Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/a8f8e1-dce2-47ef-824e-bef1034edbe5/1/aDu9hOB_EGy3PaPm0LRYGigePLw.roa
File: aDu9hOB_EGy3PaPm0LRYGigePLw.roa (raw, json)
Hash identifier: XgUUrhDW408vM0nK5FBSOrhciXbAFcBzeY4qp51ySDQ=
Subject key identifier: 68:3B:BD:84:E0:7F:10:6C:B7:3D:A3:E6:D0:B4:58:1A:28:1E:3C:BC
Certificate issuer: /CN=5990c1553762ac9af57df9b58d9dc50af409c566
Certificate serial: 05630F0A
Authority key identifier: 59:90:C1:55:37:62:AC:9A:F5:7D:F9:B5:8D:9D:C5:0A:F4:09:C5:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WZDBVTdirJr1ffm1jZ3FCvQJxWY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/a8f8e1-dce2-47ef-824e-bef1034edbe5/1/aDu9hOB_EGy3PaPm0LRYGigePLw.roa
Signing time: Fri 03 Jun 2022 19:50:20 +0000
ROA not before: Fri 03 Jun 2022 19:50:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41227
IP address blocks: 193.29.17.0/24 maxlen: 24
193.29.24.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90377994 (0x5630f0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5990c1553762ac9af57df9b58d9dc50af409c566
Validity
Not Before: Jun 3 19:50:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=683bbd84e07f106cb73da3e6d0b4581a281e3cbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:0e:38:48:50:29:51:ec:c9:f8:fd:25:55:46:
63:a3:03:f7:3f:22:80:0c:d3:23:ef:a1:d5:73:c2:
3a:0b:44:85:e6:a1:79:ef:40:76:13:00:8f:3f:24:
d6:08:1d:08:9a:b9:5b:d3:a2:80:5c:88:c3:f4:99:
1c:f8:0c:1f:79:d4:8b:64:93:fc:2c:49:2e:d5:0e:
48:8f:a9:a8:dc:56:44:37:62:3b:79:84:09:da:3b:
80:f4:da:82:c5:26:06:cd:5a:bc:94:70:c6:18:55:
64:09:ab:fe:10:24:28:58:64:f2:c5:96:8a:2a:03:
44:dd:c2:c8:45:0e:6c:ab:83:01:6f:0d:56:24:27:
bc:35:5b:73:cb:63:81:79:dd:31:85:6f:62:ca:8f:
2c:bf:b9:93:7a:32:f9:57:8f:3a:74:8b:d2:02:d6:
6c:d6:a8:9c:35:7a:08:3b:b2:64:3d:c2:dd:fa:f9:
e5:4e:c9:0c:e1:ef:6e:d8:a1:2b:db:6d:5a:37:cc:
78:6c:89:ba:d2:90:0f:2b:27:fc:d2:95:93:77:18:
71:4c:c8:cd:60:89:47:da:8d:42:31:4f:90:43:04:
c6:4e:d2:7a:e7:e8:78:a8:0a:df:30:94:73:c2:08:
c9:57:14:8a:51:7c:46:91:95:3b:ab:00:c8:31:7e:
69:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:3B:BD:84:E0:7F:10:6C:B7:3D:A3:E6:D0:B4:58:1A:28:1E:3C:BC
X509v3 Authority Key Identifier:
keyid:59:90:C1:55:37:62:AC:9A:F5:7D:F9:B5:8D:9D:C5:0A:F4:09:C5:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WZDBVTdirJr1ffm1jZ3FCvQJxWY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/a8f8e1-dce2-47ef-824e-bef1034edbe5/1/aDu9hOB_EGy3PaPm0LRYGigePLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/a8f8e1-dce2-47ef-824e-bef1034edbe5/1/WZDBVTdirJr1ffm1jZ3FCvQJxWY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.29.17.0/24
193.29.24.0/24
Signature Algorithm: sha256WithRSAEncryption
63:31:53:f7:6d:d3:02:9b:9f:ba:a5:a8:42:a0:d6:15:c9:85:
e8:82:37:8d:25:c1:46:11:65:fe:a7:f9:fd:31:84:14:54:bb:
7d:b9:6a:ca:d4:c4:58:71:df:e4:59:4e:dd:8d:13:bc:51:c7:
2c:db:91:88:3c:ae:20:46:88:23:fb:ae:6d:ef:cc:22:74:43:
9c:d2:fe:39:6d:ec:46:ee:6d:37:2e:92:2d:92:94:ae:23:16:
2d:1e:2b:ec:93:a7:6c:c3:c8:91:09:af:52:fd:5e:cf:43:a6:
a3:45:53:64:d0:67:45:29:d0:38:ab:eb:8f:6b:5e:0d:16:05:
7c:bf:91:22:48:99:e2:8e:f3:ff:7f:5e:57:57:f0:dc:d4:68:
dd:a1:0b:bb:aa:de:5b:2d:04:43:3b:38:20:74:12:1d:df:cf:
67:ac:b3:d8:52:28:a6:f0:07:eb:08:7e:f5:77:19:89:76:00:
77:92:cf:64:a3:11:3c:37:f3:e6:dd:ca:02:88:5d:51:67:d8:
31:2f:1b:2b:04:72:7a:06:05:1d:6e:45:25:bd:3b:c3:0c:3d:
9f:a6:e2:29:6f:37:08:d4:66:77:9a:57:a4:79:a7:26:d2:ef:
98:24:d5:7b:d4:ef:83:f0:03:89:1c:80:cf:7f:91:8c:f2:91:
f0:d0:1f:0d
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBWMPCjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
OTkwYzE1NTM3NjJhYzlhZjU3ZGY5YjU4ZDlkYzUwYWY0MDljNTY2MB4XDTIyMDYw
MzE5NTAyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjgzYmJkODRlMDdm
MTA2Y2I3M2RhM2U2ZDBiNDU4MWEyODFlM2NiYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMkOOEhQKVHsyfj9JVVGY6MD9z8igAzTI++h1XPCOgtEheah
ee9AdhMAjz8k1ggdCJq5W9OigFyIw/SZHPgMH3nUi2ST/CxJLtUOSI+pqNxWRDdi
O3mECdo7gPTagsUmBs1avJRwxhhVZAmr/hAkKFhk8sWWiioDRN3CyEUObKuDAW8N
ViQnvDVbc8tjgXndMYVvYsqPLL+5k3oy+VePOnSL0gLWbNaonDV6CDuyZD3C3fr5
5U7JDOHvbtihK9ttWjfMeGyJutKQDysn/NKVk3cYcUzIzWCJR9qNQjFPkEMExk7S
eufoeKgK3zCUc8IIyVcUilF8RpGVO6sAyDF+adUCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRoO72E4H8QbLc9o+bQtFgaKB48vDAfBgNVHSMEGDAWgBRZkMFVN2KsmvV9
+bWNncUK9AnFZjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1daREJWVGRpckpyMWZmbTFqWjNGQ3ZRSnhXWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGEvYThmOGUxLWRjZTItNDdlZi04MjRlLWJlZjEwMzRlZGJlNS8x
L2FEdTloT0JfRUd5M1BhUG0wTFJZR2lnZVBMdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGEv
YThmOGUxLWRjZTItNDdlZi04MjRlLWJlZjEwMzRlZGJlNS8xL1daREJWVGRpckpy
MWZmbTFqWjNGQ3ZRSnhXWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAMEdEQMEAMEdGDANBgkqhkiG9w0B
AQsFAAOCAQEAYzFT923TApufuqWoQqDWFcmF6II3jSXBRhFl/qf5/TGEFFS7fblq
ytTEWHHf5FlO3Y0TvFHHLNuRiDyuIEaII/uube/MInRDnNL+OW3sRu5tNy6SLZKU
riMWLR4r7JOnbMPIkQmvUv1ez0Omo0VTZNBnRSnQOKvrj2teDRYFfL+RIkiZ4o7z
/39eV1fw3NRo3aELu6reWy0EQzs4IHQSHd/PZ6yz2FIopvAH6wh+9XcZiXYAd5LP
ZKMRPDfz5t3KAohdUWfYMS8bKwRyegYFHW5FJb07www9n6biKW83CNRmd5pXpHmn
JtLvmCTVe9Tvg/ADiRyAz3+RjPKR8NAfDQ==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:30:33 2025 by rpki-client