Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/44e4bb-9bf5-478b-85a1-649311139883/1/zAFBJLyxEIjg-_WyJAP_2mlddLk.roa
File: zAFBJLyxEIjg-_WyJAP_2mlddLk.roa (raw, json)
Hash identifier: PbvcQ57YQKNbELQlyl8dHm+oQqIy94RWpa+S68Fu5bY=
Subject key identifier: CC:01:41:24:BC:B1:10:88:E0:FB:F5:B2:24:03:FF:DA:69:5D:74:B9
Certificate issuer: /CN=c25d43dcde10b923179d5b1bd74ea43acc221093
Certificate serial: 0182EEA19312D188E485EB0B7B14CACABFFB
Authority key identifier: C2:5D:43:DC:DE:10:B9:23:17:9D:5B:1B:D7:4E:A4:3A:CC:22:10:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wl1D3N4QuSMXnVsb106kOswiEJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/44e4bb-9bf5-478b-85a1-649311139883/1/zAFBJLyxEIjg-_WyJAP_2mlddLk.roa
Signing time: Tue 30 Aug 2022 12:02:22 +0000
ROA not before: Tue 30 Aug 2022 12:02:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48829
IP address blocks: 195.130.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ee:a1:93:12:d1:88:e4:85:eb:0b:7b:14:ca:ca:bf:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c25d43dcde10b923179d5b1bd74ea43acc221093
Validity
Not Before: Aug 30 12:02:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc014124bcb11088e0fbf5b22403ffda695d74b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:89:a4:56:12:ce:d6:b7:7f:5a:bc:bc:fa:c2:
20:40:7c:b5:43:50:88:62:99:91:7a:e5:e5:fe:e6:
5a:d6:bd:34:87:7a:24:3a:d3:47:67:b6:c7:4d:01:
3f:69:8d:10:c5:27:0f:37:fa:28:85:1c:01:e5:dc:
9b:31:c5:a4:6e:04:50:dd:01:49:12:77:3b:5d:c6:
9a:39:76:b3:a0:f0:3e:52:ea:8b:6e:47:4f:7a:ad:
78:c5:8e:dc:f6:49:df:c5:6c:88:4e:1f:20:13:1d:
7b:11:a8:6d:ff:db:3c:c1:ad:88:d0:51:98:76:24:
c0:82:ad:0f:1b:73:86:06:a7:d7:14:b2:19:f7:9e:
5e:67:53:8c:f3:db:21:cd:4b:65:78:39:3b:9b:15:
5d:41:a3:42:ad:87:8f:8e:65:21:aa:d8:a3:2a:9d:
6e:ab:d8:b4:3a:b6:df:37:35:a1:73:ac:df:80:71:
ab:10:8e:14:56:c6:e4:2a:f2:4c:95:05:da:af:67:
16:24:db:06:0c:f8:15:36:be:54:3a:74:58:0d:c9:
a1:50:50:1c:d5:5c:9e:55:3e:bf:5e:95:83:9b:b1:
2e:48:33:12:0a:9a:8e:7e:4c:b4:72:ca:fc:df:2a:
bf:62:3a:aa:70:82:25:f3:f5:26:1f:2f:f2:d4:5a:
9f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:01:41:24:BC:B1:10:88:E0:FB:F5:B2:24:03:FF:DA:69:5D:74:B9
X509v3 Authority Key Identifier:
keyid:C2:5D:43:DC:DE:10:B9:23:17:9D:5B:1B:D7:4E:A4:3A:CC:22:10:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wl1D3N4QuSMXnVsb106kOswiEJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/44e4bb-9bf5-478b-85a1-649311139883/1/zAFBJLyxEIjg-_WyJAP_2mlddLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/44e4bb-9bf5-478b-85a1-649311139883/1/wl1D3N4QuSMXnVsb106kOswiEJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.130.203.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:93:a0:63:af:77:a0:a1:36:5c:bd:cd:b3:64:57:9a:6a:85:
8f:92:ee:f7:77:e0:42:bd:98:7c:ec:20:95:8f:c3:73:03:89:
7f:32:18:7c:ca:92:7f:8d:a5:e9:d0:51:a9:14:ce:18:02:13:
78:f0:af:fb:32:f8:1f:17:eb:7b:71:80:26:2d:0e:f3:89:43:
56:c3:62:65:41:5a:53:33:16:a8:84:84:cf:ef:86:cf:14:33:
a9:fc:e7:c1:50:5c:83:28:27:17:b8:fa:ce:76:da:9c:31:63:
fa:fb:07:fb:af:69:2b:0f:67:82:1b:9f:f8:42:7c:f4:1c:ef:
bf:ad:56:25:da:ef:e9:12:54:4a:9e:ee:d2:5e:ad:1c:1e:bd:
a4:57:cf:73:b1:ea:1f:64:dd:e3:be:b1:fa:23:d8:48:59:59:
7f:60:5a:17:16:51:5b:76:66:c1:dc:39:51:9b:9d:e5:68:ad:
89:ab:76:a3:55:75:59:7d:c5:52:94:8a:62:31:2e:7b:54:2d:
71:88:47:41:91:1a:5a:43:3b:e1:61:51:09:dd:63:e3:58:20:
1b:c9:58:36:62:b8:62:c1:8b:5b:0e:c8:54:ca:8d:c5:6e:38:
d8:80:e4:b3:0a:2e:3a:01:2d:75:5a:62:05:e8:7c:3a:cb:13:
fa:39:41:35
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYLuoZMS0YjkhesLexTKyr/7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyNWQ0M2RjZGUxMGI5MjMxNzlkNWIxYmQ3NGVhNDNhY2My
MjEwOTMwHhcNMjIwODMwMTIwMjIyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYzAxNDEyNGJjYjExMDg4ZTBmYmY1YjIyNDAzZmZkYTY5NWQ3NGI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAromkVhLO1rd/Wry8+sIgQHy1Q1CI
YpmReuXl/uZa1r00h3okOtNHZ7bHTQE/aY0QxScPN/oohRwB5dybMcWkbgRQ3QFJ
Enc7XcaaOXazoPA+UuqLbkdPeq14xY7c9knfxWyITh8gEx17Eaht/9s8wa2I0FGY
diTAgq0PG3OGBqfXFLIZ955eZ1OM89shzUtleDk7mxVdQaNCrYePjmUhqtijKp1u
q9i0OrbfNzWhc6zfgHGrEI4UVsbkKvJMlQXar2cWJNsGDPgVNr5UOnRYDcmhUFAc
1VyeVT6/XpWDm7EuSDMSCpqOfky0csr83yq/YjqqcIIl8/UmHy/y1FqfuQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMwBQSS8sRCI4Pv1siQD/9ppXXS5MB8GA1UdIwQY
MBaAFMJdQ9zeELkjF51bG9dOpDrMIhCTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd2wxRDNONFF1U01YblZzYjEwNmtPc3dpRUpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS80NGU0YmItOWJmNS00NzhiLTg1YTEt
NjQ5MzExMTM5ODgzLzEvekFGQkpMeXhFSWpnLV9XeUpBUF8ybWxkZExrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS80NGU0YmItOWJmNS00NzhiLTg1YTEtNjQ5MzExMTM5ODgz
LzEvd2wxRDNONFF1U01YblZzYjEwNmtPc3dpRUpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw4LLMA0G
CSqGSIb3DQEBCwUAA4IBAQBuk6Bjr3egoTZcvc2zZFeaaoWPku73d+BCvZh87CCV
j8NzA4l/Mhh8ypJ/jaXp0FGpFM4YAhN48K/7MvgfF+t7cYAmLQ7ziUNWw2JlQVpT
MxaohITP74bPFDOp/OfBUFyDKCcXuPrOdtqcMWP6+wf7r2krD2eCG5/4Qnz0HO+/
rVYl2u/pElRKnu7SXq0cHr2kV89zseofZN3jvrH6I9hIWVl/YFoXFlFbdmbB3DlR
m53laK2Jq3ajVXVZfcVSlIpiMS57VC1xiEdBkRpaQzvhYVEJ3WPjWCAbyVg2Yrhi
wYtbDshUyo3FbjjYgOSzCi46AS11WmIF6Hw6yxP6OUE1
-----END CERTIFICATE-----
Generated at Wed Apr 16 09:11:27 2025 by rpki-client