Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/78fefc-e9c5-4c6b-9ecd-18723c841121/1/uNqrBrzwgsLpURWi-SUTeHJk-PM.roa
File: uNqrBrzwgsLpURWi-SUTeHJk-PM.roa (raw, json)
Hash identifier: ZPLC3cznGcu0IzBHK/BEauHdi31RI+/TvjJfo44MkOs=
Subject key identifier: B8:DA:AB:06:BC:F0:82:C2:E9:51:15:A2:F9:25:13:78:72:64:F8:F3
Certificate issuer: /CN=34859d8a26c8e888777f4e801b20b785dee654cf
Certificate serial: 03B1DB29
Authority key identifier: 34:85:9D:8A:26:C8:E8:88:77:7F:4E:80:1B:20:B7:85:DE:E6:54:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIWdiibI6Ih3f06AGyC3hd7mVM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/78fefc-e9c5-4c6b-9ecd-18723c841121/1/uNqrBrzwgsLpURWi-SUTeHJk-PM.roa
Signing time: Sat 01 Jan 2022 11:54:20 +0000
ROA not before: Sat 01 Jan 2022 11:54:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48178
IP address blocks: 193.202.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61987625 (0x3b1db29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34859d8a26c8e888777f4e801b20b785dee654cf
Validity
Not Before: Jan 1 11:54:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8daab06bcf082c2e95115a2f92513787264f8f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:75:2d:79:02:37:1d:11:fc:f9:2b:bb:bd:73:
cc:b2:4e:29:f1:91:5b:6c:af:9c:89:f9:ef:ce:0f:
c0:89:d6:c3:0c:ab:24:e2:25:f0:ef:78:6d:b0:24:
45:1f:da:d6:3e:b8:99:75:ce:ce:2d:4c:b8:f8:7c:
db:ba:51:30:90:8e:7e:00:31:e2:e7:c8:33:77:34:
f8:26:cc:10:ef:6d:8a:9e:f2:e2:db:ac:a4:bb:f7:
c2:62:41:da:ab:f6:a9:02:be:da:97:4e:89:bc:8b:
9c:3b:96:6c:e9:f4:78:0d:d9:f1:a0:6a:26:13:ae:
6a:c4:a9:66:59:6e:42:30:bb:53:c1:03:e6:92:e7:
54:5f:1c:12:6f:72:75:67:bb:6b:e9:b4:f2:72:ea:
94:f6:43:83:16:ce:b8:e0:7b:66:a2:0a:99:f6:58:
5d:44:c6:fd:96:92:40:61:2c:bf:55:28:67:88:57:
1a:ba:28:fb:80:e0:7e:5b:3f:33:2a:0e:e2:82:ac:
36:05:33:eb:80:e3:cb:44:5a:c2:ad:60:76:b2:da:
f3:60:27:c5:e7:8e:6d:13:16:73:ea:2e:63:6a:3d:
91:1f:60:2e:b6:59:87:cd:85:32:f0:6e:a1:fc:91:
dd:9b:4a:de:bc:d5:4f:87:8f:c8:ea:b0:fa:cd:b8:
43:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:DA:AB:06:BC:F0:82:C2:E9:51:15:A2:F9:25:13:78:72:64:F8:F3
X509v3 Authority Key Identifier:
keyid:34:85:9D:8A:26:C8:E8:88:77:7F:4E:80:1B:20:B7:85:DE:E6:54:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIWdiibI6Ih3f06AGyC3hd7mVM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/78fefc-e9c5-4c6b-9ecd-18723c841121/1/uNqrBrzwgsLpURWi-SUTeHJk-PM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/78fefc-e9c5-4c6b-9ecd-18723c841121/1/NIWdiibI6Ih3f06AGyC3hd7mVM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.202.21.0/24
Signature Algorithm: sha256WithRSAEncryption
11:9b:9a:a0:01:2a:e1:49:8f:25:f1:f0:83:9b:bf:83:bb:92:
f9:eb:89:28:48:9d:94:ee:61:d9:4c:3f:25:35:ad:58:ea:eb:
05:31:ae:09:95:51:70:d5:bf:c8:59:13:2e:16:62:7d:7d:fa:
b0:c7:26:a5:b2:b2:4f:2f:80:fd:37:f4:09:f1:e5:99:a4:ba:
f8:23:63:f2:16:84:41:b8:b3:d7:14:9f:32:b5:24:0e:71:88:
14:e2:9f:90:3e:2e:6f:88:70:f5:09:1e:74:1b:f6:22:bf:1b:
be:6e:9d:71:5b:4f:ef:ad:46:79:c1:4a:aa:79:12:8a:8d:f8:
bf:11:1d:02:0f:77:12:60:bc:4a:7e:95:52:35:d7:ad:7a:cd:
c1:2f:d5:6e:b4:ff:6c:6b:cb:be:95:cb:39:8d:0c:16:ef:c4:
62:5f:55:e0:6c:5e:fe:91:c0:31:1d:23:79:a2:e5:42:14:a1:
58:75:39:b2:1f:d9:27:79:6a:dd:f2:1f:75:94:8d:a1:93:01:
85:1b:61:be:c8:52:39:cd:47:cb:9c:1e:9c:0c:9f:a4:76:fb:
a3:20:54:9b:a7:cb:ce:80:6f:ad:7c:4f:29:cc:f2:83:3b:f5:
fa:58:de:cb:be:be:4a:61:a4:6f:88:dc:5a:05:dd:a9:96:9c:
8f:3e:f4:91
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA7HbKTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NDg1OWQ4YTI2YzhlODg4Nzc3ZjRlODAxYjIwYjc4NWRlZTY1NGNmMB4XDTIyMDEw
MTExNTQyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjhkYWFiMDZiY2Yw
ODJjMmU5NTExNWEyZjkyNTEzNzg3MjY0ZjhmMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMp1LXkCNx0R/Pkru71zzLJOKfGRW2yvnIn5784PwInWwwyr
JOIl8O94bbAkRR/a1j64mXXOzi1MuPh827pRMJCOfgAx4ufIM3c0+CbMEO9tip7y
4tuspLv3wmJB2qv2qQK+2pdOibyLnDuWbOn0eA3Z8aBqJhOuasSpZlluQjC7U8ED
5pLnVF8cEm9ydWe7a+m08nLqlPZDgxbOuOB7ZqIKmfZYXUTG/ZaSQGEsv1UoZ4hX
Groo+4Dgfls/MyoO4oKsNgUz64Djy0Rawq1gdrLa82AnxeeObRMWc+ouY2o9kR9g
LrZZh82FMvBuofyR3ZtK3rzVT4ePyOqw+s24Q9cCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS42qsGvPCCwulRFaL5JRN4cmT48zAfBgNVHSMEGDAWgBQ0hZ2KJsjoiHd/
ToAbILeF3uZUzzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05JV2RpaWJJNkloM2YwNkFHeUMzaGQ3bVZNOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzcvNzhmZWZjLWU5YzUtNGM2Yi05ZWNkLTE4NzIzYzg0MTEyMS8x
L3VOcXJCcnp3Z3NMcFVSV2ktU1VUZUhKay1QTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzcv
NzhmZWZjLWU5YzUtNGM2Yi05ZWNkLTE4NzIzYzg0MTEyMS8xL05JV2RpaWJJNklo
M2YwNkFHeUMzaGQ3bVZNOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMHKFTANBgkqhkiG9w0BAQsFAAOC
AQEAEZuaoAEq4UmPJfHwg5u/g7uS+euJKEidlO5h2Uw/JTWtWOrrBTGuCZVRcNW/
yFkTLhZifX36sMcmpbKyTy+A/Tf0CfHlmaS6+CNj8haEQbiz1xSfMrUkDnGIFOKf
kD4ub4hw9QkedBv2Ir8bvm6dcVtP761GecFKqnkSio34vxEdAg93EmC8Sn6VUjXX
rXrNwS/VbrT/bGvLvpXLOY0MFu/EYl9V4Gxe/pHAMR0jeaLlQhShWHU5sh/ZJ3lq
3fIfdZSNoZMBhRthvshSOc1Hy5wenAyfpHb7oyBUm6fLzoBvrXxPKczygzv1+lje
y76+SmGkb4jcWgXdqZacjz70kQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:53 2025 by rpki-client