Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/EI6BosYzi2r0iwa_m2aycu4Ds8Q.roa
File: EI6BosYzi2r0iwa_m2aycu4Ds8Q.roa (raw, json)
Hash identifier: Gernhvfc3HpO06Wgcdu8GAjYgopyhTFiRrBnJDVNxLg=
Subject key identifier: 10:8E:81:A2:C6:33:8B:6A:F4:8B:06:BF:9B:66:B2:72:EE:03:B3:C4
Certificate issuer: /CN=5f1f213b8c792b7e013fa5041f5b89971e6f62d6
Certificate serial: 0183E503723A6503DF4771D5F3A65E9DDF94
Authority key identifier: 5F:1F:21:3B:8C:79:2B:7E:01:3F:A5:04:1F:5B:89:97:1E:6F:62:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xx8hO4x5K34BP6UEH1uJlx5vYtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/EI6BosYzi2r0iwa_m2aycu4Ds8Q.roa
Signing time: Mon 17 Oct 2022 08:15:51 +0000
ROA not before: Mon 17 Oct 2022 08:15:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 193.8.236.0/24 maxlen: 24
193.8.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e5:03:72:3a:65:03:df:47:71:d5:f3:a6:5e:9d:df:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f1f213b8c792b7e013fa5041f5b89971e6f62d6
Validity
Not Before: Oct 17 08:15:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=108e81a2c6338b6af48b06bf9b66b272ee03b3c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:13:9b:45:22:1d:33:f6:47:f7:50:c1:1d:ed:
f8:8b:28:ba:8d:34:40:30:f1:19:6a:e1:ab:cc:cd:
d8:2c:2b:c9:00:8a:79:b3:08:c7:6c:00:41:76:58:
86:59:5c:98:1b:a3:43:e4:76:32:f3:64:64:31:17:
d5:d8:f3:87:c6:32:80:19:78:a5:94:86:37:75:c8:
e0:b3:57:9f:cf:11:24:10:81:7b:6c:4b:9f:4a:0a:
48:b8:3c:50:1e:10:d6:5f:f6:a2:3e:f5:8a:75:f7:
76:5e:79:91:2e:69:82:dc:3b:83:d5:08:41:7f:42:
40:4c:cb:07:5a:d3:f3:f5:19:83:a1:f2:f0:8c:94:
11:59:ae:6a:f0:de:eb:91:68:54:ac:7a:a2:0f:4a:
73:bc:7d:62:42:17:1a:25:34:e4:b7:ab:d2:bf:8b:
96:d2:25:80:82:53:78:96:ed:76:26:0b:ea:3e:f1:
1f:c2:c8:7e:8f:14:6b:ec:07:02:27:60:e5:3a:da:
e9:d3:ff:04:38:d9:90:23:ac:b2:08:4a:4e:56:15:
3c:61:48:31:f3:8e:66:53:c3:8a:61:29:53:9e:3a:
b8:f5:b6:58:ca:1d:da:e6:c5:4f:b8:e2:b9:69:b7:
9c:80:c8:c5:6e:8f:9e:10:e1:35:3d:35:90:15:8b:
e4:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:8E:81:A2:C6:33:8B:6A:F4:8B:06:BF:9B:66:B2:72:EE:03:B3:C4
X509v3 Authority Key Identifier:
keyid:5F:1F:21:3B:8C:79:2B:7E:01:3F:A5:04:1F:5B:89:97:1E:6F:62:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xx8hO4x5K34BP6UEH1uJlx5vYtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/EI6BosYzi2r0iwa_m2aycu4Ds8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.236.0/23
Signature Algorithm: sha256WithRSAEncryption
35:73:4b:81:03:b8:f3:65:54:0b:41:c2:3d:09:fb:5d:c6:4a:
1d:8c:87:f7:54:51:81:c4:70:85:72:49:39:11:a1:bd:a0:18:
bf:40:03:47:6e:cd:eb:33:09:72:46:6a:28:9e:48:a5:ca:de:
44:9a:8b:2c:19:be:84:10:60:2f:33:14:79:bc:5e:84:51:bb:
2c:5e:24:83:81:61:36:5d:b3:f8:48:d7:33:17:ec:f0:dc:3d:
53:88:f8:d7:49:87:43:a5:6b:57:01:ca:89:ac:32:87:fa:61:
86:ae:2d:95:51:2c:5e:63:41:b2:96:ad:71:76:84:5b:42:b8:
15:72:eb:9e:38:af:e0:85:46:7f:b4:16:51:f6:56:83:ac:a3:
24:80:75:7b:ae:f8:ad:70:ee:4f:98:1c:61:42:a2:d8:aa:57:
3b:02:a1:73:fb:e9:3f:6d:e7:be:cc:40:4e:fb:73:ba:e3:4c:
7a:0c:2d:57:84:27:56:2a:a3:3f:52:f4:3f:21:ea:90:d3:ff:
52:65:9b:e4:59:70:3b:39:9d:51:a3:9c:b1:fd:5f:91:1e:52:
76:2d:f3:08:29:51:5b:e3:7e:69:90:41:30:d1:16:e1:4b:21:
ff:1c:40:4f:bf:83:cf:79:10:d7:e0:bb:12:20:3b:7a:a4:97:
36:76:6c:77
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYPlA3I6ZQPfR3HV86Zend+UMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVmMWYyMTNiOGM3OTJiN2UwMTNmYTUwNDFmNWI4OTk3MWU2
ZjYyZDYwHhcNMjIxMDE3MDgxNTUxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMDhlODFhMmM2MzM4YjZhZjQ4YjA2YmY5YjY2YjI3MmVlMDNiM2M0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2BObRSIdM/ZH91DBHe34iyi6jTRA
MPEZauGrzM3YLCvJAIp5swjHbABBdliGWVyYG6ND5HYy82RkMRfV2POHxjKAGXil
lIY3dcjgs1efzxEkEIF7bEufSgpIuDxQHhDWX/aiPvWKdfd2XnmRLmmC3DuD1QhB
f0JATMsHWtPz9RmDofLwjJQRWa5q8N7rkWhUrHqiD0pzvH1iQhcaJTTkt6vSv4uW
0iWAglN4lu12JgvqPvEfwsh+jxRr7AcCJ2DlOtrp0/8EONmQI6yyCEpOVhU8YUgx
845mU8OKYSlTnjq49bZYyh3a5sVPuOK5abecgMjFbo+eEOE1PTWQFYvkQQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBCOgaLGM4tq9IsGv5tmsnLuA7PEMB8GA1UdIwQY
MBaAFF8fITuMeSt+AT+lBB9biZceb2LWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHg4aE80eDVLMzRCUDZVRUgxdUpseDV2WXRZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zMmY4ZDMtNzMyOC00NWYwLWEwMDct
NDAyMjM4NjM4ZWEzLzEvRUk2Qm9zWXppMnIwaXdhX20yYXljdTREczhRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zMmY4ZDMtNzMyOC00NWYwLWEwMDctNDAyMjM4NjM4ZWEz
LzEvWHg4aE80eDVLMzRCUDZVRUgxdUpseDV2WXRZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwQjsMA0G
CSqGSIb3DQEBCwUAA4IBAQA1c0uBA7jzZVQLQcI9CftdxkodjIf3VFGBxHCFckk5
EaG9oBi/QANHbs3rMwlyRmoonkilyt5EmossGb6EEGAvMxR5vF6EUbssXiSDgWE2
XbP4SNczF+zw3D1TiPjXSYdDpWtXAcqJrDKH+mGGri2VUSxeY0Gylq1xdoRbQrgV
cuueOK/ghUZ/tBZR9laDrKMkgHV7rvitcO5PmBxhQqLYqlc7AqFz++k/bee+zEBO
+3O640x6DC1XhCdWKqM/UvQ/IeqQ0/9SZZvkWXA7OZ1Ro5yx/V+RHlJ2LfMIKVFb
435pkEEw0RbhSyH/HEBPv4PPeRDX4LsSIDt6pJc2dmx3
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:50:26 2025 by rpki-client