Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/bbfe48-f14d-40d1-9f1a-cb9e45bb0c63/1/QUaf7pl4lFWuN-S8edyJAHSFEXQ.roa
File: QUaf7pl4lFWuN-S8edyJAHSFEXQ.roa (raw, json)
Hash identifier: sFvoIjHPUIzOTX7opymz6104YM1iV5MEaMxGnCXda1U=
Subject key identifier: 41:46:9F:EE:99:78:94:55:AE:37:E4:BC:79:DC:89:00:74:85:11:74
Certificate issuer: /CN=17a6fa80b2d1c43ec9ea824e7e8395f79294e38a
Certificate serial: 0C347DC2
Authority key identifier: 17:A6:FA:80:B2:D1:C4:3E:C9:EA:82:4E:7E:83:95:F7:92:94:E3:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F6b6gLLRxD7J6oJOfoOV95KU44o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/bbfe48-f14d-40d1-9f1a-cb9e45bb0c63/1/QUaf7pl4lFWuN-S8edyJAHSFEXQ.roa
Signing time: Sat 01 Jan 2022 12:03:57 +0000
ROA not before: Sat 01 Jan 2022 12:03:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44336
IP address blocks: 195.93.204.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 204766658 (0xc347dc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17a6fa80b2d1c43ec9ea824e7e8395f79294e38a
Validity
Not Before: Jan 1 12:03:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=41469fee99789455ae37e4bc79dc890074851174
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1a:c0:63:f3:b2:2e:e7:4c:5e:ea:01:c0:65:
7c:b6:8a:46:f3:c6:35:37:e5:06:97:d2:8e:4d:71:
b6:89:04:61:41:8b:b4:10:36:2f:ad:42:97:c8:ba:
39:f6:0b:fe:45:a4:fa:b0:18:21:07:fe:55:6a:d9:
38:8e:3c:28:cf:71:7e:87:a9:00:78:70:f8:2f:0d:
89:fb:ce:30:77:15:f8:31:67:4f:95:cd:1d:d5:37:
08:3c:c8:fc:27:b0:b7:41:2e:d1:96:51:b6:35:6f:
80:93:d8:cf:d6:24:31:ba:88:ca:49:96:cd:7c:3c:
5d:43:86:15:8c:89:e9:7a:ff:95:6e:83:49:a4:d7:
da:93:12:18:34:6c:d6:6e:90:6e:87:16:87:04:98:
db:c3:72:f8:31:1b:33:05:4c:d0:9b:7d:55:bb:e1:
38:79:b4:f1:d8:67:d2:4c:91:23:56:57:d7:61:31:
54:f4:3d:53:59:cf:d2:7f:28:a5:07:29:f8:69:07:
6c:46:1b:20:cf:00:87:f2:03:93:f0:8a:05:f1:82:
c4:16:23:a8:d4:62:40:88:2b:35:7f:ef:aa:70:72:
9a:e1:59:42:e6:c5:87:8a:6e:2b:9b:55:33:a2:ec:
e6:94:02:32:8d:4e:cb:be:cf:5d:be:05:38:a1:43:
1f:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:46:9F:EE:99:78:94:55:AE:37:E4:BC:79:DC:89:00:74:85:11:74
X509v3 Authority Key Identifier:
keyid:17:A6:FA:80:B2:D1:C4:3E:C9:EA:82:4E:7E:83:95:F7:92:94:E3:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F6b6gLLRxD7J6oJOfoOV95KU44o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/bbfe48-f14d-40d1-9f1a-cb9e45bb0c63/1/QUaf7pl4lFWuN-S8edyJAHSFEXQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/bbfe48-f14d-40d1-9f1a-cb9e45bb0c63/1/F6b6gLLRxD7J6oJOfoOV95KU44o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.93.204.0/23
Signature Algorithm: sha256WithRSAEncryption
80:14:aa:90:98:f7:d9:b5:9e:ae:c9:7a:dc:03:06:b8:96:10:
cc:4d:98:b1:e9:a0:f5:08:9b:cb:f4:9c:b9:6c:ec:5f:1c:28:
91:81:d1:37:ac:69:9c:9d:5c:43:f8:fb:7e:c6:97:4a:80:ed:
f7:b3:16:4d:46:8c:91:4c:31:35:41:be:4e:ad:3f:f9:63:62:
0b:85:7d:f2:80:44:2b:37:b0:ac:29:a2:18:63:a6:ab:90:22:
07:2b:9a:57:fe:93:b1:a9:8b:fc:32:aa:06:9d:31:35:a8:19:
84:f3:d6:3d:11:0c:d3:3f:5f:59:97:8a:b7:b9:41:9c:2c:e0:
1c:d4:96:d5:27:c6:25:34:ab:43:f3:d0:99:ba:6c:98:8c:a8:
83:5d:19:c1:5b:c9:c9:a3:0d:ba:57:fc:95:65:b2:64:10:ee:
64:68:18:c6:c7:db:92:60:cb:a3:17:ce:a4:c4:99:9b:c4:fe:
f4:3d:3b:88:51:03:37:bc:d5:da:90:9c:f2:33:ce:a4:77:ed:
af:87:d8:93:c5:db:d9:ac:a1:37:47:c2:64:5d:74:e8:6c:0f:
1e:64:77:4f:a7:b3:c1:d7:af:4f:db:54:ce:39:34:74:40:1e:
3a:82:89:01:4e:9b:c4:e6:4d:ec:f5:17:82:0f:05:33:46:08:
c6:ec:8b:ee
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDDR9wjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
N2E2ZmE4MGIyZDFjNDNlYzllYTgyNGU3ZTgzOTVmNzkyOTRlMzhhMB4XDTIyMDEw
MTEyMDM1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDE0NjlmZWU5OTc4
OTQ1NWFlMzdlNGJjNzlkYzg5MDA3NDg1MTE3NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK4awGPzsi7nTF7qAcBlfLaKRvPGNTflBpfSjk1xtokEYUGL
tBA2L61Cl8i6OfYL/kWk+rAYIQf+VWrZOI48KM9xfoepAHhw+C8NifvOMHcV+DFn
T5XNHdU3CDzI/Cewt0Eu0ZZRtjVvgJPYz9YkMbqIykmWzXw8XUOGFYyJ6Xr/lW6D
SaTX2pMSGDRs1m6QbocWhwSY28Ny+DEbMwVM0Jt9VbvhOHm08dhn0kyRI1ZX12Ex
VPQ9U1nP0n8opQcp+GkHbEYbIM8Ah/IDk/CKBfGCxBYjqNRiQIgrNX/vqnBymuFZ
QubFh4puK5tVM6Ls5pQCMo1Oy77PXb4FOKFDH38CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRBRp/umXiUVa435Lx53IkAdIURdDAfBgNVHSMEGDAWgBQXpvqAstHEPsnq
gk5+g5X3kpTjijAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0Y2YjZnTExSeEQ3SjZvSk9mb09WOTVLVTQ0by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzYvYmJmZTQ4LWYxNGQtNDBkMS05ZjFhLWNiOWU0NWJiMGM2My8x
L1FVYWY3cGw0bEZXdU4tUzhlZHlKQUhTRkVYUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzYv
YmJmZTQ4LWYxNGQtNDBkMS05ZjFhLWNiOWU0NWJiMGM2My8xL0Y2YjZnTExSeEQ3
SjZvSk9mb09WOTVLVTQ0by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcNdzDANBgkqhkiG9w0BAQsFAAOC
AQEAgBSqkJj32bWersl63AMGuJYQzE2Ysemg9Qiby/ScuWzsXxwokYHRN6xpnJ1c
Q/j7fsaXSoDt97MWTUaMkUwxNUG+Tq0/+WNiC4V98oBEKzewrCmiGGOmq5AiByua
V/6TsamL/DKqBp0xNagZhPPWPREM0z9fWZeKt7lBnCzgHNSW1SfGJTSrQ/PQmbps
mIyog10ZwVvJyaMNulf8lWWyZBDuZGgYxsfbkmDLoxfOpMSZm8T+9D07iFEDN7zV
2pCc8jPOpHftr4fYk8Xb2ayhN0fCZF106GwPHmR3T6ezwdevT9tUzjk0dEAeOoKJ
AU6bxOZN7PUXgg8FM0YIxuyL7g==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:46:51 2025 by rpki-client