoxBgJDnAPH3XKIyWYRc6gPoxM7Ex82aOUR2zPSSoHQbVJQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOjqahW2RKVFOz8s6h9IVsi3LXoGMB8GA1UdIwQY
MBaAFNYEdevn8H10FTyxzKM4wW2AH0X3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWdSMTYtZndmWFFWUExITW96akJiWUFmUmZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC81MmViYWUtZTAwNi00Nzc4LWFjM2Mt
NDk2ZjhlYmIyZDYxLzEvNk9wcUZiWkVwVVU3UHl6cUgwaFd5TGN0ZWdZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOC81MmViYWUtZTAwNi00Nzc4LWFjM2MtNDk2ZjhlYmIyZDYx
LzEvMWdSMTYtZndmWFFWUExITW96akJiWUFmUmZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXkq2MA0G
CSqGSIb3DQEBCwUAA4IBAQBu972y64fKIej4cRNLuNRPy3V8D+/9dzwMW0HJcd6r
1BBBq9UHUKOV0Y1auVBvmc0bsBgGnxtB9TifNY0+NjqyguZCSXfN9rIaxbQyPV/D
mMne4o4FhqKFxy9L7N5npyD6QJhR2HBd+Y7/zWu8A9a4kTu3lXy+dCIAci0KvCLa
12bPv8C6+TquR+bZyjKqM0vRqRQKRBL/p5xKxUWmEIhXkKHRezQqI5CX+SdsCdEo
4LuXNZxV0nTuTQgP12nWW1Jk0fnM9aysHxATGkrFXh4nNUax4JUS0MMlc3GnX78i
y+HoUZoYrBo7PsDlz1goY2IIqtH97E3vVb7zK97lAcGY
-----END CERTIFICATE-----
Generated at Wed Feb 19 21:58:53 2025 by rpki-client