Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/090638-8a99-4063-93a0-6e9938972708/1/sqEJIvUlmqhsOgal5AR8UWmoUXg.roa
File: sqEJIvUlmqhsOgal5AR8UWmoUXg.roa (raw, json)
Hash identifier: J2VPGYl2DvorlPXfPXjMRF7+p37XOjfrC8gH8RKw6T8=
Subject key identifier: B2:A1:09:22:F5:25:9A:A8:6C:3A:06:A5:E4:04:7C:51:69:A8:51:78
Certificate issuer: /CN=48f47a31172fb549c696132880c6824fb0777b55
Certificate serial: 329FD428
Authority key identifier: 48:F4:7A:31:17:2F:B5:49:C6:96:13:28:80:C6:82:4F:B0:77:7B:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SPR6MRcvtUnGlhMogMaCT7B3e1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/090638-8a99-4063-93a0-6e9938972708/1/sqEJIvUlmqhsOgal5AR8UWmoUXg.roa
Signing time: Sat 01 Jan 2022 15:03:35 +0000
ROA not before: Sat 01 Jan 2022 15:03:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49509
IP address blocks: 185.79.80.0/23 maxlen: 24
2a02:23e9::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 849335336 (0x329fd428)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48f47a31172fb549c696132880c6824fb0777b55
Validity
Not Before: Jan 1 15:03:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b2a10922f5259aa86c3a06a5e4047c5169a85178
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:5b:81:99:5e:41:c2:9f:74:84:5c:03:2c:10:
6e:f3:41:f1:49:30:61:c7:f2:88:20:68:93:1f:28:
90:46:1e:78:dd:9c:c8:53:12:f0:9e:4b:00:ab:d9:
3f:9d:0c:f0:17:58:ee:0d:b7:f4:71:5d:fe:75:c0:
40:eb:da:17:a0:ba:69:b1:69:6f:d7:97:cd:0c:32:
88:ec:7f:e2:9d:91:75:83:96:1a:d9:91:ee:c4:48:
d5:53:5b:12:41:59:93:2d:e4:bf:6b:37:e4:28:61:
4e:83:e9:a5:35:8e:97:bc:11:c2:9d:11:49:b1:39:
b7:dc:8e:91:ad:46:72:a6:9c:8c:17:71:43:46:ee:
97:81:34:d6:8c:20:57:38:b3:a8:ca:5e:0b:9b:35:
b6:55:41:ca:af:6a:ec:ab:e8:a6:33:f7:51:bc:f9:
d1:22:3a:c6:56:67:1e:59:41:e8:a3:4c:fd:d3:66:
c2:49:76:c8:4b:5b:02:64:6e:88:55:5f:a1:6b:75:
49:28:21:5b:26:40:df:64:9c:86:e7:14:49:2c:b6:
31:c7:23:50:42:68:33:02:65:85:6a:0c:4b:53:99:
d1:59:45:b4:c4:f7:7d:ab:e5:e9:ce:61:08:a2:90:
09:c7:4b:e6:a8:67:52:4e:82:34:66:58:a6:55:5a:
32:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:A1:09:22:F5:25:9A:A8:6C:3A:06:A5:E4:04:7C:51:69:A8:51:78
X509v3 Authority Key Identifier:
keyid:48:F4:7A:31:17:2F:B5:49:C6:96:13:28:80:C6:82:4F:B0:77:7B:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SPR6MRcvtUnGlhMogMaCT7B3e1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/090638-8a99-4063-93a0-6e9938972708/1/sqEJIvUlmqhsOgal5AR8UWmoUXg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/090638-8a99-4063-93a0-6e9938972708/1/SPR6MRcvtUnGlhMogMaCT7B3e1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.79.80.0/23
IPv6:
2a02:23e9::/32
Signature Algorithm: sha256WithRSAEncryption
84:14:09:8f:0e:30:a7:1e:43:62:59:28:ae:64:db:83:dc:50:
16:a2:e8:5d:80:5c:fc:29:f4:0f:81:2c:c1:a9:b8:c9:fe:36:
c1:7f:d7:6c:9d:8f:af:e4:c3:94:4f:54:50:7d:98:e7:22:e2:
1d:e2:61:49:09:90:a8:2b:69:5b:f8:44:b5:92:65:2f:b7:0d:
2c:01:b5:c8:7a:8a:8d:26:ca:db:1f:17:a5:a1:92:84:c3:c0:
a7:0a:22:78:3d:a2:54:a7:8c:2e:0d:f0:b3:99:17:a8:44:0b:
ad:72:af:b5:be:14:5b:22:06:ac:74:c9:47:8b:97:a5:3f:a0:
72:1a:3b:e2:a8:28:c6:74:0c:ea:86:14:1d:af:7f:57:bc:56:
48:25:ff:98:fe:f2:1d:f9:43:4a:96:68:e0:2a:88:9e:97:ea:
35:91:53:8a:19:2e:50:5e:f3:63:d1:8e:6e:f6:e8:b5:fd:94:
a3:46:60:ae:22:37:cc:66:8c:75:ce:fb:21:71:84:19:8f:ad:
71:15:e6:06:19:19:9d:ad:c9:ba:19:1d:6f:d0:b3:05:4b:b1:
4b:b5:d4:c9:15:a9:ef:10:38:b8:31:17:74:8c:75:ea:7a:d0:
d1:c7:36:03:56:41:76:24:0e:53:b6:aa:92:cd:e1:8a:d1:5f:
20:f0:f2:49
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEMp/UKDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
OGY0N2EzMTE3MmZiNTQ5YzY5NjEzMjg4MGM2ODI0ZmIwNzc3YjU1MB4XDTIyMDEw
MTE1MDMzNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjJhMTA5MjJmNTI1
OWFhODZjM2EwNmE1ZTQwNDdjNTE2OWE4NTE3ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANVbgZleQcKfdIRcAywQbvNB8UkwYcfyiCBokx8okEYeeN2c
yFMS8J5LAKvZP50M8BdY7g239HFd/nXAQOvaF6C6abFpb9eXzQwyiOx/4p2RdYOW
GtmR7sRI1VNbEkFZky3kv2s35ChhToPppTWOl7wRwp0RSbE5t9yOka1GcqacjBdx
Q0bul4E01owgVzizqMpeC5s1tlVByq9q7KvopjP3Ubz50SI6xlZnHllB6KNM/dNm
wkl2yEtbAmRuiFVfoWt1SSghWyZA32SchucUSSy2MccjUEJoMwJlhWoMS1OZ0VlF
tMT3favl6c5hCKKQCcdL5qhnUk6CNGZYplVaMh8CAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBSyoQki9SWaqGw6BqXkBHxRaahReDAfBgNVHSMEGDAWgBRI9HoxFy+1ScaW
EyiAxoJPsHd7VTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1NQUjZNUmN2dFVuR2xoTW9nTWFDVDdCM2UxVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDEvMDkwNjM4LThhOTktNDA2My05M2EwLTZlOTkzODk3MjcwOC8x
L3NxRUpJdlVsbXFoc09nYWw1QVI4VVdtb1VYZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDEv
MDkwNjM4LThhOTktNDA2My05M2EwLTZlOTkzODk3MjcwOC8xL1NQUjZNUmN2dFVu
R2xoTW9nTWFDVDdCM2UxVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAblPUDANBAIAAjAHAwUAKgIj6TAN
BgkqhkiG9w0BAQsFAAOCAQEAhBQJjw4wpx5DYlkormTbg9xQFqLoXYBc/Cn0D4Es
wam4yf42wX/XbJ2Pr+TDlE9UUH2Y5yLiHeJhSQmQqCtpW/hEtZJlL7cNLAG1yHqK
jSbK2x8XpaGShMPApwoieD2iVKeMLg3ws5kXqEQLrXKvtb4UWyIGrHTJR4uXpT+g
cho74qgoxnQM6oYUHa9/V7xWSCX/mP7yHflDSpZo4CqInpfqNZFTihkuUF7zY9GO
bvbotf2Uo0ZgriI3zGaMdc77IXGEGY+tcRXmBhkZna3Juhkdb9CzBUuxS7XUyRWp
7xA4uDEXdIx16nrQ0cc2A1ZBdiQOU7aqks3hitFfIPDySQ==
-----END CERTIFICATE-----
Generated at Mon Apr 21 02:08:57 2025 by rpki-client