Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/t34WwwpMEvKU6G3uz_3wWjElKuo.roa
File: t34WwwpMEvKU6G3uz_3wWjElKuo.roa (raw, json)
Hash identifier: kHKNSbsnNi4w3t8l4DunQ5PESHqdzVxBT0mzJTRFKlI=
Subject key identifier: B7:7E:16:C3:0A:4C:12:F2:94:E8:6D:EE:CF:FD:F0:5A:31:25:2A:EA
Certificate issuer: /CN=76a75826e991225a429ff8a1e7ffdc80466420df
Certificate serial: 0986F787
Authority key identifier: 76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/t34WwwpMEvKU6G3uz_3wWjElKuo.roa
Signing time: Sat 01 Jan 2022 04:03:17 +0000
ROA not before: Sat 01 Jan 2022 04:03:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 553
IP address blocks: 153.96.83.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159840135 (0x986f787)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76a75826e991225a429ff8a1e7ffdc80466420df
Validity
Not Before: Jan 1 04:03:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b77e16c30a4c12f294e86deecffdf05a31252aea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:49:5a:d2:f2:1c:d3:73:b3:c0:f1:57:08:f4:
00:3e:f3:bf:76:9b:6d:13:bb:bc:3f:4b:91:05:c7:
35:5f:5b:22:d7:00:9c:94:ee:68:ca:50:74:fb:e3:
a9:3a:0e:b8:c0:4c:f8:ae:a0:e9:5e:f3:e0:a2:78:
51:1f:c8:45:bb:90:ca:de:0f:ab:14:1f:99:19:3b:
c8:2e:5a:a5:f7:31:1e:33:31:a7:a8:2a:78:5d:6b:
c8:d9:b4:e2:b4:4e:25:5c:a0:5a:51:7f:61:a0:83:
07:41:0d:c7:70:51:53:84:66:b0:7a:c7:a2:6e:8d:
06:08:b2:3d:fe:10:b3:95:08:cc:90:00:e6:e1:a2:
7c:69:86:b5:5d:f2:34:3d:95:e3:e9:2e:72:8b:3a:
59:de:17:21:ed:f4:1f:a6:b9:b6:8a:23:44:05:fa:
91:49:d9:9e:8a:55:81:80:61:85:66:35:24:1a:17:
b2:07:bf:17:e4:7b:13:c3:73:44:ef:68:82:94:cc:
9f:8a:a2:9d:c4:46:df:6f:b8:fe:ab:e0:ae:a2:0d:
a1:09:f3:2a:6f:54:59:fa:01:f8:0d:21:8c:01:e8:
fc:75:ce:ff:32:9c:f1:85:0d:8e:30:1e:7e:ef:5d:
e7:e9:a8:a4:97:2d:fa:1d:f5:a9:44:e8:be:01:4a:
01:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:7E:16:C3:0A:4C:12:F2:94:E8:6D:EE:CF:FD:F0:5A:31:25:2A:EA
X509v3 Authority Key Identifier:
keyid:76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/t34WwwpMEvKU6G3uz_3wWjElKuo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/dqdYJumRIlpCn_ih5__cgEZkIN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
153.96.83.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:1c:11:00:d3:25:10:9b:d4:50:b4:33:4d:d8:a4:3b:6c:06:
d6:ba:47:f6:6c:bf:d4:24:dd:c9:6b:91:ee:02:8a:4e:a5:d0:
89:fb:a3:51:cc:ca:cb:f4:ee:1c:f4:dd:2d:d6:2d:b3:e0:21:
55:6d:91:7d:ff:76:7a:7f:35:be:26:e8:7e:ae:81:48:dd:1d:
96:e7:a9:84:5d:76:a5:90:a7:b3:e0:fa:85:2c:a9:fd:8d:78:
89:dc:e9:aa:ac:ef:12:fe:08:56:84:63:3c:f3:c7:41:05:f8:
97:a1:5f:6b:08:d6:3e:7e:ac:94:45:86:2f:0a:32:98:31:c2:
d0:da:79:99:02:06:fb:78:9a:91:ac:31:8e:74:89:84:a3:67:
50:1f:23:62:4f:9b:5e:80:25:3c:06:3b:58:b9:61:75:dc:b3:
d1:0e:19:07:9b:60:2e:28:1d:d2:bd:25:90:62:3b:54:94:fb:
a9:6f:ef:1b:c1:98:08:1c:80:96:80:83:b6:7b:d1:34:fa:ee:
c4:e0:5c:de:6e:1b:57:18:ea:e6:8d:15:08:07:14:a6:07:df:
e5:15:97:c1:70:bd:9d:4b:ab:93:bc:09:6e:57:f5:65:84:98:
08:60:e3:dc:e3:6e:8b:6b:4b:5f:fe:5f:19:4d:80:1b:80:23:
50:8e:61:4b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECYb3hzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NmE3NTgyNmU5OTEyMjVhNDI5ZmY4YTFlN2ZmZGM4MDQ2NjQyMGRmMB4XDTIyMDEw
MTA0MDMxN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjc3ZTE2YzMwYTRj
MTJmMjk0ZTg2ZGVlY2ZmZGYwNWEzMTI1MmFlYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMJJWtLyHNNzs8DxVwj0AD7zv3abbRO7vD9LkQXHNV9bItcA
nJTuaMpQdPvjqToOuMBM+K6g6V7z4KJ4UR/IRbuQyt4PqxQfmRk7yC5apfcxHjMx
p6gqeF1ryNm04rROJVygWlF/YaCDB0ENx3BRU4RmsHrHom6NBgiyPf4Qs5UIzJAA
5uGifGmGtV3yND2V4+kucos6Wd4XIe30H6a5toojRAX6kUnZnopVgYBhhWY1JBoX
sge/F+R7E8NzRO9ogpTMn4qincRG32+4/qvgrqINoQnzKm9UWfoB+A0hjAHo/HXO
/zKc8YUNjjAefu9d5+mopJct+h31qUTovgFKAbcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS3fhbDCkwS8pTobe7P/fBaMSUq6jAfBgNVHSMEGDAWgBR2p1gm6ZEiWkKf
+KHn/9yARmQg3zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RxZFlKdW1SSWxwQ25faWg1X19jZ0Vaa0lOOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDkvMWQzM2NhLThkMWMtNDljMC1iZTk3LWFkOGZiZWFhOGRkOS8x
L3QzNFd3d3BNRXZLVTZHM3V6XzN3V2pFbEt1by5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDkv
MWQzM2NhLThkMWMtNDljMC1iZTk3LWFkOGZiZWFhOGRkOS8xL2RxZFlKdW1SSWxw
Q25faWg1X19jZ0Vaa0lOOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJlgUzANBgkqhkiG9w0BAQsFAAOC
AQEAPBwRANMlEJvUULQzTdikO2wG1rpH9my/1CTdyWuR7gKKTqXQifujUczKy/Tu
HPTdLdYts+AhVW2Rff92en81vibofq6BSN0dluephF12pZCns+D6hSyp/Y14idzp
qqzvEv4IVoRjPPPHQQX4l6FfawjWPn6slEWGLwoymDHC0Np5mQIG+3iakawxjnSJ
hKNnUB8jYk+bXoAlPAY7WLlhddyz0Q4ZB5tgLigd0r0lkGI7VJT7qW/vG8GYCByA
loCDtnvRNPruxOBc3m4bVxjq5o0VCAcUpgff5RWXwXC9nUurk7wJblf1ZYSYCGDj
3ONui2tLX/5fGU2AG4AjUI5hSw==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:39:17 2025 by rpki-client