Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/849281-a302-4ff8-92e3-3ae4f9cf2683/1/LaQYk0iwknLWr7hK6nmQXO9Aa-c.roa
File: LaQYk0iwknLWr7hK6nmQXO9Aa-c.roa (raw, json)
Hash identifier: n/42EFJ4r8zqU3Qk5Ka99LSKUoj4QYCE1WTY228NGao=
Subject key identifier: 2D:A4:18:93:48:B0:92:72:D6:AF:B8:4A:EA:79:90:5C:EF:40:6B:E7
Certificate issuer: /CN=736ef5730050c720f8c790466eb8b8a48efbe749
Certificate serial: 0A1064C4
Authority key identifier: 73:6E:F5:73:00:50:C7:20:F8:C7:90:46:6E:B8:B8:A4:8E:FB:E7:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c271cwBQxyD4x5BGbri4pI7750k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/849281-a302-4ff8-92e3-3ae4f9cf2683/1/LaQYk0iwknLWr7hK6nmQXO9Aa-c.roa
Signing time: Sat 01 Jan 2022 08:54:35 +0000
ROA not before: Sat 01 Jan 2022 08:54:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42977
IP address blocks: 185.192.12.0/22 maxlen: 22
2a0a:25c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 168846532 (0xa1064c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=736ef5730050c720f8c790466eb8b8a48efbe749
Validity
Not Before: Jan 1 08:54:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2da4189348b09272d6afb84aea79905cef406be7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:46:47:4c:bc:8f:33:a4:bd:89:56:fd:89:3b:
73:72:44:68:c8:46:34:8e:f8:75:a2:50:be:21:d6:
20:d5:c8:fd:3e:5c:59:56:9f:52:23:66:0c:fe:0c:
e9:86:da:63:3b:2a:c3:ad:4e:d8:e5:78:8a:04:a2:
52:2c:64:89:91:9e:69:b8:b2:2f:ba:a6:eb:ec:26:
ac:4e:9a:d9:e9:17:f0:12:7a:e5:5b:e7:61:24:2f:
1f:dc:53:9d:bc:0b:a1:39:8e:b6:94:dd:e8:8d:b1:
6b:27:c5:14:47:6d:ca:9a:8e:79:98:a4:8c:a7:06:
f3:ad:9a:82:16:59:e3:16:4d:26:17:39:7c:e3:0c:
a0:98:95:b2:fe:6c:cc:9a:08:6a:d3:6a:c5:18:b1:
21:1a:75:46:0e:98:32:dd:7e:7a:46:f8:76:ca:bd:
4e:fa:e6:53:f4:e2:91:dd:c6:5f:c6:1e:ae:96:c6:
4b:01:a5:83:4a:cf:d7:60:1c:5a:af:0f:b8:fe:01:
b4:08:d1:1c:85:69:39:a7:99:27:35:e4:5e:eb:ee:
cf:35:2d:a1:cd:b3:79:d5:f4:2f:14:94:07:77:69:
19:b5:1f:49:43:8f:2d:c5:5e:e6:7b:c4:8b:f2:50:
eb:15:7b:f0:be:26:35:ae:27:12:10:6a:f4:90:68:
bd:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:A4:18:93:48:B0:92:72:D6:AF:B8:4A:EA:79:90:5C:EF:40:6B:E7
X509v3 Authority Key Identifier:
keyid:73:6E:F5:73:00:50:C7:20:F8:C7:90:46:6E:B8:B8:A4:8E:FB:E7:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c271cwBQxyD4x5BGbri4pI7750k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/849281-a302-4ff8-92e3-3ae4f9cf2683/1/LaQYk0iwknLWr7hK6nmQXO9Aa-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/849281-a302-4ff8-92e3-3ae4f9cf2683/1/c271cwBQxyD4x5BGbri4pI7750k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.12.0/22
IPv6:
2a0a:25c0::/29
Signature Algorithm: sha256WithRSAEncryption
57:03:71:ee:d6:4b:99:4b:83:11:e8:9d:16:d8:bc:ac:c0:e2:
b9:90:0a:78:1b:46:75:ec:4b:29:8f:bb:de:ac:ee:5b:29:35:
4b:11:18:93:9c:ac:22:c9:78:57:4e:a3:88:b8:d9:1f:92:bf:
c5:aa:92:cd:07:8b:88:fd:cd:57:50:a9:96:b4:a9:a8:2a:31:
15:66:ea:9f:61:bb:a4:8b:67:68:a6:33:74:e2:bf:e2:ed:e9:
ad:08:8e:f8:5f:3e:d1:4b:f1:77:e0:aa:b9:cc:0b:57:c4:9b:
2d:0f:1c:c2:15:39:8d:ec:71:c5:09:1a:ba:0e:59:c9:97:bb:
38:19:fe:51:6d:53:eb:86:ea:51:7f:21:fb:dd:ff:d3:3d:f3:
12:75:3a:db:fe:fc:90:ff:30:69:60:8d:2f:02:8f:3c:cd:7c:
96:57:6c:7c:55:03:6e:55:bb:40:ee:45:8c:8b:eb:f7:61:a8:
0e:5d:d4:bb:57:81:63:c2:f1:32:4f:dd:77:af:96:bb:07:98:
27:88:93:e9:96:25:90:ee:28:89:8a:10:5b:99:e2:78:79:11:
8c:dd:7d:b1:d3:39:de:b6:38:c1:c2:a3:33:8a:c6:e8:a6:a6:
77:ac:eb:54:1e:88:79:d1:c0:6d:b0:2a:8e:80:40:b6:b1:d3:
cc:bf:14:cf
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEChBkxDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
MzZlZjU3MzAwNTBjNzIwZjhjNzkwNDY2ZWI4YjhhNDhlZmJlNzQ5MB4XDTIyMDEw
MTA4NTQzNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmRhNDE4OTM0OGIw
OTI3MmQ2YWZiODRhZWE3OTkwNWNlZjQwNmJlNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKlGR0y8jzOkvYlW/Yk7c3JEaMhGNI74daJQviHWINXI/T5c
WVafUiNmDP4M6YbaYzsqw61O2OV4igSiUixkiZGeabiyL7qm6+wmrE6a2ekX8BJ6
5VvnYSQvH9xTnbwLoTmOtpTd6I2xayfFFEdtypqOeZikjKcG862aghZZ4xZNJhc5
fOMMoJiVsv5szJoIatNqxRixIRp1Rg6YMt1+ekb4dsq9TvrmU/Tikd3GX8YerpbG
SwGlg0rP12AcWq8PuP4BtAjRHIVpOaeZJzXkXuvuzzUtoc2zedX0LxSUB3dpGbUf
SUOPLcVe5nvEi/JQ6xV78L4mNa4nEhBq9JBovUUCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBQtpBiTSLCSctavuErqeZBc70Br5zAfBgNVHSMEGDAWgBRzbvVzAFDHIPjH
kEZuuLikjvvnSTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2MyNzFjd0JReHlENHg1Qkdicmk0cEk3NzUway5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvM2MvODQ5MjgxLWEzMDItNGZmOC05MmUzLTNhZTRmOWNmMjY4My8x
L0xhUVlrMGl3a25MV3I3aEs2bm1RWE85QWEtYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2Mv
ODQ5MjgxLWEzMDItNGZmOC05MmUzLTNhZTRmOWNmMjY4My8xL2MyNzFjd0JReHlE
NHg1Qkdicmk0cEk3NzUway5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArnADDANBAIAAjAHAwUDKgolwDAN
BgkqhkiG9w0BAQsFAAOCAQEAVwNx7tZLmUuDEeidFti8rMDiuZAKeBtGdexLKY+7
3qzuWyk1SxEYk5ysIsl4V06jiLjZH5K/xaqSzQeLiP3NV1CplrSpqCoxFWbqn2G7
pItnaKYzdOK/4u3prQiO+F8+0Uvxd+CqucwLV8SbLQ8cwhU5jexxxQkaug5ZyZe7
OBn+UW1T64bqUX8h+93/0z3zEnU62/78kP8waWCNLwKPPM18lldsfFUDblW7QO5F
jIvr92GoDl3Uu1eBY8LxMk/dd6+WuweYJ4iT6ZYlkO4oiYoQW5nieHkRjN19sdM5
3rY4wcKjM4rG6Kamd6zrVB6IedHAbbAqjoBAtrHTzL8Uzw==
-----END CERTIFICATE-----
Generated at Sun Apr 20 05:02:01 2025 by rpki-client