Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/dQcmPGJcNyR3Oj0ZcamLUw10SzU.roa
File: dQcmPGJcNyR3Oj0ZcamLUw10SzU.roa (raw, json)
Hash identifier: 3fK8n6SHTrhaJ9ul3TmT0rBoXZqkEVFWqLaEUoEAQAA=
Subject key identifier: 75:07:26:3C:62:5C:37:24:77:3A:3D:19:71:A9:8B:53:0D:74:4B:35
Certificate issuer: /CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Certificate serial: 0183214FE5C09BA9A8CDAD7B40808BEA18FA
Authority key identifier: D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/dQcmPGJcNyR3Oj0ZcamLUw10SzU.roa
Signing time: Fri 09 Sep 2022 08:13:47 +0000
ROA not before: Fri 09 Sep 2022 08:13:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15380
IP address blocks: 193.0.231.0/24 maxlen: 24
2001:678:a20::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:21:4f:e5:c0:9b:a9:a8:cd:ad:7b:40:80:8b:ea:18:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Validity
Not Before: Sep 9 08:13:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7507263c625c3724773a3d1971a98b530d744b35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:71:78:74:7e:b1:6f:a5:45:f1:83:df:76:53:
f8:c9:22:90:cf:d4:2b:ca:ac:e1:97:99:7a:40:f9:
9a:a5:69:eb:b1:bf:6e:ff:a1:0b:12:82:a3:12:9e:
89:8a:2c:3f:e9:a2:44:04:04:3f:06:7f:fc:15:0e:
75:3c:3b:32:37:96:e4:43:dd:62:95:90:40:39:ea:
0f:52:f6:33:ed:db:dc:db:77:5e:df:da:b6:2d:14:
be:3a:30:e3:44:e5:9b:4b:f1:4d:28:51:f5:d8:2e:
a1:f7:d0:74:50:3d:8a:13:b9:1b:ca:f4:4e:f6:e2:
8f:28:4a:d8:31:f7:3a:b2:f1:80:20:5b:5f:39:ce:
ab:b4:39:73:c9:fc:c7:db:fe:e6:ce:58:d8:63:4b:
95:9d:3e:c6:a0:05:1e:af:42:44:41:59:b7:71:98:
a2:86:32:96:5f:73:32:8e:b2:c5:98:6a:8c:74:1c:
d5:7a:08:85:47:2d:ef:f6:d9:48:76:f8:eb:67:1c:
d4:2a:3e:e3:2e:1e:bd:12:37:7e:22:90:0a:c5:45:
c7:4c:88:37:09:63:96:24:17:c2:c1:0a:ce:a6:fb:
60:91:49:54:fb:4a:ea:f2:42:32:8d:b2:01:45:cf:
c9:70:62:97:57:ab:2c:98:69:4e:19:b9:73:f6:ec:
de:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:07:26:3C:62:5C:37:24:77:3A:3D:19:71:A9:8B:53:0D:74:4B:35
X509v3 Authority Key Identifier:
keyid:D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/dQcmPGJcNyR3Oj0ZcamLUw10SzU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.231.0/24
IPv6:
2001:678:a20::/48
Signature Algorithm: sha256WithRSAEncryption
24:3c:32:b1:e2:a0:5b:34:51:46:99:46:ab:f4:43:cf:e1:ed:
e6:ef:83:9d:59:96:43:9d:05:cd:31:6e:77:f2:63:f3:c9:84:
1a:eb:c4:13:17:b4:7d:60:0b:27:b0:54:ce:af:08:c8:d6:0a:
29:7c:1b:56:2f:0b:ea:dd:b1:9c:94:6c:4c:16:0d:45:32:9b:
88:88:6d:12:46:54:6c:5f:c3:94:97:f7:c0:93:32:ef:9e:7b:
37:e9:01:86:be:45:45:15:c7:72:c8:01:0d:8f:d1:ff:95:07:
cd:e2:d2:15:c4:75:ce:c1:f3:5f:85:28:c2:54:6a:83:1c:a8:
52:a3:48:95:05:4b:fc:d7:ee:d1:d5:05:89:c4:05:f1:de:a8:
4f:7d:ea:fa:78:c8:3b:a9:ea:61:f6:21:6e:da:23:01:28:84:
a2:1c:6b:a1:d3:ab:b4:5b:93:7e:f2:08:70:1c:e6:9b:a6:83:
f4:7a:51:a0:d3:af:24:48:2e:71:0c:a6:c5:a9:6e:17:9e:4b:
68:17:21:41:7d:d8:73:d5:ff:b0:88:79:ed:92:30:2b:97:b4:
2d:9f:56:35:fa:29:b4:ba:54:b5:c2:58:8c:25:61:f8:12:a0:
24:da:b3:cf:ac:a0:5b:b8:29:3a:22:6a:36:ab:03:c9:5d:74:
a5:2d:1b:17
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYMhT+XAm6moza17QICL6hj6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4YTNjYWNkZjhmMzM1MTRiZTNhYmRjNTJjNTBlYzg2NDY3
NWU5NTUwHhcNMjIwOTA5MDgxMzQ3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NTA3MjYzYzYyNWMzNzI0NzczYTNkMTk3MWE5OGI1MzBkNzQ0YjM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA13F4dH6xb6VF8YPfdlP4ySKQz9Qr
yqzhl5l6QPmapWnrsb9u/6ELEoKjEp6Jiiw/6aJEBAQ/Bn/8FQ51PDsyN5bkQ91i
lZBAOeoPUvYz7dvc23de39q2LRS+OjDjROWbS/FNKFH12C6h99B0UD2KE7kbyvRO
9uKPKErYMfc6svGAIFtfOc6rtDlzyfzH2/7mzljYY0uVnT7GoAUer0JEQVm3cZii
hjKWX3MyjrLFmGqMdBzVegiFRy3v9tlIdvjrZxzUKj7jLh69Ejd+IpAKxUXHTIg3
CWOWJBfCwQrOpvtgkUlU+0rq8kIyjbIBRc/JcGKXV6ssmGlOGblz9uzeJwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFHUHJjxiXDckdzo9GXGpi1MNdEs1MB8GA1UdIwQY
MBaAFNijys348zUUvjq9xSxQ7IZGdelVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMktQS3pmanpOUlMtT3IzRkxGRHNoa1oxNlZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy8zMzNjMWEtZTRhNS00OTZkLTlhODEt
Yjc5MWI5ODlhZjI5LzEvZFFjbVBHSmNOeVIzT2owWmNhbUxVdzEwU3pVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy8zMzNjMWEtZTRhNS00OTZkLTlhODEtYjc5MWI5ODlhZjI5
LzEvMktQS3pmanpOUlMtT3IzRkxGRHNoa1oxNlZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwQDnMA8E
AgACMAkDBwAgAQZ4CiAwDQYJKoZIhvcNAQELBQADggEBACQ8MrHioFs0UUaZRqv0
Q8/h7ebvg51ZlkOdBc0xbnfyY/PJhBrrxBMXtH1gCyewVM6vCMjWCil8G1YvC+rd
sZyUbEwWDUUym4iIbRJGVGxfw5SX98CTMu+eezfpAYa+RUUVx3LIAQ2P0f+VB83i
0hXEdc7B81+FKMJUaoMcqFKjSJUFS/zX7tHVBYnEBfHeqE996vp4yDup6mH2IW7a
IwEohKIca6HTq7Rbk37yCHAc5pumg/R6UaDTryRILnEMpsWpbheeS2gXIUF92HPV
/7CIee2SMCuXtC2fVjX6KbS6VLXCWIwlYfgSoCTas8+soFu4KToiajarA8lddKUt
Gxc=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:16:29 2025 by rpki-client