Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/71338d-e603-4926-a0f4-e22c6ed78485/1/hj0rPdtKQLviru-h9y9iWhrBrFU.roa
File: hj0rPdtKQLviru-h9y9iWhrBrFU.roa (raw, json)
Hash identifier: W+7+56kq2xqnhbIKsPplNuoLvb0seu1DG7+VwUyvwG0=
Subject key identifier: 86:3D:2B:3D:DB:4A:40:BB:E2:AE:EF:A1:F7:2F:62:5A:1A:C1:AC:55
Certificate issuer: /CN=36b100e1f6f3ffe6e35e987e0d0195b7993a8d33
Certificate serial: 018450182E4E5C380FFCA6C78367F93CB588
Authority key identifier: 36:B1:00:E1:F6:F3:FF:E6:E3:5E:98:7E:0D:01:95:B7:99:3A:8D:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NrEA4fbz_-bjXph-DQGVt5k6jTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/71338d-e603-4926-a0f4-e22c6ed78485/1/hj0rPdtKQLviru-h9y9iWhrBrFU.roa
Signing time: Mon 07 Nov 2022 03:17:52 +0000
ROA not before: Mon 07 Nov 2022 03:17:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47957
IP address blocks: 194.1.183.0/24 maxlen: 24
91.208.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:50:18:2e:4e:5c:38:0f:fc:a6:c7:83:67:f9:3c:b5:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36b100e1f6f3ffe6e35e987e0d0195b7993a8d33
Validity
Not Before: Nov 7 03:17:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=863d2b3ddb4a40bbe2aeefa1f72f625a1ac1ac55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:88:b8:9e:76:23:35:5f:09:25:10:8e:ed:32:
90:59:8a:e3:58:2c:33:06:db:f9:c8:ba:02:37:05:
3c:79:7e:d9:46:39:ce:0b:06:21:a4:d0:f5:92:56:
a4:dc:33:fb:99:2f:84:ab:4d:d5:7e:9f:a2:48:22:
3b:ef:c1:47:4d:2c:16:58:76:7b:86:08:b1:94:eb:
59:73:3b:20:ab:6b:99:81:2d:8e:d4:5c:fb:bf:00:
88:ab:5c:5e:10:b7:c7:57:e7:91:8e:4e:6b:62:05:
92:b2:f4:12:f9:41:5d:af:ef:02:9d:10:ba:54:83:
12:85:ae:a2:4b:6f:b8:db:96:f8:d3:f7:d7:16:83:
de:cd:33:50:f3:3a:9b:30:01:9f:3e:62:c0:24:0b:
44:3c:a0:d5:ff:d4:22:44:7b:f0:0d:84:14:c0:8b:
e0:62:0b:e0:c2:48:c2:a6:93:32:2d:4d:f2:b9:4a:
0b:f4:7a:14:64:22:f0:9b:a9:44:a6:2a:85:06:a3:
48:78:54:30:e5:6f:ec:a0:a0:fe:f1:8a:74:48:01:
fe:dd:c6:59:5f:96:8d:49:aa:a7:df:1c:8b:ac:ca:
2c:84:18:a4:22:fc:d5:f5:ce:8c:c7:7b:fd:da:ad:
9e:d6:7a:f9:6e:ca:b8:14:b4:68:21:47:c5:7a:eb:
71:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:3D:2B:3D:DB:4A:40:BB:E2:AE:EF:A1:F7:2F:62:5A:1A:C1:AC:55
X509v3 Authority Key Identifier:
keyid:36:B1:00:E1:F6:F3:FF:E6:E3:5E:98:7E:0D:01:95:B7:99:3A:8D:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NrEA4fbz_-bjXph-DQGVt5k6jTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/71338d-e603-4926-a0f4-e22c6ed78485/1/hj0rPdtKQLviru-h9y9iWhrBrFU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/71338d-e603-4926-a0f4-e22c6ed78485/1/NrEA4fbz_-bjXph-DQGVt5k6jTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.51.0/24
194.1.183.0/24
Signature Algorithm: sha256WithRSAEncryption
21:3a:28:66:45:b8:47:52:20:68:8a:a9:03:df:4f:a7:4b:99:
50:88:69:8f:cf:fd:a8:50:b2:a1:0b:b0:a9:69:76:fe:eb:f2:
8c:53:70:c6:8c:4e:5a:0a:3e:a7:65:4b:75:ba:0f:41:0c:aa:
8c:a0:64:d7:84:ee:84:39:4a:3c:ac:dc:cd:29:a3:8f:b5:38:
44:b5:ef:ab:a8:7c:a9:b6:e6:52:94:9a:73:0d:e8:27:95:c9:
ad:95:c6:6f:31:0f:98:d8:8c:5e:9b:91:d0:a3:41:93:5e:ff:
71:05:a4:03:e4:f1:84:a9:a2:83:d3:b1:47:be:b5:6f:f4:57:
0b:7a:ce:1e:b1:58:5a:76:e9:b4:6d:94:67:4e:fe:8e:e9:c4:
b3:98:99:1f:54:41:5c:81:52:5e:77:54:69:5c:1a:17:64:dd:
a5:91:64:ac:19:ca:42:e5:79:d6:85:2a:51:a1:b0:a6:80:f0:
16:c5:d7:e2:d2:9e:7a:a7:1c:fb:a9:cb:da:db:f2:88:bc:95:
53:fd:39:54:d6:f8:b6:8e:aa:31:ea:94:d3:28:65:69:d2:8b:
bd:9a:63:f9:bc:1d:03:a9:08:03:d2:82:3a:87:aa:0f:f4:df:
45:10:fe:70:2d:22:43:71:0e:b9:fc:e8:82:3d:ef:52:e2:9d:
ee:e9:c1:aa
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYRQGC5OXDgP/KbHg2f5PLWIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2YjEwMGUxZjZmM2ZmZTZlMzVlOTg3ZTBkMDE5NWI3OTkz
YThkMzMwHhcNMjIxMTA3MDMxNzUyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NjNkMmIzZGRiNGE0MGJiZTJhZWVmYTFmNzJmNjI1YTFhYzFhYzU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk4i4nnYjNV8JJRCO7TKQWYrjWCwz
Btv5yLoCNwU8eX7ZRjnOCwYhpND1klak3DP7mS+Eq03Vfp+iSCI778FHTSwWWHZ7
hgixlOtZczsgq2uZgS2O1Fz7vwCIq1xeELfHV+eRjk5rYgWSsvQS+UFdr+8CnRC6
VIMSha6iS2+425b40/fXFoPezTNQ8zqbMAGfPmLAJAtEPKDV/9QiRHvwDYQUwIvg
YgvgwkjCppMyLU3yuUoL9HoUZCLwm6lEpiqFBqNIeFQw5W/soKD+8Yp0SAH+3cZZ
X5aNSaqn3xyLrMoshBikIvzV9c6Mx3v92q2e1nr5bsq4FLRoIUfFeutxdwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFIY9Kz3bSkC74q7vofcvYloawaxVMB8GA1UdIwQY
MBaAFDaxAOH28//m416Yfg0BlbeZOo0zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnJFQTRmYnpfLWJqWHBoLURRR1Z0NWs2alRNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS83MTMzOGQtZTYwMy00OTI2LWEwZjQt
ZTIyYzZlZDc4NDg1LzEvaGowclBkdEtRTHZpcnUtaDl5OWlXaHJCckZVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS83MTMzOGQtZTYwMy00OTI2LWEwZjQtZTIyYzZlZDc4NDg1
LzEvTnJFQTRmYnpfLWJqWHBoLURRR1Z0NWs2alRNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW9AzAwQA
wgG3MA0GCSqGSIb3DQEBCwUAA4IBAQAhOihmRbhHUiBoiqkD30+nS5lQiGmPz/2o
ULKhC7CpaXb+6/KMU3DGjE5aCj6nZUt1ug9BDKqMoGTXhO6EOUo8rNzNKaOPtThE
te+rqHyptuZSlJpzDegnlcmtlcZvMQ+Y2Ixem5HQo0GTXv9xBaQD5PGEqaKD07FH
vrVv9FcLes4esVhadum0bZRnTv6O6cSzmJkfVEFcgVJed1RpXBoXZN2lkWSsGcpC
5XnWhSpRobCmgPAWxdfi0p56pxz7qcva2/KIvJVT/TlU1vi2jqox6pTTKGVp0ou9
mmP5vB0DqQgD0oI6h6oP9N9FEP5wLSJDcQ65/OiCPe9S4p3u6cGq
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:48:26 2025 by rpki-client