Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/gWduGQ1pJUUyjaEyO-yQ6ySNglI.roa
File: gWduGQ1pJUUyjaEyO-yQ6ySNglI.roa (raw, json)
Hash identifier: hJ5/VLUfG+DiN/QBXECOIs2kU0+VCbQaPmZo3p0KW0U=
Subject key identifier: 81:67:6E:19:0D:69:25:45:32:8D:A1:32:3B:EC:90:EB:24:8D:82:52
Certificate issuer: /CN=72ed2fbb7213fbf32ad4c087f8b0b22cecef4fea
Certificate serial: 01835EC287F50A79742E241B78494907CF00
Authority key identifier: 72:ED:2F:BB:72:13:FB:F3:2A:D4:C0:87:F8:B0:B2:2C:EC:EF:4F:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/gWduGQ1pJUUyjaEyO-yQ6ySNglI.roa
Signing time: Wed 21 Sep 2022 06:35:50 +0000
ROA not before: Wed 21 Sep 2022 06:35:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48920
IP address blocks: 193.23.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:5e:c2:87:f5:0a:79:74:2e:24:1b:78:49:49:07:cf:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72ed2fbb7213fbf32ad4c087f8b0b22cecef4fea
Validity
Not Before: Sep 21 06:35:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81676e190d692545328da1323bec90eb248d8252
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:07:d0:18:9c:62:a1:db:66:59:5a:ce:1f:21:
da:3c:20:6b:0c:4a:72:34:80:78:be:c1:28:d6:8d:
05:ed:cc:14:b7:69:8b:3f:41:74:ce:ca:38:37:67:
5e:2d:d6:47:48:01:52:67:60:eb:c6:51:86:5a:85:
04:5f:59:aa:df:62:c2:5e:ce:aa:c2:df:26:ae:81:
5c:fa:a9:bb:97:88:24:91:82:cb:f0:3c:7f:72:be:
32:0e:b6:53:11:ba:3f:38:df:55:d3:0e:43:76:24:
4b:9b:c4:ec:5a:79:d9:c0:52:41:68:92:dd:62:60:
9b:8f:47:03:cc:2e:b9:3d:c9:ec:30:83:d2:81:4f:
eb:7f:8a:35:f0:80:ec:4a:89:0e:08:d3:c8:69:dd:
87:0d:f5:42:69:f3:fa:ad:b4:80:37:bc:3a:7e:8a:
23:53:d9:ab:4a:8c:23:b9:dd:50:db:db:b5:91:8b:
d3:87:45:c0:75:d6:54:53:b3:63:51:07:c8:72:1e:
e2:c5:73:a2:6d:14:b5:af:03:72:bd:be:e1:93:32:
da:b2:ca:76:68:62:77:2e:9a:bc:01:00:e4:9f:8f:
be:12:37:71:95:70:e7:3c:d9:01:ae:36:6b:b8:c6:
c8:a4:92:b5:9a:90:56:39:d5:6f:7f:dd:a6:07:49:
6a:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:67:6E:19:0D:69:25:45:32:8D:A1:32:3B:EC:90:EB:24:8D:82:52
X509v3 Authority Key Identifier:
keyid:72:ED:2F:BB:72:13:FB:F3:2A:D4:C0:87:F8:B0:B2:2C:EC:EF:4F:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/gWduGQ1pJUUyjaEyO-yQ6ySNglI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.23.31.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:8b:0e:9d:d9:38:4d:e3:10:7e:1b:ef:0d:12:b5:7b:a1:0b:
b6:79:2f:be:66:8d:5b:d6:a6:29:44:4a:37:00:17:74:65:25:
ef:93:5d:5a:5a:8f:ab:4b:73:31:7f:ad:99:5c:8d:35:8e:79:
8e:9c:5b:9d:26:9b:05:0d:0e:72:52:93:65:2d:cc:ce:0b:ca:
bd:a2:a4:4a:86:a1:f2:a6:dc:ed:8b:ad:e7:55:81:49:2f:f3:
2f:40:6c:fd:d8:dd:40:d4:6a:61:78:c4:ca:cc:9b:c3:c4:6a:
97:6c:31:5e:bb:c2:7a:eb:1c:e5:74:f3:8e:03:c3:6a:ce:c3:
73:cb:07:a9:23:a7:73:51:6d:ad:85:71:7c:b9:34:6c:27:89:
78:f4:76:2c:f9:ad:39:6a:2e:fa:34:06:01:8f:cc:8b:51:f0:
9d:22:de:96:02:68:44:39:aa:91:7c:a8:41:7e:db:1d:34:c7:
96:ae:aa:f8:0a:ef:bb:62:ec:96:45:02:6e:c6:96:dc:00:c8:
b1:31:85:dd:61:58:37:59:4f:37:57:cb:eb:d3:64:f8:a5:ef:
96:bd:1c:f8:dd:a3:0b:4f:91:96:46:09:36:1f:6e:fc:6e:09:
42:12:ae:94:fc:9e:cb:fe:9f:2a:d0:ad:ff:bd:e2:9f:3c:35:
ea:06:e7:a2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYNewof1Cnl0LiQbeElJB88AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyZWQyZmJiNzIxM2ZiZjMyYWQ0YzA4N2Y4YjBiMjJjZWNl
ZjRmZWEwHhcNMjIwOTIxMDYzNTUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MTY3NmUxOTBkNjkyNTQ1MzI4ZGExMzIzYmVjOTBlYjI0OGQ4MjUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtQfQGJxiodtmWVrOHyHaPCBrDEpy
NIB4vsEo1o0F7cwUt2mLP0F0zso4N2deLdZHSAFSZ2DrxlGGWoUEX1mq32LCXs6q
wt8mroFc+qm7l4gkkYLL8Dx/cr4yDrZTEbo/ON9V0w5DdiRLm8TsWnnZwFJBaJLd
YmCbj0cDzC65PcnsMIPSgU/rf4o18IDsSokOCNPIad2HDfVCafP6rbSAN7w6fooj
U9mrSowjud1Q29u1kYvTh0XAddZUU7NjUQfIch7ixXOibRS1rwNyvb7hkzLassp2
aGJ3Lpq8AQDkn4++EjdxlXDnPNkBrjZruMbIpJK1mpBWOdVvf92mB0lqDwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIFnbhkNaSVFMo2hMjvskOskjYJSMB8GA1UdIwQY
MBaAFHLtL7tyE/vzKtTAh/iwsizs70/qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY3UwdnUzSVQtX01xMU1DSC1MQ3lMT3p2VC1vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy9lNWE4OTItMjNmNS00OWZhLWI2YTkt
YTY1MjMzYjNlOTc1LzEvZ1dkdUdRMXBKVVV5amFFeU8teVE2eVNOZ2xJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYy9lNWE4OTItMjNmNS00OWZhLWI2YTktYTY1MjMzYjNlOTc1
LzEvY3UwdnUzSVQtX01xMU1DSC1MQ3lMT3p2VC1vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRcfMA0G
CSqGSIb3DQEBCwUAA4IBAQDJiw6d2ThN4xB+G+8NErV7oQu2eS++Zo1b1qYpREo3
ABd0ZSXvk11aWo+rS3Mxf62ZXI01jnmOnFudJpsFDQ5yUpNlLczOC8q9oqRKhqHy
ptzti63nVYFJL/MvQGz92N1A1GpheMTKzJvDxGqXbDFeu8J66xzldPOOA8NqzsNz
ywepI6dzUW2thXF8uTRsJ4l49HYs+a05ai76NAYBj8yLUfCdIt6WAmhEOaqRfKhB
ftsdNMeWrqr4Cu+7YuyWRQJuxpbcAMixMYXdYVg3WU83V8vr02T4pe+WvRz43aML
T5GWRgk2H278bglCEq6U/J7L/p8q0K3/veKfPDXqBuei
-----END CERTIFICATE-----
Generated at Tue Apr 8 05:03:48 2025 by rpki-client