Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/f4b8e9-686d-41be-9891-df1e95d7edd9/1/n65jdY-Atu0Q7X6g8gaSxwaS6bo.roa
File: n65jdY-Atu0Q7X6g8gaSxwaS6bo.roa (raw, json)
Hash identifier: 4yPCwOzNAkeE6cbz/PYjWEE8vsdTcoV2jmgLf5+ne6c=
Subject key identifier: 9F:AE:63:75:8F:80:B6:ED:10:ED:7E:A0:F2:06:92:C7:06:92:E9:BA
Certificate issuer: /CN=0b5caf262fdbfcc5ff30e28a5104646e27a89262
Certificate serial: 082D604E
Authority key identifier: 0B:5C:AF:26:2F:DB:FC:C5:FF:30:E2:8A:51:04:64:6E:27:A8:92:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C1yvJi_b_MX_MOKKUQRkbieokmI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/f4b8e9-686d-41be-9891-df1e95d7edd9/1/n65jdY-Atu0Q7X6g8gaSxwaS6bo.roa
Signing time: Sat 01 Jan 2022 02:53:51 +0000
ROA not before: Sat 01 Jan 2022 02:53:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12859
IP address blocks: 193.247.196.0/23 maxlen: 23
2a05:b2c0::/31 maxlen: 31
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137191502 (0x82d604e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b5caf262fdbfcc5ff30e28a5104646e27a89262
Validity
Not Before: Jan 1 02:53:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9fae63758f80b6ed10ed7ea0f20692c70692e9ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ca:55:ef:2c:2f:db:5a:e6:29:86:28:64:09:
41:3e:f5:90:b4:6f:ff:1e:21:a8:b2:a8:fb:ab:18:
73:b0:87:90:8d:9a:d3:d3:69:b3:c4:7f:de:18:10:
16:82:48:19:34:7b:bf:27:e4:9d:55:34:c4:2a:86:
d6:a6:3f:8b:bd:96:aa:8f:a0:ff:b8:85:06:05:ed:
2a:97:9a:b0:95:a1:33:08:52:fb:fd:6c:e4:3e:8c:
7b:c1:63:15:6b:c1:26:0d:1e:3f:8a:99:b0:db:29:
f2:56:ca:e2:f1:6d:8c:6e:42:f6:f6:fc:1e:f3:c2:
1b:33:39:2f:e0:53:0d:04:7f:43:09:f7:dd:78:7c:
4d:d7:31:f4:b1:95:15:a7:9a:7c:7a:44:3e:94:2f:
34:0f:c5:e2:d9:48:37:c5:c9:8f:2c:b5:77:04:0d:
2e:d2:ad:4e:7c:b9:b0:4e:68:61:10:df:ac:77:e4:
26:de:be:22:3d:33:70:0f:2d:55:74:0c:17:25:4c:
1c:31:6f:92:eb:a6:b8:6e:8d:3c:35:a2:f2:c9:c8:
05:40:3c:52:13:2e:1d:13:03:db:24:9c:08:33:ce:
ba:59:61:93:2b:32:3d:24:7a:c5:87:8b:01:f3:2c:
bb:4b:92:c0:8e:e5:91:b5:be:5c:71:34:ba:52:0b:
51:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:AE:63:75:8F:80:B6:ED:10:ED:7E:A0:F2:06:92:C7:06:92:E9:BA
X509v3 Authority Key Identifier:
keyid:0B:5C:AF:26:2F:DB:FC:C5:FF:30:E2:8A:51:04:64:6E:27:A8:92:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C1yvJi_b_MX_MOKKUQRkbieokmI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/f4b8e9-686d-41be-9891-df1e95d7edd9/1/n65jdY-Atu0Q7X6g8gaSxwaS6bo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/f4b8e9-686d-41be-9891-df1e95d7edd9/1/C1yvJi_b_MX_MOKKUQRkbieokmI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.247.196.0/23
IPv6:
2a05:b2c0::/31
Signature Algorithm: sha256WithRSAEncryption
38:83:75:2c:17:65:15:fb:04:f3:d1:19:34:b8:d3:1a:bd:12:
45:b4:7a:e3:36:01:f9:e7:79:3d:01:7d:0f:f4:09:2e:1a:6f:
f7:c8:56:8f:ae:f2:33:1d:57:72:21:3b:8c:c7:e4:5c:52:00:
ca:c7:83:34:77:65:30:6a:de:c5:c8:18:c2:3b:85:b9:cc:35:
3d:ce:0c:89:ab:c3:2a:e6:a2:87:bf:4c:cf:f6:a2:f3:cd:f1:
69:60:22:ae:a1:af:50:97:d4:56:f2:9c:e6:e5:31:9e:bd:fe:
f2:62:e5:f1:e3:c0:a4:11:7f:3e:0b:df:69:9d:bf:03:fc:c0:
2e:7a:43:ed:4a:b0:86:35:25:6d:ac:cd:f4:1e:6c:cc:7c:a8:
60:bb:6e:58:51:a9:55:ba:34:a3:ae:e9:ad:6c:d5:f9:e3:e7:
9b:a9:f2:fc:f0:71:13:68:a4:5c:f1:61:b8:18:14:b4:38:7a:
27:a6:48:e9:42:8b:7d:4e:a7:07:56:e7:ee:7c:d9:40:84:a3:
32:0a:9a:e0:eb:b9:0a:33:1b:49:35:02:45:58:5f:f6:6b:11:
87:77:01:0a:2b:1d:94:81:d5:3c:b2:c4:9e:b9:72:6c:60:99:
d2:91:c4:10:80:f8:f3:51:fc:65:3f:ca:7c:17:c0:cc:56:66:
7e:8a:80:df
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIECC1gTjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
YjVjYWYyNjJmZGJmY2M1ZmYzMGUyOGE1MTA0NjQ2ZTI3YTg5MjYyMB4XDTIyMDEw
MTAyNTM1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWZhZTYzNzU4Zjgw
YjZlZDEwZWQ3ZWEwZjIwNjkyYzcwNjkyZTliYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK/KVe8sL9ta5imGKGQJQT71kLRv/x4hqLKo+6sYc7CHkI2a
09Nps8R/3hgQFoJIGTR7vyfknVU0xCqG1qY/i72Wqo+g/7iFBgXtKpeasJWhMwhS
+/1s5D6Me8FjFWvBJg0eP4qZsNsp8lbK4vFtjG5C9vb8HvPCGzM5L+BTDQR/Qwn3
3Xh8Tdcx9LGVFaeafHpEPpQvNA/F4tlIN8XJjyy1dwQNLtKtTny5sE5oYRDfrHfk
Jt6+Ij0zcA8tVXQMFyVMHDFvkuumuG6NPDWi8snIBUA8UhMuHRMD2yScCDPOullh
kysyPSR6xYeLAfMsu0uSwI7lkbW+XHE0ulILUeECAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBSfrmN1j4C27RDtfqDyBpLHBpLpujAfBgNVHSMEGDAWgBQLXK8mL9v8xf8w
4opRBGRuJ6iSYjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0MxeXZKaV9iX01YX01PS0tVUVJrYmllb2ttSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWEvZjRiOGU5LTY4NmQtNDFiZS05ODkxLWRmMWU5NWQ3ZWRkOS8x
L242NWpkWS1BdHUwUTdYNmc4Z2FTeHdhUzZiby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWEv
ZjRiOGU5LTY4NmQtNDFiZS05ODkxLWRmMWU5NWQ3ZWRkOS8xL0MxeXZKaV9iX01Y
X01PS0tVUVJrYmllb2ttSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAcH3xDANBAIAAjAHAwUBKgWywDAN
BgkqhkiG9w0BAQsFAAOCAQEAOIN1LBdlFfsE89EZNLjTGr0SRbR64zYB+ed5PQF9
D/QJLhpv98hWj67yMx1XciE7jMfkXFIAyseDNHdlMGrexcgYwjuFucw1Pc4MiavD
Kuaih79Mz/ai883xaWAirqGvUJfUVvKc5uUxnr3+8mLl8ePApBF/PgvfaZ2/A/zA
LnpD7UqwhjUlbazN9B5szHyoYLtuWFGpVbo0o67prWzV+ePnm6ny/PBxE2ikXPFh
uBgUtDh6J6ZI6UKLfU6nB1bn7nzZQISjMgqa4Ou5CjMbSTUCRVhf9msRh3cBCisd
lIHVPLLEnrlybGCZ0pHEEID481H8ZT/KfBfAzFZmfoqA3w==
-----END CERTIFICATE-----
Generated at Thu Apr 17 08:15:18 2025 by rpki-client