Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/7b127b-44ce-4cad-ad8f-089c1c3d4357/1/jMiS6ZUnihdaIfBOMP5wstj3vvo.roa
File: jMiS6ZUnihdaIfBOMP5wstj3vvo.roa (raw, json)
Hash identifier: QkYeDqBfu7pg7hbDsrFw3IaTyKk/k8mgX+6FgbeJcSM=
Subject key identifier: 8C:C8:92:E9:95:27:8A:17:5A:21:F0:4E:30:FE:70:B2:D8:F7:BE:FA
Certificate issuer: /CN=2ac3ed794adafb91cb81a969eb8a9b2905fee2ec
Certificate serial: 0987CF39
Authority key identifier: 2A:C3:ED:79:4A:DA:FB:91:CB:81:A9:69:EB:8A:9B:29:05:FE:E2:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPteUra-5HLgalp64qbKQX-4uw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/7b127b-44ce-4cad-ad8f-089c1c3d4357/1/jMiS6ZUnihdaIfBOMP5wstj3vvo.roa
Signing time: Sat 01 Jan 2022 09:02:58 +0000
ROA not before: Sat 01 Jan 2022 09:02:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9051
IP address blocks: 185.192.160.0/22 maxlen: 24
46.19.192.0/21 maxlen: 24
2a0a:2d40::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159895353 (0x987cf39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3ed794adafb91cb81a969eb8a9b2905fee2ec
Validity
Not Before: Jan 1 09:02:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8cc892e995278a175a21f04e30fe70b2d8f7befa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b8:36:f6:34:b3:26:52:77:aa:98:cd:f5:01:
dd:cb:dc:53:2c:d4:63:b6:2f:2f:d0:dd:60:dc:de:
fa:b3:ef:d6:ed:89:b5:70:5d:b9:53:25:d7:17:83:
e4:ad:00:ea:b0:cc:67:af:ec:95:e9:6d:de:03:bd:
c6:6b:ce:15:e8:01:b3:03:de:b4:b8:e4:8d:19:a8:
04:f4:4f:27:91:61:74:c5:4d:1f:57:2d:14:b8:b5:
45:d5:e0:4d:4b:05:22:6b:b6:3a:91:e0:6e:de:ed:
96:71:fd:d0:ab:e3:35:e5:23:38:29:54:2d:4b:27:
3f:16:c6:b8:5c:b6:b6:f4:93:8d:4f:a6:85:c1:15:
4f:02:16:f0:37:70:13:5a:51:d3:de:60:cb:84:90:
1f:e3:79:3c:41:f8:6b:b0:a9:52:73:63:3f:e8:bf:
35:5f:a2:70:75:b9:67:e4:69:37:13:72:94:0f:31:
a2:b2:5d:cf:0b:05:e2:89:69:50:91:81:cf:ac:1e:
21:69:89:55:91:47:02:49:14:11:e3:08:84:69:f1:
3d:84:e8:fb:8c:e8:6a:48:85:de:08:2f:2a:b9:27:
68:5a:a1:c7:6e:83:0d:c5:a1:f6:71:35:1d:04:96:
a1:be:f4:a8:85:a4:1c:35:db:04:24:75:03:b9:fd:
60:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:C8:92:E9:95:27:8A:17:5A:21:F0:4E:30:FE:70:B2:D8:F7:BE:FA
X509v3 Authority Key Identifier:
keyid:2A:C3:ED:79:4A:DA:FB:91:CB:81:A9:69:EB:8A:9B:29:05:FE:E2:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPteUra-5HLgalp64qbKQX-4uw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/7b127b-44ce-4cad-ad8f-089c1c3d4357/1/jMiS6ZUnihdaIfBOMP5wstj3vvo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/7b127b-44ce-4cad-ad8f-089c1c3d4357/1/KsPteUra-5HLgalp64qbKQX-4uw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.19.192.0/21
185.192.160.0/22
IPv6:
2a0a:2d40::/29
Signature Algorithm: sha256WithRSAEncryption
42:5a:19:ef:85:3f:53:12:1f:8b:23:06:9c:18:1d:95:52:77:
b3:dc:49:98:c7:a3:ce:ec:07:b4:a6:75:08:df:f8:63:e1:73:
b7:b6:07:14:91:3e:b2:bd:3d:21:16:d1:f9:5f:ec:2b:7a:99:
93:fa:a0:dd:e7:11:80:7d:2f:84:5f:1f:8b:14:48:4c:a3:d4:
6a:75:6d:d7:bf:c6:09:5b:83:09:59:ab:69:fe:b5:d3:89:f8:
c2:9a:0f:a5:91:d1:07:31:14:fe:87:9d:bd:ce:d0:c7:bf:22:
e8:8f:32:6b:7f:c3:b9:32:e1:ba:8e:44:f2:e3:32:02:b1:18:
e0:3e:a1:de:b9:e0:a5:1e:0c:10:c7:5a:e3:d6:3f:9c:a3:be:
6a:12:18:66:ff:92:f8:a7:1d:a1:be:4c:fe:3d:c7:10:85:b4:
02:66:2f:5c:64:29:f1:20:90:48:65:52:5c:23:53:7c:17:b1:
34:85:fe:fa:3b:c7:6e:f0:d0:7c:b5:c0:dc:b2:a7:34:7b:50:
12:c8:a4:98:4b:45:de:0e:6d:c9:55:68:a2:ec:d2:df:24:da:
44:79:6e:70:42:fd:6a:4e:ab:91:26:b3:a6:a1:66:ff:97:53:
e5:b4:81:85:72:68:b6:2f:e9:dd:2d:70:d6:76:a0:08:36:ba:
a0:54:56:f4
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIECYfPOTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
YWMzZWQ3OTRhZGFmYjkxY2I4MWE5NjllYjhhOWIyOTA1ZmVlMmVjMB4XDTIyMDEw
MTA5MDI1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGNjODkyZTk5NTI3
OGExNzVhMjFmMDRlMzBmZTcwYjJkOGY3YmVmYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKi4NvY0syZSd6qYzfUB3cvcUyzUY7YvL9DdYNze+rPv1u2J
tXBduVMl1xeD5K0A6rDMZ6/slelt3gO9xmvOFegBswPetLjkjRmoBPRPJ5FhdMVN
H1ctFLi1RdXgTUsFImu2OpHgbt7tlnH90KvjNeUjOClULUsnPxbGuFy2tvSTjU+m
hcEVTwIW8DdwE1pR095gy4SQH+N5PEH4a7CpUnNjP+i/NV+icHW5Z+RpNxNylA8x
orJdzwsF4olpUJGBz6weIWmJVZFHAkkUEeMIhGnxPYTo+4zoakiF3ggvKrknaFqh
x26DDcWh9nE1HQSWob70qIWkHDXbBCR1A7n9YL0CAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBSMyJLplSeKF1oh8E4w/nCy2Pe++jAfBgNVHSMEGDAWgBQqw+15Str7kcuB
qWnripspBf7i7DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tzUHRlVXJhLTVITGdhbHA2NHFiS1FYLTR1dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTIvN2IxMjdiLTQ0Y2UtNGNhZC1hZDhmLTA4OWMxYzNkNDM1Ny8x
L2pNaVM2WlVuaWhkYUlmQk9NUDV3c3RqM3Z2by5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTIv
N2IxMjdiLTQ0Y2UtNGNhZC1hZDhmLTA4OWMxYzNkNDM1Ny8xL0tzUHRlVXJhLTVI
TGdhbHA2NHFiS1FYLTR1dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEAy4TwAMEArnAoDANBAIAAjAHAwUD
KgotQDANBgkqhkiG9w0BAQsFAAOCAQEAQloZ74U/UxIfiyMGnBgdlVJ3s9xJmMej
zuwHtKZ1CN/4Y+Fzt7YHFJE+sr09IRbR+V/sK3qZk/qg3ecRgH0vhF8fixRITKPU
anVt17/GCVuDCVmraf6104n4wpoPpZHRBzEU/oedvc7Qx78i6I8ya3/DuTLhuo5E
8uMyArEY4D6h3rngpR4MEMda49Y/nKO+ahIYZv+S+Kcdob5M/j3HEIW0AmYvXGQp
8SCQSGVSXCNTfBexNIX++jvHbvDQfLXA3LKnNHtQEsikmEtF3g5tyVVoouzS3yTa
RHlucEL9ak6rkSazpqFm/5dT5bSBhXJoti/p3S1w1nagCDa6oFRW9A==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:24:59 2025 by rpki-client