Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/eONSGndiA6xJpNUu94tPIkT-HNE.roa
File: eONSGndiA6xJpNUu94tPIkT-HNE.roa (raw, json)
Hash identifier: VOHCY5+BLJ/aaAy0fY+tqFECUR4e//zYS2vb8Vaejw4=
Subject key identifier: 78:E3:52:1A:77:62:03:AC:49:A4:D5:2E:F7:8B:4F:22:44:FE:1C:D1
Certificate issuer: /CN=5270786f17c41bd01626f72db239f208b5189bb0
Certificate serial: 182528D2
Authority key identifier: 52:70:78:6F:17:C4:1B:D0:16:26:F7:2D:B2:39:F2:08:B5:18:9B:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UnB4bxfEG9AWJvctsjnyCLUYm7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/eONSGndiA6xJpNUu94tPIkT-HNE.roa
Signing time: Sat 01 Jan 2022 02:01:12 +0000
ROA not before: Sat 01 Jan 2022 02:01:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34814
IP address blocks: 193.0.204.0/22 maxlen: 24
195.191.58.0/23 maxlen: 24
193.46.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 405088466 (0x182528d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5270786f17c41bd01626f72db239f208b5189bb0
Validity
Not Before: Jan 1 02:01:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=78e3521a776203ac49a4d52ef78b4f2244fe1cd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:02:5a:80:03:ab:9c:82:77:20:4e:49:65:f9:
71:4f:79:70:66:6a:00:47:57:17:68:15:ed:b3:61:
fe:ad:26:b5:f4:ee:31:0b:65:e8:3f:61:70:1a:98:
26:bd:45:b8:9c:44:a8:53:e4:3c:b6:a6:ce:89:97:
53:cc:d3:b8:b6:81:eb:60:89:06:ef:28:9a:0b:d1:
e1:80:ac:9e:22:7b:a0:f2:d0:bc:9a:1d:e1:07:f3:
08:65:64:f8:b5:82:53:ce:6b:fb:51:db:ef:03:be:
4c:5f:fb:2e:02:88:70:f0:de:52:04:87:50:e1:90:
92:84:89:fe:2b:cc:53:6c:0b:56:e5:41:7a:16:c0:
47:e4:13:57:b2:95:8f:d8:d5:5b:5e:67:01:8a:94:
7e:5d:8b:f6:9f:7f:5a:8f:d1:0e:95:5a:fb:3d:36:
dd:7c:fe:9d:45:92:e3:13:41:44:30:2f:c7:c4:41:
4e:0b:36:1b:a6:3e:71:91:4a:be:af:57:69:32:35:
46:c5:3c:8d:32:0c:4a:fa:77:7b:75:36:b2:c2:6b:
6e:24:ff:e0:41:38:22:3e:0b:f2:15:05:7a:08:fe:
55:5c:ec:f1:b8:09:40:76:23:62:1f:26:eb:ac:00:
9e:ad:6c:a6:82:a9:9c:62:3c:b1:74:6a:53:6c:d2:
9d:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:E3:52:1A:77:62:03:AC:49:A4:D5:2E:F7:8B:4F:22:44:FE:1C:D1
X509v3 Authority Key Identifier:
keyid:52:70:78:6F:17:C4:1B:D0:16:26:F7:2D:B2:39:F2:08:B5:18:9B:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UnB4bxfEG9AWJvctsjnyCLUYm7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/eONSGndiA6xJpNUu94tPIkT-HNE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.204.0/22
193.46.201.0/24
195.191.58.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:bd:d7:ac:a8:e0:81:e2:82:f2:04:86:0d:20:90:67:78:61:
a1:9e:fb:c3:99:35:d0:17:21:de:82:e6:6f:b4:d2:f2:99:fa:
5d:de:96:d7:57:98:2b:30:b0:52:a5:20:05:b1:18:57:14:a3:
b2:7b:49:c1:58:df:75:ce:7b:19:08:d9:a6:e6:37:db:06:9f:
41:c4:0b:14:12:76:3f:76:6e:11:dd:ea:e0:ef:28:7c:07:7a:
97:bf:2f:b3:ae:8c:dc:52:14:38:ab:c6:de:47:b6:76:97:76:
c7:aa:9e:47:2f:65:01:64:e7:36:90:17:68:76:9a:82:cb:ad:
b0:9c:3d:14:c2:ff:ab:d0:7b:d0:cf:1e:28:aa:48:17:10:96:
2c:41:35:38:bb:af:4e:39:39:26:d1:3c:79:46:ac:80:0a:c8:
d9:08:c4:7b:ae:9d:20:6d:1e:bd:3c:b5:1d:19:bd:f4:d6:a8:
43:ea:4d:8f:07:7c:65:dc:36:74:42:17:b9:eb:d3:4f:d4:7c:
87:69:b9:7b:03:6b:71:13:4b:1a:76:7a:00:73:b1:d7:5e:0c:
19:ae:b6:46:e0:a1:61:a6:72:86:f7:52:d4:f1:ed:f4:e1:e7:
34:16:48:46:fb:a1:be:47:2e:24:8b:f6:6d:8b:52:79:0d:c8:
a8:b4:55:e0
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEGCUo0jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MjcwNzg2ZjE3YzQxYmQwMTYyNmY3MmRiMjM5ZjIwOGI1MTg5YmIwMB4XDTIyMDEw
MTAyMDExMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzhlMzUyMWE3NzYy
MDNhYzQ5YTRkNTJlZjc4YjRmMjI0NGZlMWNkMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPoCWoADq5yCdyBOSWX5cU95cGZqAEdXF2gV7bNh/q0mtfTu
MQtl6D9hcBqYJr1FuJxEqFPkPLamzomXU8zTuLaB62CJBu8omgvR4YCsniJ7oPLQ
vJod4QfzCGVk+LWCU85r+1Hb7wO+TF/7LgKIcPDeUgSHUOGQkoSJ/ivMU2wLVuVB
ehbAR+QTV7KVj9jVW15nAYqUfl2L9p9/Wo/RDpVa+z023Xz+nUWS4xNBRDAvx8RB
Tgs2G6Y+cZFKvq9XaTI1RsU8jTIMSvp3e3U2ssJrbiT/4EE4Ij4L8hUFegj+VVzs
8bgJQHYjYh8m66wAnq1spoKpnGI8sXRqU2zSncUCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBR441Iad2IDrEmk1S73i08iRP4c0TAfBgNVHSMEGDAWgBRScHhvF8Qb0BYm
9y2yOfIItRibsDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1VuQjRieGZFRzlBV0p2Y3Rzam55Q0xVWW03QS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzQvOWQ0M2NiLTg0MWMtNDBmMi05ZDlmLTc1ZjQ3ZjA3YzRlMy8x
L2VPTlNHbmRpQTZ4SnBOVXU5NHRQSWtULUhORS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzQv
OWQ0M2NiLTg0MWMtNDBmMi05ZDlmLTc1ZjQ3ZjA3YzRlMy8xL1VuQjRieGZFRzlB
V0p2Y3Rzam55Q0xVWW03QS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAsEAzAMEAMEuyQMEAcO/OjANBgkq
hkiG9w0BAQsFAAOCAQEALb3XrKjggeKC8gSGDSCQZ3hhoZ77w5k10Bch3oLmb7TS
8pn6Xd6W11eYKzCwUqUgBbEYVxSjsntJwVjfdc57GQjZpuY32wafQcQLFBJ2P3Zu
Ed3q4O8ofAd6l78vs66M3FIUOKvG3ke2dpd2x6qeRy9lAWTnNpAXaHaagsutsJw9
FML/q9B70M8eKKpIFxCWLEE1OLuvTjk5JtE8eUasgArI2QjEe66dIG0evTy1HRm9
9NaoQ+pNjwd8Zdw2dEIXuevTT9R8h2m5ewNrcRNLGnZ6AHOx114MGa62RuChYaZy
hvdS1PHt9OHnNBZIRvuhvkcuJIv2bYtSeQ3IqLRV4A==
-----END CERTIFICATE-----
Generated at Thu Mar 13 19:58:50 2025 by rpki-client