Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/61687c-1182-4b08-948e-1c86c57e2e9f/1/do2dYsImxTT4nb7DyBNgu5j2jdI.roa
File: do2dYsImxTT4nb7DyBNgu5j2jdI.roa (raw, json)
Hash identifier: j0rZyHKm1Tq3rKKapXmaA/4eeclf9TN9UolrFgqHnOw=
Subject key identifier: 76:8D:9D:62:C2:26:C5:34:F8:9D:BE:C3:C8:13:60:BB:98:F6:8D:D2
Certificate issuer: /CN=126ffc0096c693bbc420eeb8ccef34bc7b538743
Certificate serial: 010B477B
Authority key identifier: 12:6F:FC:00:96:C6:93:BB:C4:20:EE:B8:CC:EF:34:BC:7B:53:87:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Em_8AJbGk7vEIO64zO80vHtTh0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/61687c-1182-4b08-948e-1c86c57e2e9f/1/do2dYsImxTT4nb7DyBNgu5j2jdI.roa
Signing time: Sat 01 Jan 2022 06:02:47 +0000
ROA not before: Sat 01 Jan 2022 06:02:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8400
IP address blocks: 193.203.18.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17516411 (0x10b477b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=126ffc0096c693bbc420eeb8ccef34bc7b538743
Validity
Not Before: Jan 1 06:02:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=768d9d62c226c534f89dbec3c81360bb98f68dd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:7c:ee:c5:ec:4d:d0:94:cb:44:d4:b6:f2:7b:
c8:38:a7:68:4c:1c:f5:29:25:5d:5d:81:3d:6b:da:
13:18:1f:e0:32:56:fe:45:a2:66:d8:7d:a7:85:5a:
27:1f:55:f9:20:cb:71:16:7e:e9:25:4d:9b:ff:f2:
9a:bb:14:fe:19:26:07:84:a0:1c:0e:ed:fa:9f:1f:
56:30:ed:44:7a:3f:db:d7:77:4e:37:f7:cb:39:39:
18:3d:96:67:42:6b:f5:0a:6c:36:df:fd:44:4b:a1:
49:34:58:0e:5b:21:7b:ad:8b:f1:9e:c1:60:ae:b2:
2e:c6:f0:94:57:99:ed:e9:99:78:f6:5f:ab:f8:3f:
6a:28:21:0e:d3:c1:85:34:f7:13:99:d5:e0:d5:2b:
d0:ad:a5:fc:ba:88:e2:f2:db:4f:39:18:ae:22:3e:
cd:57:86:ea:69:74:d9:5b:30:e9:45:da:51:4d:64:
cc:41:04:92:ec:cf:e7:41:0e:35:c7:08:c0:cc:9a:
3d:17:af:87:bd:09:7f:a8:cd:1a:a3:02:5a:8d:26:
cf:2b:1a:4a:05:2e:d4:2b:f9:4e:3e:88:53:4b:7c:
98:63:67:6c:84:df:99:21:31:4f:94:60:68:ec:6a:
fd:76:db:42:45:55:bd:5d:02:13:b5:00:7c:30:02:
6a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:8D:9D:62:C2:26:C5:34:F8:9D:BE:C3:C8:13:60:BB:98:F6:8D:D2
X509v3 Authority Key Identifier:
keyid:12:6F:FC:00:96:C6:93:BB:C4:20:EE:B8:CC:EF:34:BC:7B:53:87:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Em_8AJbGk7vEIO64zO80vHtTh0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/61687c-1182-4b08-948e-1c86c57e2e9f/1/do2dYsImxTT4nb7DyBNgu5j2jdI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/61687c-1182-4b08-948e-1c86c57e2e9f/1/Em_8AJbGk7vEIO64zO80vHtTh0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.203.18.0/23
Signature Algorithm: sha256WithRSAEncryption
56:ef:11:e9:81:c7:90:6b:f9:56:2a:d6:86:d0:f7:48:54:9b:
78:98:26:a8:b0:1b:e5:91:cd:ed:18:17:c0:d8:89:1e:63:28:
a7:de:46:f4:4a:dd:77:3e:0b:52:4f:19:c4:86:ec:23:7d:55:
e2:7e:a2:8f:11:27:b5:9d:11:55:5a:bc:b6:a6:8a:c6:8e:7b:
17:02:b0:59:b0:17:c4:2e:e8:77:12:49:28:cc:9a:55:8e:a5:
50:1a:92:41:42:9e:bf:05:ac:fa:db:90:6c:f4:e2:2c:df:ee:
92:af:32:a2:10:28:88:a4:86:e8:c1:1a:4b:ef:72:60:b5:66:
1f:45:66:5b:03:80:9e:b1:21:44:b3:80:be:55:17:4a:0b:6f:
e9:bd:87:5f:09:6a:ac:04:21:8e:69:1d:42:42:eb:9e:e7:59:
fb:f9:a3:15:03:33:a2:75:fe:dd:e6:45:a6:29:c2:d4:c5:7b:
c5:00:26:a1:b3:24:54:c1:b8:50:9c:d1:88:59:23:e2:ca:06:
f0:45:e7:df:a3:ba:b8:90:73:cf:bc:22:ef:85:ed:2d:47:4c:
08:bf:92:65:d7:e6:15:3e:00:ec:1a:53:0c:e2:e8:2c:75:08:
d5:00:bc:f0:77:47:95:52:09:fe:0f:a4:93:05:09:b5:87:58:
5e:ed:76:64
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAQtHezANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
MjZmZmMwMDk2YzY5M2JiYzQyMGVlYjhjY2VmMzRiYzdiNTM4NzQzMB4XDTIyMDEw
MTA2MDI0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzY4ZDlkNjJjMjI2
YzUzNGY4OWRiZWMzYzgxMzYwYmI5OGY2OGRkMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALp87sXsTdCUy0TUtvJ7yDinaEwc9SklXV2BPWvaExgf4DJW
/kWiZth9p4VaJx9V+SDLcRZ+6SVNm//ymrsU/hkmB4SgHA7t+p8fVjDtRHo/29d3
Tjf3yzk5GD2WZ0Jr9QpsNt/9REuhSTRYDlshe62L8Z7BYK6yLsbwlFeZ7emZePZf
q/g/aighDtPBhTT3E5nV4NUr0K2l/LqI4vLbTzkYriI+zVeG6ml02Vsw6UXaUU1k
zEEEkuzP50EONccIwMyaPRevh70Jf6jNGqMCWo0mzysaSgUu1Cv5Tj6IU0t8mGNn
bITfmSExT5RgaOxq/XbbQkVVvV0CE7UAfDACav0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR2jZ1iwibFNPidvsPIE2C7mPaN0jAfBgNVHSMEGDAWgBQSb/wAlsaTu8Qg
7rjM7zS8e1OHQzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0VtXzhBSmJHazd2RUlPNjR6Tzgwdkh0VGgwTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGUvNjE2ODdjLTExODItNGIwOC05NDhlLTFjODZjNTdlMmU5Zi8x
L2RvMmRZc0lteFRUNG5iN0R5Qk5ndTVqMmpkSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGUv
NjE2ODdjLTExODItNGIwOC05NDhlLTFjODZjNTdlMmU5Zi8xL0VtXzhBSmJHazd2
RUlPNjR6Tzgwdkh0VGgwTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcHLEjANBgkqhkiG9w0BAQsFAAOC
AQEAVu8R6YHHkGv5VirWhtD3SFSbeJgmqLAb5ZHN7RgXwNiJHmMop95G9Erddz4L
Uk8ZxIbsI31V4n6ijxEntZ0RVVq8tqaKxo57FwKwWbAXxC7odxJJKMyaVY6lUBqS
QUKevwWs+tuQbPTiLN/ukq8yohAoiKSG6MEaS+9yYLVmH0VmWwOAnrEhRLOAvlUX
Sgtv6b2HXwlqrAQhjmkdQkLrnudZ+/mjFQMzonX+3eZFpinC1MV7xQAmobMkVMG4
UJzRiFkj4soG8EXn36O6uJBzz7wi74XtLUdMCL+SZdfmFT4A7BpTDOLoLHUI1QC8
8HdHlVIJ/g+kkwUJtYdYXu12ZA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:22:38 2025 by rpki-client