Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/ca6c80-03a1-4a4c-91cf-068b77e903a0/1/q9m2KNDykggODXhjyP1kb346z14.roa
File: q9m2KNDykggODXhjyP1kb346z14.roa (raw, json)
Hash identifier: UwU+QwrpXbTaiXkSOWM3eGWK0D6A4PhCcpjEgngpoO4=
Subject key identifier: AB:D9:B6:28:D0:F2:92:08:0E:0D:78:63:C8:FD:64:6F:7E:3A:CF:5E
Certificate issuer: /CN=013c74132597162cdb2dd63760abd9971e30bf63
Certificate serial: 01821B0C3D9D45DDA342D3FF050592EF9965
Authority key identifier: 01:3C:74:13:25:97:16:2C:DB:2D:D6:37:60:AB:D9:97:1E:30:BF:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ATx0EyWXFizbLdY3YKvZlx4wv2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/ca6c80-03a1-4a4c-91cf-068b77e903a0/1/q9m2KNDykggODXhjyP1kb346z14.roa
Signing time: Wed 20 Jul 2022 09:59:23 +0000
ROA not before: Wed 20 Jul 2022 09:59:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212805
IP address blocks: 185.19.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1b:0c:3d:9d:45:dd:a3:42:d3:ff:05:05:92:ef:99:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=013c74132597162cdb2dd63760abd9971e30bf63
Validity
Not Before: Jul 20 09:59:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=abd9b628d0f292080e0d7863c8fd646f7e3acf5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:3a:25:94:6d:11:af:2c:4d:80:af:3a:47:7d:
56:6f:7d:43:d0:0a:a2:1f:33:27:91:62:02:90:fe:
0c:89:a4:7c:4d:a3:1f:dc:57:f0:39:0a:b9:ee:a4:
68:d4:b9:53:60:e4:53:f3:6f:de:27:91:51:a3:ce:
da:e9:f2:22:fd:bb:2e:51:9b:16:ba:89:71:a6:1b:
a9:60:20:7b:db:84:6e:00:05:d9:7d:49:23:3b:b0:
3d:2f:d7:a9:f4:cb:8e:7e:ae:64:9d:12:d5:45:9a:
9f:d6:47:0e:05:4a:b6:39:e6:39:f3:a9:7e:e2:0d:
5f:7d:2a:b6:fc:85:bb:5b:e7:3b:d9:ab:59:a1:45:
24:b2:1e:c6:43:2e:eb:88:74:06:3c:b4:9c:14:5e:
ed:31:0f:16:18:08:2b:54:14:3e:1c:33:3e:d9:4c:
dc:c5:40:1c:5a:7c:f0:d9:2a:45:8b:75:51:07:55:
b4:e6:a7:00:7a:19:f6:a8:04:9e:f0:bf:6e:f3:2d:
d7:ae:a5:e4:be:88:3d:8f:d6:06:f0:a1:f4:33:da:
80:3f:29:69:41:fa:e9:ad:4c:04:0f:3e:89:27:db:
e9:a7:ac:20:af:8f:71:e5:4e:bb:d8:f9:78:82:1b:
95:af:8d:d1:25:82:7e:15:3a:f0:65:a3:cc:ed:c7:
d9:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:D9:B6:28:D0:F2:92:08:0E:0D:78:63:C8:FD:64:6F:7E:3A:CF:5E
X509v3 Authority Key Identifier:
keyid:01:3C:74:13:25:97:16:2C:DB:2D:D6:37:60:AB:D9:97:1E:30:BF:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ATx0EyWXFizbLdY3YKvZlx4wv2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/ca6c80-03a1-4a4c-91cf-068b77e903a0/1/q9m2KNDykggODXhjyP1kb346z14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/ca6c80-03a1-4a4c-91cf-068b77e903a0/1/ATx0EyWXFizbLdY3YKvZlx4wv2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.19.203.0/24
Signature Algorithm: sha256WithRSAEncryption
45:b3:a6:90:3f:5b:dd:d5:ab:06:83:f6:ce:e5:94:2c:37:34:
1a:f3:31:a8:c6:61:52:19:cb:d7:96:54:1a:64:4f:b3:8d:7b:
95:dc:a8:2e:94:54:65:7a:93:1c:e7:e1:24:05:d9:b5:f0:3c:
2c:02:ec:ec:30:7a:7f:bf:38:8c:86:20:9c:56:e5:a3:d6:40:
31:66:8e:66:74:fa:f4:01:85:c0:85:5a:c6:54:f6:96:51:ee:
8a:08:b9:d0:32:35:17:6e:ad:75:de:f5:7c:98:26:ec:22:3f:
f2:2a:5e:3d:f9:fa:57:c7:1c:17:b5:3a:08:12:04:71:59:33:
f3:3e:f9:d8:f1:33:59:f9:94:63:15:cd:da:49:99:8b:7a:e5:
79:b3:d3:07:1e:7f:61:bd:80:d9:45:4b:9f:fb:1f:11:ac:fa:
50:f0:66:e6:87:c6:b8:c8:66:3a:b0:ac:a7:4a:a5:d4:ea:1e:
36:51:ae:b3:51:90:c7:14:b4:1b:7d:47:23:52:78:78:ee:5e:
0f:5e:31:40:b9:c6:84:b9:4d:e3:17:10:41:d2:97:c6:d0:41:
14:3f:7d:f8:2e:ae:d6:be:21:22:5a:cd:b3:f5:6f:20:fd:76:
16:c5:34:03:e2:e4:05:b5:04:cd:bf:a5:a4:f7:91:36:e2:08:
56:40:b6:6d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYIbDD2dRd2jQtP/BQWS75llMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxM2M3NDEzMjU5NzE2MmNkYjJkZDYzNzYwYWJkOTk3MWUz
MGJmNjMwHhcNMjIwNzIwMDk1OTIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYmQ5YjYyOGQwZjI5MjA4MGUwZDc4NjNjOGZkNjQ2ZjdlM2FjZjVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApDollG0RryxNgK86R31Wb31D0Aqi
HzMnkWICkP4MiaR8TaMf3FfwOQq57qRo1LlTYORT82/eJ5FRo87a6fIi/bsuUZsW
uolxphupYCB724RuAAXZfUkjO7A9L9ep9MuOfq5knRLVRZqf1kcOBUq2OeY586l+
4g1ffSq2/IW7W+c72atZoUUksh7GQy7riHQGPLScFF7tMQ8WGAgrVBQ+HDM+2Uzc
xUAcWnzw2SpFi3VRB1W05qcAehn2qASe8L9u8y3XrqXkvog9j9YG8KH0M9qAPylp
QfrprUwEDz6JJ9vpp6wgr49x5U672Pl4ghuVr43RJYJ+FTrwZaPM7cfZKwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKvZtijQ8pIIDg14Y8j9ZG9+Os9eMB8GA1UdIwQY
MBaAFAE8dBMllxYs2y3WN2Cr2ZceML9jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQVR4MEV5V1hGaXpiTGRZM1lLdlpseDR3djJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9jYTZjODAtMDNhMS00YTRjLTkxY2Yt
MDY4Yjc3ZTkwM2EwLzEvcTltMktORHlrZ2dPRFhoanlQMWtiMzQ2ejE0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny9jYTZjODAtMDNhMS00YTRjLTkxY2YtMDY4Yjc3ZTkwM2Ew
LzEvQVR4MEV5V1hGaXpiTGRZM1lLdlpseDR3djJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuRPLMA0G
CSqGSIb3DQEBCwUAA4IBAQBFs6aQP1vd1asGg/bO5ZQsNzQa8zGoxmFSGcvXllQa
ZE+zjXuV3KgulFRlepMc5+EkBdm18DwsAuzsMHp/vziMhiCcVuWj1kAxZo5mdPr0
AYXAhVrGVPaWUe6KCLnQMjUXbq113vV8mCbsIj/yKl49+fpXxxwXtToIEgRxWTPz
PvnY8TNZ+ZRjFc3aSZmLeuV5s9MHHn9hvYDZRUuf+x8RrPpQ8Gbmh8a4yGY6sKyn
SqXU6h42Ua6zUZDHFLQbfUcjUnh47l4PXjFAucaEuU3jFxBB0pfG0EEUP334Lq7W
viEiWs2z9W8g/XYWxTQD4uQFtQTNv6Wk95E24ghWQLZt
-----END CERTIFICATE-----
Generated at Tue Apr 8 00:24:49 2025 by rpki-client