Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/55eb96-f121-4cf4-ac94-8477b6638f31/1/Y5umGqDR7I-8h1mt7Fcxkujdzw4.roa
File: Y5umGqDR7I-8h1mt7Fcxkujdzw4.roa (raw, json)
Hash identifier: Phs8wEfCM0JugwidDlxCP+URd35RYF0yZPEAHC3Aiek=
Subject key identifier: 63:9B:A6:1A:A0:D1:EC:8F:BC:87:59:AD:EC:57:31:92:E8:DD:CF:0E
Certificate issuer: /CN=d0012bf8f572484a6f6068562ca9919c6da5446f
Certificate serial: D02647
Authority key identifier: D0:01:2B:F8:F5:72:48:4A:6F:60:68:56:2C:A9:91:9C:6D:A5:44:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0AEr-PVySEpvYGhWLKmRnG2lRG8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/55eb96-f121-4cf4-ac94-8477b6638f31/1/Y5umGqDR7I-8h1mt7Fcxkujdzw4.roa
Signing time: Sat 01 Jan 2022 06:05:53 +0000
ROA not before: Sat 01 Jan 2022 06:05:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12329
IP address blocks: 194.24.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13641287 (0xd02647)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0012bf8f572484a6f6068562ca9919c6da5446f
Validity
Not Before: Jan 1 06:05:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=639ba61aa0d1ec8fbc8759adec573192e8ddcf0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:52:7a:1f:36:d4:86:d2:ac:26:05:4c:d2:8b:
16:30:ce:09:47:c3:d3:85:e1:da:48:6a:24:ae:59:
56:0d:ec:87:c9:2e:bd:ee:cd:c2:29:2a:dc:e3:0a:
69:9b:ca:68:f5:5a:cc:66:62:bf:d4:ea:00:10:a3:
26:c4:53:ee:09:19:64:0a:f5:ee:de:61:57:44:7d:
5c:3f:84:ce:b3:0d:ad:f9:c3:59:82:22:22:a6:9e:
06:01:00:d6:86:10:91:8e:e2:46:88:bd:e4:45:30:
73:82:2d:ec:7e:c1:67:46:f0:64:96:10:18:fa:31:
59:1a:5e:ab:ca:96:bf:f7:af:e5:6d:10:f0:6b:83:
b9:4c:aa:a8:68:14:27:4b:a8:ae:68:7a:6c:9e:6f:
3e:84:3c:27:ab:55:02:da:c9:ea:e2:41:50:5f:dd:
aa:74:1c:fc:6e:31:f9:c5:0c:a9:98:93:21:c9:61:
43:7a:e6:f9:89:14:3f:ce:fe:d0:34:39:84:41:16:
d7:64:f1:03:65:f4:de:5c:07:c5:6e:3d:c2:95:0e:
de:ae:fd:5d:50:62:31:01:2b:b0:0f:98:9b:ef:4f:
fe:2f:e3:51:4d:f2:c8:7b:da:13:14:04:41:bd:9e:
95:3a:d4:94:7b:84:45:bd:29:81:88:3c:56:51:9b:
c6:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:9B:A6:1A:A0:D1:EC:8F:BC:87:59:AD:EC:57:31:92:E8:DD:CF:0E
X509v3 Authority Key Identifier:
keyid:D0:01:2B:F8:F5:72:48:4A:6F:60:68:56:2C:A9:91:9C:6D:A5:44:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0AEr-PVySEpvYGhWLKmRnG2lRG8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/55eb96-f121-4cf4-ac94-8477b6638f31/1/Y5umGqDR7I-8h1mt7Fcxkujdzw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/55eb96-f121-4cf4-ac94-8477b6638f31/1/0AEr-PVySEpvYGhWLKmRnG2lRG8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.24.230.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:06:cb:50:29:14:70:3c:b1:6b:d9:7d:ba:92:ba:8a:56:e7:
63:9f:72:62:bc:cc:06:bc:d9:47:21:ea:22:4f:09:e2:86:9b:
06:d6:d3:ff:ad:ca:94:8b:8c:ab:bf:65:7d:77:42:16:24:3e:
e0:98:bc:49:27:40:d6:d7:68:7e:45:c6:83:19:01:a9:6e:7f:
80:48:e6:00:37:68:95:c0:68:80:08:3e:d8:54:49:ac:00:cf:
52:66:2e:ea:90:76:be:9f:32:1b:07:85:6c:9c:d9:3f:31:83:
ea:27:80:a9:35:d7:9e:28:0b:8b:5b:80:af:f3:9e:29:68:a0:
74:34:1d:ba:95:3f:9c:4e:53:3d:6e:a9:63:ec:55:2e:ad:85:
60:14:46:11:3d:57:fa:a5:94:9f:5a:88:be:34:69:03:e4:48:
ec:fc:be:67:ae:28:d3:5b:a2:fd:a1:ac:00:a0:d3:d4:92:b0:
85:22:8b:9a:f9:38:21:fa:88:a2:9e:1a:04:5d:34:df:6d:72:
38:1c:ae:81:06:2b:b9:43:85:a1:dd:e1:cc:1d:85:f2:73:99:
a2:96:d0:56:0a:8d:d2:61:45:99:4f:57:60:c9:fd:8b:c1:3d:
ce:b2:cd:1d:16:be:be:a7:52:d7:ab:5b:28:2a:25:00:cc:56:
d9:2d:61:39
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEANAmRzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
MDAxMmJmOGY1NzI0ODRhNmY2MDY4NTYyY2E5OTE5YzZkYTU0NDZmMB4XDTIyMDEw
MTA2MDU1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjM5YmE2MWFhMGQx
ZWM4ZmJjODc1OWFkZWM1NzMxOTJlOGRkY2YwZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK5Seh821IbSrCYFTNKLFjDOCUfD04Xh2khqJK5ZVg3sh8ku
ve7Nwikq3OMKaZvKaPVazGZiv9TqABCjJsRT7gkZZAr17t5hV0R9XD+EzrMNrfnD
WYIiIqaeBgEA1oYQkY7iRoi95EUwc4It7H7BZ0bwZJYQGPoxWRpeq8qWv/ev5W0Q
8GuDuUyqqGgUJ0uormh6bJ5vPoQ8J6tVAtrJ6uJBUF/dqnQc/G4x+cUMqZiTIclh
Q3rm+YkUP87+0DQ5hEEW12TxA2X03lwHxW49wpUO3q79XVBiMQErsA+Ym+9P/i/j
UU3yyHvaExQEQb2elTrUlHuERb0pgYg8VlGbxjsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRjm6YaoNHsj7yHWa3sVzGS6N3PDjAfBgNVHSMEGDAWgBTQASv49XJISm9g
aFYsqZGcbaVEbzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzBBRXItUFZ5U0VwdllHaFdMS21SbkcybFJHOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDQvNTVlYjk2LWYxMjEtNGNmNC1hYzk0LTg0NzdiNjYzOGYzMS8x
L1k1dW1HcURSN0ktOGgxbXQ3RmN4a3VqZHp3NC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDQv
NTVlYjk2LWYxMjEtNGNmNC1hYzk0LTg0NzdiNjYzOGYzMS8xLzBBRXItUFZ5U0Vw
dllHaFdMS21SbkcybFJHOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMIY5jANBgkqhkiG9w0BAQsFAAOC
AQEAHAbLUCkUcDyxa9l9upK6ilbnY59yYrzMBrzZRyHqIk8J4oabBtbT/63KlIuM
q79lfXdCFiQ+4Ji8SSdA1tdofkXGgxkBqW5/gEjmADdolcBogAg+2FRJrADPUmYu
6pB2vp8yGweFbJzZPzGD6ieAqTXXnigLi1uAr/OeKWigdDQdupU/nE5TPW6pY+xV
Lq2FYBRGET1X+qWUn1qIvjRpA+RI7Py+Z64o01ui/aGsAKDT1JKwhSKLmvk4IfqI
op4aBF00321yOByugQYruUOFod3hzB2F8nOZopbQVgqN0mFFmU9XYMn9i8E9zrLN
HRa+vqdS16tbKColAMxW2S1hOQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:13:17 2025 by rpki-client