Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/9120cb-0b06-4861-b657-757838670948/1/USbYDJ6BUSKxGXjMS2e3B8wUkfg.roa
File: USbYDJ6BUSKxGXjMS2e3B8wUkfg.roa (raw, json)
Hash identifier: jNLTrLzAuNsUATq9zu/CFA2JRYckrfJfwwkkbLuBitM=
Subject key identifier: 51:26:D8:0C:9E:81:51:22:B1:19:78:CC:4B:67:B7:07:CC:14:91:F8
Certificate issuer: /CN=96773e9cc974301a78b7ee6d994528f1f882e46f
Certificate serial: 01856E6F9528B5893D48FE04CF5C043C0F1C
Authority key identifier: 96:77:3E:9C:C9:74:30:1A:78:B7:EE:6D:99:45:28:F1:F8:82:E4:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lnc-nMl0MBp4t-5tmUUo8fiC5G8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/9120cb-0b06-4861-b657-757838670948/1/USbYDJ6BUSKxGXjMS2e3B8wUkfg.roa
Signing time: Sun 01 Jan 2023 17:44:44 +0000
ROA not before: Sun 01 Jan 2023 17:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13037
IP address blocks: 185.81.232.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:6f:95:28:b5:89:3d:48:fe:04:cf:5c:04:3c:0f:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96773e9cc974301a78b7ee6d994528f1f882e46f
Validity
Not Before: Jan 1 17:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5126d80c9e815122b11978cc4b67b707cc1491f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:dc:dd:92:92:bb:ed:79:f0:b7:86:36:b1:ea:
8c:47:1a:1e:4e:ea:71:71:61:70:d9:75:01:06:b5:
6d:07:bf:60:99:aa:6e:84:08:19:b3:2e:5c:18:65:
dc:29:57:3d:4a:68:32:e5:2b:96:bc:6a:97:60:e2:
f7:b4:87:cb:a6:c9:8e:af:8a:d4:8a:e2:23:46:74:
26:f9:7e:56:14:20:ef:59:f2:67:75:ad:f8:fc:33:
20:69:25:58:9b:aa:74:ef:8b:57:23:37:b3:e4:39:
5d:3e:48:e3:ec:50:16:5b:78:af:3e:6a:ff:87:43:
af:30:27:81:da:d3:39:43:bf:b4:5b:87:81:d3:18:
54:c2:d6:b2:9a:84:fd:05:c2:3f:af:2b:89:b6:62:
9f:2c:59:2b:83:cf:8a:77:1a:eb:4e:f1:2e:b9:f2:
72:d9:28:ff:ab:47:b2:ab:bb:57:f3:16:92:13:13:
8a:1a:76:6d:dc:38:1b:a5:50:f1:06:59:77:76:01:
f9:9e:36:8b:bd:90:6c:ce:e7:3e:b9:3f:bf:2a:ef:
a7:7b:47:ea:3d:88:df:76:4a:d5:55:eb:c5:c8:b0:
82:7b:cf:81:45:19:e3:c4:ec:00:aa:cd:e9:0d:04:
f4:ae:5a:b5:8e:b9:62:46:98:b2:5f:d2:d6:bd:56:
8e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:26:D8:0C:9E:81:51:22:B1:19:78:CC:4B:67:B7:07:CC:14:91:F8
X509v3 Authority Key Identifier:
keyid:96:77:3E:9C:C9:74:30:1A:78:B7:EE:6D:99:45:28:F1:F8:82:E4:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lnc-nMl0MBp4t-5tmUUo8fiC5G8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/9120cb-0b06-4861-b657-757838670948/1/USbYDJ6BUSKxGXjMS2e3B8wUkfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/9120cb-0b06-4861-b657-757838670948/1/lnc-nMl0MBp4t-5tmUUo8fiC5G8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.232.0/22
Signature Algorithm: sha256WithRSAEncryption
23:c3:45:34:60:13:51:94:54:67:e6:3c:0e:40:b6:4b:85:e2:
06:2f:78:7b:dc:6a:e5:c8:fc:5a:4e:6d:6f:1a:ff:bd:b6:88:
ee:90:5e:7a:50:de:b5:90:27:61:f3:f4:3a:3c:86:c0:54:8a:
a7:ee:28:58:32:4e:79:25:82:4f:7b:02:e7:45:4a:ca:ee:54:
c8:a5:37:77:93:2b:18:fa:4d:02:f7:c0:75:23:9f:2d:d3:1d:
3e:5d:6c:10:d9:24:f5:50:be:ec:74:d4:ed:30:30:fb:92:be:
a3:24:7e:97:ca:b3:23:f1:be:9e:7a:fb:1f:4f:c2:9b:a3:d7:
0b:ca:c0:a7:b5:e6:27:a2:37:12:d8:03:d9:a6:57:24:eb:ef:
ae:d9:56:3a:c7:e1:b9:ab:61:fb:01:5c:65:a0:09:44:db:77:
b0:72:9a:1e:ef:3e:89:33:7e:56:ed:47:36:65:3f:2a:7e:87:
6f:85:6b:11:5f:21:fb:a5:63:18:1b:69:a2:38:de:a4:14:3d:
98:99:c8:b4:0f:ac:1c:76:ad:51:09:81:dc:e0:f3:37:45:f1:
f8:8a:1c:1b:f9:bc:96:05:24:b7:ef:65:ed:98:d4:2b:b7:9f:
72:57:c8:16:a0:87:33:4b:1e:6f:40:32:c6:a9:f6:45:35:2e:
90:ab:f8:c4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVub5UotYk9SP4Ez1wEPA8cMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2NzczZTljYzk3NDMwMWE3OGI3ZWU2ZDk5NDUyOGYxZjg4
MmU0NmYwHhcNMjMwMTAxMTc0NDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MTI2ZDgwYzllODE1MTIyYjExOTc4Y2M0YjY3YjcwN2NjMTQ5MWY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0NzdkpK77Xnwt4Y2seqMRxoeTupx
cWFw2XUBBrVtB79gmapuhAgZsy5cGGXcKVc9Smgy5SuWvGqXYOL3tIfLpsmOr4rU
iuIjRnQm+X5WFCDvWfJnda34/DMgaSVYm6p074tXIzez5DldPkjj7FAWW3ivPmr/
h0OvMCeB2tM5Q7+0W4eB0xhUwtaymoT9BcI/ryuJtmKfLFkrg8+KdxrrTvEuufJy
2Sj/q0eyq7tX8xaSExOKGnZt3DgbpVDxBll3dgH5njaLvZBszuc+uT+/Ku+ne0fq
PYjfdkrVVevFyLCCe8+BRRnjxOwAqs3pDQT0rlq1jrliRpiyX9LWvVaOGwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFEm2AyegVEisRl4zEtntwfMFJH4MB8GA1UdIwQY
MBaAFJZ3PpzJdDAaeLfubZlFKPH4guRvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbG5jLW5NbDBNQnA0dC01dG1VVW84ZmlDNUc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS85MTIwY2ItMGIwNi00ODYxLWI2NTct
NzU3ODM4NjcwOTQ4LzEvVVNiWURKNkJVU0t4R1hqTVMyZTNCOHdVa2ZnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS85MTIwY2ItMGIwNi00ODYxLWI2NTctNzU3ODM4NjcwOTQ4
LzEvbG5jLW5NbDBNQnA0dC01dG1VVW84ZmlDNUc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuVHoMA0G
CSqGSIb3DQEBCwUAA4IBAQAjw0U0YBNRlFRn5jwOQLZLheIGL3h73GrlyPxaTm1v
Gv+9tojukF56UN61kCdh8/Q6PIbAVIqn7ihYMk55JYJPewLnRUrK7lTIpTd3kysY
+k0C98B1I58t0x0+XWwQ2ST1UL7sdNTtMDD7kr6jJH6XyrMj8b6eevsfT8Kbo9cL
ysCnteYnojcS2APZplck6++u2VY6x+G5q2H7AVxloAlE23ewcpoe7z6JM35W7Uc2
ZT8qfodvhWsRXyH7pWMYG2miON6kFD2Ymci0D6wcdq1RCYHc4PM3RfH4ihwb+byW
BSS372XtmNQrt59yV8gWoIczSx5vQDLGqfZFNS6Qq/jE
-----END CERTIFICATE-----
Generated at Thu Apr 17 06:43:03 2025 by rpki-client