Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/17a3bd-754a-4593-b51e-9fb415b09b5e/1/7JicAwjhAmnN6P42dQOO5-e-MEo.roa
File: 7JicAwjhAmnN6P42dQOO5-e-MEo.roa (raw, json)
Hash identifier: uPXbT0mI2US6BrQVuWB+na0OctJ+j2g+Sb7pYE4+z60=
Subject key identifier: EC:98:9C:03:08:E1:02:69:CD:E8:FE:36:75:03:8E:E7:E7:BE:30:4A
Certificate issuer: /CN=55610a59ddffbd24ee4b299e9b24b1bf036f8e43
Certificate serial: 0187712D530045D8502377CB56C07051B995
Authority key identifier: 55:61:0A:59:DD:FF:BD:24:EE:4B:29:9E:9B:24:B1:BF:03:6F:8E:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VWEKWd3_vSTuSymemySxvwNvjkM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/17a3bd-754a-4593-b51e-9fb415b09b5e/1/7JicAwjhAmnN6P42dQOO5-e-MEo.roa
Signing time: Tue 11 Apr 2023 16:36:48 +0000
ROA not before: Tue 11 Apr 2023 16:36:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56911
IP address blocks: 195.234.93.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:71:2d:53:00:45:d8:50:23:77:cb:56:c0:70:51:b9:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55610a59ddffbd24ee4b299e9b24b1bf036f8e43
Validity
Not Before: Apr 11 16:36:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ec989c0308e10269cde8fe3675038ee7e7be304a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:b2:66:bb:b0:26:b8:87:0b:88:16:f8:66:73:
4f:b7:18:bf:9b:8b:e9:23:da:87:42:c3:f4:df:6e:
2e:5d:9f:34:ec:10:97:c5:06:90:86:db:7a:a0:57:
8c:8f:2f:ac:04:b1:49:37:c0:bb:25:20:ef:3b:9f:
7a:26:2f:b4:52:12:64:44:fb:fd:c8:a9:66:a6:e6:
bf:91:0d:ed:28:6d:c9:1f:03:f7:31:05:c3:32:34:
21:0c:f0:2b:3f:e7:12:ef:0a:d3:01:35:81:4e:58:
b7:6c:0c:73:c3:fb:f7:f9:1f:78:72:84:e0:19:24:
e6:6c:20:33:4c:91:f5:b0:5e:31:a8:6c:90:a8:4d:
a7:40:9f:8d:db:16:c9:1d:9a:34:80:b8:6d:cb:1d:
e1:c7:d3:bf:f4:14:e3:93:c8:50:b0:9d:6d:4e:e2:
18:4f:86:5d:96:58:97:55:6a:4b:36:64:b2:b4:99:
bb:2a:2a:d5:fc:0e:72:32:8a:f9:a2:8d:cc:f6:a8:
36:61:23:c7:25:36:40:0e:e0:e7:27:10:1a:a2:ab:
9f:17:75:6b:ef:86:3c:66:5e:c1:fd:de:60:92:88:
e1:64:34:23:ad:c4:aa:08:18:a1:a6:17:97:4d:97:
d7:35:fc:ce:00:87:91:e3:a6:d1:d6:e9:af:e3:1a:
db:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:98:9C:03:08:E1:02:69:CD:E8:FE:36:75:03:8E:E7:E7:BE:30:4A
X509v3 Authority Key Identifier:
keyid:55:61:0A:59:DD:FF:BD:24:EE:4B:29:9E:9B:24:B1:BF:03:6F:8E:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VWEKWd3_vSTuSymemySxvwNvjkM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/17a3bd-754a-4593-b51e-9fb415b09b5e/1/7JicAwjhAmnN6P42dQOO5-e-MEo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/17a3bd-754a-4593-b51e-9fb415b09b5e/1/VWEKWd3_vSTuSymemySxvwNvjkM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.234.93.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:53:89:3a:c8:d7:f0:56:f9:d2:01:a0:3a:b3:c2:94:ec:80:
a4:06:85:42:4f:c5:ff:de:2b:6a:20:44:68:e8:67:87:21:88:
f4:bb:fc:a7:8c:22:74:8f:e0:5d:b6:ad:f7:6d:ca:b5:6f:1c:
86:fb:2b:e7:26:68:93:2b:5c:a7:3b:6e:b2:87:59:28:52:ef:
2c:b2:ca:34:d4:a5:a0:6c:6a:8b:d8:a6:62:bb:24:87:1e:f0:
85:2d:9d:10:90:71:b0:f0:75:e5:dc:3c:30:fe:44:a6:1e:a5:
91:81:87:1c:ee:2f:84:27:7f:ab:eb:8f:df:b3:05:88:00:dd:
26:48:6a:8a:84:e1:86:a8:79:a3:32:b5:38:12:95:f7:55:93:
a1:53:0d:ac:f1:8d:7d:fe:2e:40:55:32:47:04:f7:ca:d3:52:
d4:16:24:bf:e1:be:4c:d4:84:f2:9b:3e:06:ed:75:d4:a0:4c:
78:02:b1:3d:81:1a:bb:a9:57:da:fe:4e:5c:cf:2a:39:9a:14:
bd:bc:b3:62:f5:aa:13:e9:c3:f9:6c:03:a3:21:a8:ac:7a:90:
b2:1e:7f:b1:1a:7b:5f:a0:77:ef:12:2d:80:1f:5f:e9:59:93:
4b:13:d8:da:26:fc:19:1d:cc:18:9a:0b:d1:d9:74:69:8e:2e:
b4:f5:f4:59
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYdxLVMARdhQI3fLVsBwUbmVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU1NjEwYTU5ZGRmZmJkMjRlZTRiMjk5ZTliMjRiMWJmMDM2
ZjhlNDMwHhcNMjMwNDExMTYzNjQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYzk4OWMwMzA4ZTEwMjY5Y2RlOGZlMzY3NTAzOGVlN2U3YmUzMDRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjLJmu7AmuIcLiBb4ZnNPtxi/m4vp
I9qHQsP0324uXZ807BCXxQaQhtt6oFeMjy+sBLFJN8C7JSDvO596Ji+0UhJkRPv9
yKlmpua/kQ3tKG3JHwP3MQXDMjQhDPArP+cS7wrTATWBTli3bAxzw/v3+R94coTg
GSTmbCAzTJH1sF4xqGyQqE2nQJ+N2xbJHZo0gLhtyx3hx9O/9BTjk8hQsJ1tTuIY
T4ZdlliXVWpLNmSytJm7KirV/A5yMor5oo3M9qg2YSPHJTZADuDnJxAaoqufF3Vr
74Y8Zl7B/d5gkojhZDQjrcSqCBihpheXTZfXNfzOAIeR46bR1umv4xrbGwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOyYnAMI4QJpzej+NnUDjufnvjBKMB8GA1UdIwQY
MBaAFFVhClnd/70k7kspnpsksb8Db45DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVldFS1dkM192U1R1U3ltZW15U3h2d052amtNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8xN2EzYmQtNzU0YS00NTkzLWI1MWUt
OWZiNDE1YjA5YjVlLzEvN0ppY0F3amhBbW5ONlA0MmRRT081LWUtTUVvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS8xN2EzYmQtNzU0YS00NTkzLWI1MWUtOWZiNDE1YjA5YjVl
LzEvVldFS1dkM192U1R1U3ltZW15U3h2d052amtNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw+pdMA0G
CSqGSIb3DQEBCwUAA4IBAQBfU4k6yNfwVvnSAaA6s8KU7ICkBoVCT8X/3itqIERo
6GeHIYj0u/ynjCJ0j+Bdtq33bcq1bxyG+yvnJmiTK1ynO26yh1koUu8ssso01KWg
bGqL2KZiuySHHvCFLZ0QkHGw8HXl3Dww/kSmHqWRgYcc7i+EJ3+r64/fswWIAN0m
SGqKhOGGqHmjMrU4EpX3VZOhUw2s8Y19/i5AVTJHBPfK01LUFiS/4b5M1ITymz4G
7XXUoEx4ArE9gRq7qVfa/k5czyo5mhS9vLNi9aoT6cP5bAOjIaisepCyHn+xGntf
oHfvEi2AH1/pWZNLE9jaJvwZHcwYmgvR2XRpji609fRZ
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:52:43 2025 by rpki-client