Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/7e2f28-5cae-4e6f-a5f0-01bb5fd534f5/1/aHNCvf8eClQ4qMKgRLeMdTXAUuM.roa
File: aHNCvf8eClQ4qMKgRLeMdTXAUuM.roa (raw, json)
Hash identifier: kIF+TWh3bn4sPuOFei+PBNezCL7GbDm2KIaoYbSwKqY=
Subject key identifier: 68:73:42:BD:FF:1E:0A:54:38:A8:C2:A0:44:B7:8C:75:35:C0:52:E3
Certificate issuer: /CN=435e41960d590e99804e90b9af0365584c712c72
Certificate serial: 03DC8C96
Authority key identifier: 43:5E:41:96:0D:59:0E:99:80:4E:90:B9:AF:03:65:58:4C:71:2C:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q15Blg1ZDpmATpC5rwNlWExxLHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/7e2f28-5cae-4e6f-a5f0-01bb5fd534f5/1/aHNCvf8eClQ4qMKgRLeMdTXAUuM.roa
Signing time: Sat 01 Jan 2022 05:58:11 +0000
ROA not before: Sat 01 Jan 2022 05:58:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60887
IP address blocks: 185.196.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64785558 (0x3dc8c96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=435e41960d590e99804e90b9af0365584c712c72
Validity
Not Before: Jan 1 05:58:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=687342bdff1e0a5438a8c2a044b78c7535c052e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:85:de:b4:da:89:ec:24:27:b1:a9:5a:97:9d:
ae:2d:83:f8:b4:d3:79:53:eb:7d:a1:ba:c7:ca:bf:
4e:8f:76:2d:d3:e6:45:b3:69:b4:ff:5a:fc:fd:da:
ed:39:37:55:cf:ba:3e:46:d3:65:85:cf:f8:f8:34:
f9:e7:56:0c:de:46:55:aa:d4:ab:12:d0:df:2e:a5:
59:8f:bb:97:ef:12:bd:9e:cc:63:0e:a3:42:63:ea:
e2:a6:24:47:dd:20:a1:86:96:66:5a:e1:ec:3d:44:
8c:96:d7:c5:0a:9a:f4:6a:43:c5:8f:18:e9:db:f9:
2f:b3:cd:b7:ac:a7:58:51:59:86:9d:f7:65:8f:4c:
42:ab:00:62:6a:4b:be:12:7c:1e:b6:d4:5a:01:d4:
6d:1e:a4:bb:b3:ce:0d:ba:92:e4:c9:60:9f:27:d8:
5a:40:4d:16:4e:82:e4:31:4e:b5:3c:2f:ee:f0:67:
42:71:ab:8f:e9:b3:b7:70:84:f9:7c:48:d4:e1:1d:
be:07:04:83:86:81:b6:a0:ee:7f:af:8a:c7:80:71:
1d:b3:03:d9:3f:ad:f6:20:92:13:83:b5:50:b4:8b:
ee:90:1a:4c:61:d4:6f:b1:11:3e:53:40:49:8e:f8:
84:6e:e9:74:7d:14:ad:f5:f0:1d:84:70:e4:25:fa:
2d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:73:42:BD:FF:1E:0A:54:38:A8:C2:A0:44:B7:8C:75:35:C0:52:E3
X509v3 Authority Key Identifier:
keyid:43:5E:41:96:0D:59:0E:99:80:4E:90:B9:AF:03:65:58:4C:71:2C:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q15Blg1ZDpmATpC5rwNlWExxLHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/7e2f28-5cae-4e6f-a5f0-01bb5fd534f5/1/aHNCvf8eClQ4qMKgRLeMdTXAUuM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/7e2f28-5cae-4e6f-a5f0-01bb5fd534f5/1/Q15Blg1ZDpmATpC5rwNlWExxLHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.148.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:ae:1b:32:ef:31:ab:77:0d:b5:f3:b7:06:8e:c4:7e:18:9e:
f8:4b:76:69:cc:48:7c:d0:4f:a3:c8:8f:cc:65:1d:c1:ee:39:
93:89:5d:40:f4:88:94:de:fd:be:c8:b6:62:97:88:96:6d:92:
8f:d4:da:2a:94:b5:82:77:9f:b3:2b:87:51:5d:96:04:e2:8c:
2f:3e:8a:ec:34:09:81:cf:60:49:0a:87:f7:c9:70:70:70:2f:
20:0b:c2:36:e8:77:d3:55:49:fe:10:67:e2:17:21:4e:fd:a0:
15:bd:94:7e:75:c6:6d:6b:3e:11:81:90:f1:62:3f:4c:a1:e4:
fd:b4:37:d1:bb:e6:aa:4c:84:49:58:8e:81:9f:13:a5:88:22:
39:3d:0f:dd:fd:4d:b5:28:2b:2d:1c:2f:7b:ab:b0:d4:44:6a:
de:cc:71:33:a2:c4:78:fb:ea:b4:ad:16:05:d2:82:af:90:74:
af:78:69:61:34:55:70:0a:0e:62:09:93:88:a5:24:30:78:b0:
d0:06:fe:69:e8:af:b2:15:83:0b:a9:65:50:84:8c:7f:23:b0:
6c:c2:ad:18:79:32:74:3b:22:58:61:dd:d3:8e:1c:0d:a2:8b:
e2:4e:b1:3b:0d:29:5f:c7:7e:1b:3f:37:d9:33:5a:66:0b:e0:
3c:5f:e2:41
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA9yMljANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
MzVlNDE5NjBkNTkwZTk5ODA0ZTkwYjlhZjAzNjU1ODRjNzEyYzcyMB4XDTIyMDEw
MTA1NTgxMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjg3MzQyYmRmZjFl
MGE1NDM4YThjMmEwNDRiNzhjNzUzNWMwNTJlMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALaF3rTaiewkJ7GpWpedri2D+LTTeVPrfaG6x8q/To92LdPm
RbNptP9a/P3a7Tk3Vc+6PkbTZYXP+Pg0+edWDN5GVarUqxLQ3y6lWY+7l+8SvZ7M
Yw6jQmPq4qYkR90goYaWZlrh7D1EjJbXxQqa9GpDxY8Y6dv5L7PNt6ynWFFZhp33
ZY9MQqsAYmpLvhJ8HrbUWgHUbR6ku7PODbqS5MlgnyfYWkBNFk6C5DFOtTwv7vBn
QnGrj+mzt3CE+XxI1OEdvgcEg4aBtqDuf6+Kx4BxHbMD2T+t9iCSE4O1ULSL7pAa
TGHUb7ERPlNASY74hG7pdH0UrfXwHYRw5CX6LTcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRoc0K9/x4KVDiowqBEt4x1NcBS4zAfBgNVHSMEGDAWgBRDXkGWDVkOmYBO
kLmvA2VYTHEscjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ExNUJsZzFaRHBtQVRwQzVyd05sV0V4eExISS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDgvN2UyZjI4LTVjYWUtNGU2Zi1hNWYwLTAxYmI1ZmQ1MzRmNS8x
L2FITkN2ZjhlQ2xRNHFNS2dSTGVNZFRYQVV1TS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDgv
N2UyZjI4LTVjYWUtNGU2Zi1hNWYwLTAxYmI1ZmQ1MzRmNS8xL1ExNUJsZzFaRHBt
QVRwQzVyd05sV0V4eExISS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnElDANBgkqhkiG9w0BAQsFAAOC
AQEAba4bMu8xq3cNtfO3Bo7Efhie+Et2acxIfNBPo8iPzGUdwe45k4ldQPSIlN79
vsi2YpeIlm2Sj9TaKpS1gnefsyuHUV2WBOKMLz6K7DQJgc9gSQqH98lwcHAvIAvC
Nuh301VJ/hBn4hchTv2gFb2UfnXGbWs+EYGQ8WI/TKHk/bQ30bvmqkyESViOgZ8T
pYgiOT0P3f1NtSgrLRwve6uw1ERq3sxxM6LEePvqtK0WBdKCr5B0r3hpYTRVcAoO
YgmTiKUkMHiw0Ab+aeivshWDC6llUISMfyOwbMKtGHkydDsiWGHd044cDaKL4k6x
Ow0pX8d+Gz832TNaZgvgPF/iQQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:30:22 2025 by rpki-client