Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/ad6af0-005f-43a3-aa9d-766d1f32433c/1/4bIuO5KHvKADKFtWiYN8W3HkZn4.roa
File: 4bIuO5KHvKADKFtWiYN8W3HkZn4.roa (raw, json)
Hash identifier: mGobuMcSxiK7AqnKmWAd+1lGz1/f16sYpZ1dksqcdcs=
Subject key identifier: E1:B2:2E:3B:92:87:BC:A0:03:28:5B:56:89:83:7C:5B:71:E4:66:7E
Certificate issuer: /CN=ec05986897d024e48c7cd25e1891c4208ff3bbb2
Certificate serial: 012E2331
Authority key identifier: EC:05:98:68:97:D0:24:E4:8C:7C:D2:5E:18:91:C4:20:8F:F3:BB:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7AWYaJfQJOSMfNJeGJHEII_zu7I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/ad6af0-005f-43a3-aa9d-766d1f32433c/1/4bIuO5KHvKADKFtWiYN8W3HkZn4.roa
Signing time: Sat 01 Jan 2022 13:02:30 +0000
ROA not before: Sat 01 Jan 2022 13:02:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12301
IP address blocks: 193.178.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19800881 (0x12e2331)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec05986897d024e48c7cd25e1891c4208ff3bbb2
Validity
Not Before: Jan 1 13:02:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e1b22e3b9287bca003285b5689837c5b71e4667e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:63:ec:d7:f1:0e:f9:f5:a4:5f:ad:55:12:1c:
61:a0:73:0b:e5:05:27:7f:b4:5e:bf:97:bf:8a:7d:
5a:dd:c3:34:f7:67:5f:08:74:94:14:c4:74:d7:5e:
c6:77:32:17:34:e5:45:b1:28:1e:4e:f0:4a:01:33:
8c:f6:82:6e:2f:1c:f0:98:f9:92:e8:8e:02:d7:d3:
27:14:dc:15:42:f8:10:8e:2d:42:10:a5:1e:8a:7d:
d1:45:5c:ae:0b:b7:a2:e7:31:d5:ad:c2:38:b6:5a:
4e:7d:93:c0:e8:e8:da:7f:e5:64:d4:9a:43:15:f2:
92:d7:b6:04:f2:87:8b:d8:1f:74:e9:43:a1:4a:8a:
e5:a5:7c:52:50:ed:8e:b0:5b:ea:33:19:9a:ba:7f:
d7:46:bb:8b:c4:0f:e3:d9:b8:f0:9c:9a:e5:d2:d8:
0f:0b:2d:d6:21:e2:eb:22:f5:23:4b:93:78:d4:91:
4f:e0:5a:31:cc:0b:a7:2a:f7:12:04:ed:a6:ef:e9:
f6:0f:a1:26:af:13:a5:00:ba:fc:c1:ba:09:1a:9a:
c8:a9:4f:27:21:a3:d7:4e:64:ad:0b:41:20:e2:72:
0e:71:7d:44:3e:cc:19:96:90:f5:c5:cb:a8:e0:76:
06:e5:39:d7:6e:e3:c4:39:b2:4c:83:3f:9f:5d:e7:
ad:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:B2:2E:3B:92:87:BC:A0:03:28:5B:56:89:83:7C:5B:71:E4:66:7E
X509v3 Authority Key Identifier:
keyid:EC:05:98:68:97:D0:24:E4:8C:7C:D2:5E:18:91:C4:20:8F:F3:BB:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7AWYaJfQJOSMfNJeGJHEII_zu7I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/ad6af0-005f-43a3-aa9d-766d1f32433c/1/4bIuO5KHvKADKFtWiYN8W3HkZn4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/ad6af0-005f-43a3-aa9d-766d1f32433c/1/7AWYaJfQJOSMfNJeGJHEII_zu7I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.168.0/24
Signature Algorithm: sha256WithRSAEncryption
98:63:e3:d4:ed:10:1a:1d:09:74:a2:3d:54:ee:8a:3e:f3:ec:
28:51:19:23:36:2d:4d:b5:71:93:e3:b6:79:db:4c:a6:7f:17:
c4:15:d6:af:38:a4:70:d0:b7:3d:ec:dd:8f:98:0c:66:db:b9:
30:ba:7c:b0:94:d9:b8:b8:26:b8:62:3a:c4:b0:2c:64:1a:68:
55:2e:a3:43:f1:3f:2f:3a:6a:ad:9b:2c:a6:4b:2c:48:a7:6f:
87:52:33:6c:1e:77:3a:80:ac:12:9b:02:74:f7:3b:a8:8b:0d:
0c:02:1d:74:c2:9c:b4:14:4b:2f:b5:db:9f:43:7a:d4:0d:65:
20:63:7d:5d:3d:46:57:e0:72:00:df:34:d5:a6:b0:8e:04:cd:
d5:66:05:53:fc:24:33:53:34:49:0f:57:53:49:d7:ab:8e:de:
6c:ab:73:1c:f9:16:ed:d6:a8:04:35:9e:5c:bf:99:22:b2:d4:
e5:23:b3:5c:ae:fd:3c:b0:bb:5f:92:ba:60:14:8a:35:f1:7f:
a6:8b:bc:a8:d2:15:67:78:20:c7:5f:f8:10:ca:12:f2:19:88:
ff:b0:90:22:0f:cc:6b:69:0e:1b:f8:13:f7:82:5e:a8:ed:89:
df:d5:05:29:dd:e2:f5:52:02:30:dd:a9:fc:3d:33:36:36:b0:
10:be:23:2d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAS4jMTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
YzA1OTg2ODk3ZDAyNGU0OGM3Y2QyNWUxODkxYzQyMDhmZjNiYmIyMB4XDTIyMDEw
MTEzMDIzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTFiMjJlM2I5Mjg3
YmNhMDAzMjg1YjU2ODk4MzdjNWI3MWU0NjY3ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANtj7NfxDvn1pF+tVRIcYaBzC+UFJ3+0Xr+Xv4p9Wt3DNPdn
Xwh0lBTEdNdexncyFzTlRbEoHk7wSgEzjPaCbi8c8Jj5kuiOAtfTJxTcFUL4EI4t
QhClHop90UVcrgu3oucx1a3COLZaTn2TwOjo2n/lZNSaQxXykte2BPKHi9gfdOlD
oUqK5aV8UlDtjrBb6jMZmrp/10a7i8QP49m48Jya5dLYDwst1iHi6yL1I0uTeNSR
T+BaMcwLpyr3EgTtpu/p9g+hJq8TpQC6/MG6CRqayKlPJyGj105krQtBIOJyDnF9
RD7MGZaQ9cXLqOB2BuU5127jxDmyTIM/n13nrU8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBThsi47koe8oAMoW1aJg3xbceRmfjAfBgNVHSMEGDAWgBTsBZhol9Ak5Ix8
0l4YkcQgj/O7sjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzdBV1lhSmZRSk9TTWZOSmVHSkhFSUlfenU3SS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDYvYWQ2YWYwLTAwNWYtNDNhMy1hYTlkLTc2NmQxZjMyNDMzYy8x
LzRiSXVPNUtIdktBREtGdFdpWU44VzNIa1puNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDYv
YWQ2YWYwLTAwNWYtNDNhMy1hYTlkLTc2NmQxZjMyNDMzYy8xLzdBV1lhSmZRSk9T
TWZOSmVHSkhFSUlfenU3SS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMGyqDANBgkqhkiG9w0BAQsFAAOC
AQEAmGPj1O0QGh0JdKI9VO6KPvPsKFEZIzYtTbVxk+O2edtMpn8XxBXWrzikcNC3
Pezdj5gMZtu5MLp8sJTZuLgmuGI6xLAsZBpoVS6jQ/E/LzpqrZsspkssSKdvh1Iz
bB53OoCsEpsCdPc7qIsNDAIddMKctBRLL7Xbn0N61A1lIGN9XT1GV+ByAN801aaw
jgTN1WYFU/wkM1M0SQ9XU0nXq47ebKtzHPkW7daoBDWeXL+ZIrLU5SOzXK79PLC7
X5K6YBSKNfF/pou8qNIVZ3ggx1/4EMoS8hmI/7CQIg/Ma2kOG/gT94JeqO2J39UF
Kd3i9VICMN2p/D0zNjawEL4jLQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:53:28 2025 by rpki-client