Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/715e1c-5512-4eb4-9ba3-3a003135aad1/1/un-OA8_A51imNwVRf4Fq8oTHe3A.roa
File: un-OA8_A51imNwVRf4Fq8oTHe3A.roa (raw, json)
Hash identifier: SSH8ExUf5BRlmJtdNKRdA+mFrB6TGGTQuFM/zyRaBfw=
Subject key identifier: BA:7F:8E:03:CF:C0:E7:58:A6:37:05:51:7F:81:6A:F2:84:C7:7B:70
Certificate issuer: /CN=5ac45d9a1a22416833de59a5e619d12096d0969e
Certificate serial: E26655
Authority key identifier: 5A:C4:5D:9A:1A:22:41:68:33:DE:59:A5:E6:19:D1:20:96:D0:96:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WsRdmhoiQWgz3lml5hnRIJbQlp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/715e1c-5512-4eb4-9ba3-3a003135aad1/1/un-OA8_A51imNwVRf4Fq8oTHe3A.roa
Signing time: Sat 01 Jan 2022 11:58:25 +0000
ROA not before: Sat 01 Jan 2022 11:58:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44697
IP address blocks: 91.199.183.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14837333 (0xe26655)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ac45d9a1a22416833de59a5e619d12096d0969e
Validity
Not Before: Jan 1 11:58:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba7f8e03cfc0e758a63705517f816af284c77b70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:92:9d:ab:c3:a3:27:99:1c:f8:28:ef:fa:8a:
0f:36:cd:88:a0:69:2f:06:02:31:48:65:e3:02:54:
64:85:36:dd:9a:1a:5d:e3:38:6e:5c:2d:bc:c6:d3:
3f:6d:65:dc:a8:33:88:a6:78:d5:a9:44:fb:a2:92:
c9:b5:55:f1:f0:d1:e3:e2:2d:8c:5a:fa:41:75:00:
62:1f:c5:be:b9:84:bd:f6:4a:c4:95:01:8e:b8:a6:
39:bb:1f:d3:fd:65:15:36:d0:0c:eb:11:de:3a:91:
05:2d:99:aa:a5:1d:f0:bb:dc:d9:32:94:cc:4a:36:
2c:9f:34:e2:6b:c5:1a:5b:df:b6:ea:48:e4:9b:1e:
53:8b:25:9d:bf:28:b9:b0:2a:44:0b:57:33:91:2b:
a3:a3:1d:88:ac:bd:00:4c:f3:09:d8:94:7d:52:07:
bb:61:70:b0:9d:77:31:d3:c0:dc:4d:2c:84:fb:c6:
37:43:f9:38:f4:3a:89:86:90:5d:03:60:74:3e:43:
d2:8a:12:1e:a0:b3:61:23:a2:28:2e:e6:32:33:81:
a7:71:77:b6:62:37:c1:ef:e5:c8:31:cf:48:3c:04:
07:3b:5b:77:39:27:a3:aa:64:fd:5d:f3:c6:af:5f:
d4:6d:cd:f0:45:65:6c:7c:30:16:8f:ae:20:bf:f4:
3a:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:7F:8E:03:CF:C0:E7:58:A6:37:05:51:7F:81:6A:F2:84:C7:7B:70
X509v3 Authority Key Identifier:
keyid:5A:C4:5D:9A:1A:22:41:68:33:DE:59:A5:E6:19:D1:20:96:D0:96:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WsRdmhoiQWgz3lml5hnRIJbQlp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/715e1c-5512-4eb4-9ba3-3a003135aad1/1/un-OA8_A51imNwVRf4Fq8oTHe3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/715e1c-5512-4eb4-9ba3-3a003135aad1/1/WsRdmhoiQWgz3lml5hnRIJbQlp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.183.0/24
Signature Algorithm: sha256WithRSAEncryption
21:4c:1c:1d:74:fc:ce:e9:8f:4e:cd:c0:83:57:63:9b:02:05:
43:d1:0c:a9:87:4e:f1:5c:b8:94:8f:48:1e:8b:bf:6b:3a:12:
68:02:34:c4:72:0d:15:23:e0:ce:3b:0c:e2:fb:bc:2e:e3:85:
ef:f7:4a:25:5b:b0:e7:14:87:8b:f9:55:42:2e:ee:ec:cb:a6:
6a:50:ee:1b:66:e2:59:09:d1:b7:d4:16:38:f1:74:0f:6a:2a:
38:df:0a:bf:df:44:47:be:49:17:fc:05:0e:66:87:4c:df:37:
dc:bd:f3:9f:e3:3e:a0:8c:14:70:41:e3:76:80:a0:79:55:3f:
18:05:8d:ef:07:d3:ca:20:36:41:5e:da:ad:53:4b:6b:38:fa:
c7:7f:f4:8b:69:60:fe:19:28:a7:aa:d8:eb:0c:8f:0e:2f:b6:
91:73:b2:28:d8:a8:ef:19:a3:f5:fe:1e:cc:9c:fd:ca:79:4c:
e7:a5:d3:bc:80:8c:d2:4b:0a:ee:6d:ca:a6:52:8e:3c:16:f8:
a3:ec:7b:f4:01:29:6f:b0:cb:05:2b:85:83:10:a1:5c:69:8c:
81:9c:27:4d:ad:32:32:0a:52:43:fb:ee:a9:44:45:d9:a8:ed:
72:e7:dd:7c:20:d5:28:3c:05:27:1c:57:90:bd:64:91:e8:ec:
1f:5d:e7:4d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAOJmVTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
YWM0NWQ5YTFhMjI0MTY4MzNkZTU5YTVlNjE5ZDEyMDk2ZDA5NjllMB4XDTIyMDEw
MTExNTgyNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmE3ZjhlMDNjZmMw
ZTc1OGE2MzcwNTUxN2Y4MTZhZjI4NGM3N2I3MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM6SnavDoyeZHPgo7/qKDzbNiKBpLwYCMUhl4wJUZIU23Zoa
XeM4blwtvMbTP21l3KgziKZ41alE+6KSybVV8fDR4+ItjFr6QXUAYh/FvrmEvfZK
xJUBjrimObsf0/1lFTbQDOsR3jqRBS2ZqqUd8Lvc2TKUzEo2LJ804mvFGlvftupI
5JseU4slnb8oubAqRAtXM5Ero6MdiKy9AEzzCdiUfVIHu2FwsJ13MdPA3E0shPvG
N0P5OPQ6iYaQXQNgdD5D0ooSHqCzYSOiKC7mMjOBp3F3tmI3we/lyDHPSDwEBztb
dzkno6pk/V3zxq9f1G3N8EVlbHwwFo+uIL/0OhUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS6f44Dz8DnWKY3BVF/gWryhMd7cDAfBgNVHSMEGDAWgBRaxF2aGiJBaDPe
WaXmGdEgltCWnjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1dzUmRtaG9pUVdnejNsbWw1aG5SSUpiUWxwNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjAvNzE1ZTFjLTU1MTItNGViNC05YmEzLTNhMDAzMTM1YWFkMS8x
L3VuLU9BOF9BNTFpbU53VlJmNEZxOG9USGUzQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjAv
NzE1ZTFjLTU1MTItNGViNC05YmEzLTNhMDAzMTM1YWFkMS8xL1dzUmRtaG9pUVdn
ejNsbWw1aG5SSUpiUWxwNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvHtzANBgkqhkiG9w0BAQsFAAOC
AQEAIUwcHXT8zumPTs3Ag1djmwIFQ9EMqYdO8Vy4lI9IHou/azoSaAI0xHINFSPg
zjsM4vu8LuOF7/dKJVuw5xSHi/lVQi7u7MumalDuG2biWQnRt9QWOPF0D2oqON8K
v99ER75JF/wFDmaHTN833L3zn+M+oIwUcEHjdoCgeVU/GAWN7wfTyiA2QV7arVNL
azj6x3/0i2lg/hkop6rY6wyPDi+2kXOyKNio7xmj9f4ezJz9ynlM56XTvICM0ksK
7m3KplKOPBb4o+x79AEpb7DLBSuFgxChXGmMgZwnTa0yMgpSQ/vuqURF2ajtcufd
fCDVKDwFJxxXkL1kkejsH13nTQ==
-----END CERTIFICATE-----
Generated at Fri Apr 18 01:52:50 2025 by rpki-client