
Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/dfa4a8-38b0-461b-a082-843e262dd8dc/1/X1WCM6bPJAWgj7KPPgo0g6uApmo.roa
File: X1WCM6bPJAWgj7KPPgo0g6uApmo.roa (raw, json)
Hash identifier: 9eYU/hOJ2LSig27YIBnXFYj5xXRzqcSx13DunTrenwE=
Subject key identifier: 5F:55:82:33:A6:CF:24:05:A0:8F:B2:8F:3E:0A:34:83:AB:80:A6:6A
Certificate issuer: /CN=5cf56321eb7ea3ee45cded028668420e37fa2fac
Certificate serial: 01856ED49D5487ABD2477C05E99C50E91956
Authority key identifier: 5C:F5:63:21:EB:7E:A3:EE:45:CD:ED:02:86:68:42:0E:37:FA:2F:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XPVjIet-o-5Fze0ChmhCDjf6L6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/dfa4a8-38b0-461b-a082-843e262dd8dc/1/X1WCM6bPJAWgj7KPPgo0g6uApmo.roa
Signing time: Sun 01 Jan 2023 19:35:05 +0000
ROA not before: Sun 01 Jan 2023 19:35:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15404
IP address blocks: 194.76.122.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:9d:54:87:ab:d2:47:7c:05:e9:9c:50:e9:19:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cf56321eb7ea3ee45cded028668420e37fa2fac
Validity
Not Before: Jan 1 19:35:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f558233a6cf2405a08fb28f3e0a3483ab80a66a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:3e:c2:86:dc:5d:8e:a1:ff:13:c4:01:f9:7d:
af:1a:1f:40:b8:8f:87:cd:29:83:d9:30:7c:0d:72:
14:d6:58:7e:fc:08:8e:ee:d0:c5:86:0c:d3:25:27:
56:ae:3b:93:1f:87:4d:6c:8d:bd:25:f5:24:e0:7d:
5c:06:87:af:2f:e6:4f:ad:30:8a:13:85:c3:ab:20:
fe:f1:2c:af:9e:39:39:e3:91:e3:46:42:4e:5a:76:
b8:d0:91:0a:0e:a3:d5:59:a4:48:cf:36:24:09:89:
bb:a4:72:85:c7:31:91:d9:01:6c:18:c0:5b:ff:78:
a7:24:e5:ed:1b:36:f6:e9:07:8b:11:97:86:1b:59:
f6:37:61:04:43:1b:7a:ff:95:28:04:59:29:f4:77:
d3:4f:3b:03:29:62:76:61:4c:24:4f:a2:de:4c:3c:
7c:c7:3a:6e:3d:fd:76:2f:48:fe:8b:d4:b3:44:15:
59:7d:1d:c1:f6:80:1a:82:2d:55:36:74:21:05:96:
cf:d5:3d:8d:e7:15:c4:80:6b:01:e7:c4:b6:b7:5e:
42:d8:8b:9a:fa:31:95:fe:c7:39:da:c5:d7:9e:10:
f7:0e:f2:e4:0d:e0:ec:fa:6b:54:de:a8:76:52:a0:
98:2c:32:e6:eb:ad:9b:59:7c:85:39:3f:39:52:12:
2a:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:55:82:33:A6:CF:24:05:A0:8F:B2:8F:3E:0A:34:83:AB:80:A6:6A
X509v3 Authority Key Identifier:
keyid:5C:F5:63:21:EB:7E:A3:EE:45:CD:ED:02:86:68:42:0E:37:FA:2F:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XPVjIet-o-5Fze0ChmhCDjf6L6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/dfa4a8-38b0-461b-a082-843e262dd8dc/1/X1WCM6bPJAWgj7KPPgo0g6uApmo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/dfa4a8-38b0-461b-a082-843e262dd8dc/1/XPVjIet-o-5Fze0ChmhCDjf6L6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.76.122.0/23
Signature Algorithm: sha256WithRSAEncryption
1b:36:76:b5:e3:b0:ef:e2:ee:dd:da:b3:85:2d:e9:f0:87:47:
0c:4a:86:67:79:f6:d0:4b:d2:fe:2e:40:54:61:78:25:a4:fb:
43:3d:df:94:f1:2a:9f:50:db:98:89:83:bf:7c:6e:ff:86:5a:
5a:94:c1:48:e4:ae:61:10:13:23:bf:dc:c7:5a:9c:75:9a:48:
a6:ff:e4:f4:78:8c:be:df:82:be:04:01:af:2a:f3:7a:cf:c1:
d1:3f:b6:aa:7b:fe:bf:c9:62:4e:72:c4:de:95:48:9c:20:f1:
7d:5a:ae:82:58:b3:21:96:22:e4:ba:07:2e:31:10:fb:71:74:
14:04:d2:9b:fe:fd:0d:95:04:e2:c0:81:97:59:e1:a7:c0:a2:
f1:94:af:ea:79:60:c6:37:53:ba:91:c5:2c:11:a6:5b:8f:70:
f1:75:5e:d2:f2:b6:95:5c:0f:c6:fc:d6:25:d4:4f:a0:b2:02:
2e:b3:94:08:7c:b0:f3:80:fb:66:ef:65:d9:41:21:d7:c9:d3:
e8:1b:71:b2:c9:69:17:43:a7:23:93:0a:bd:ff:ea:22:bd:b7:
a8:44:71:a3:e0:a1:45:a1:0e:cd:a0:1e:dc:84:d6:b2:c5:c0:
a2:ab:06:69:f0:99:f0:c3:57:84:93:89:82:4e:7b:97:ce:ec:
5e:31:16:d2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVu1J1Uh6vSR3wF6ZxQ6RlWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjZjU2MzIxZWI3ZWEzZWU0NWNkZWQwMjg2Njg0MjBlMzdm
YTJmYWMwHhcNMjMwMTAxMTkzNTA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZjU1ODIzM2E2Y2YyNDA1YTA4ZmIyOGYzZTBhMzQ4M2FiODBhNjZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmj7ChtxdjqH/E8QB+X2vGh9AuI+H
zSmD2TB8DXIU1lh+/AiO7tDFhgzTJSdWrjuTH4dNbI29JfUk4H1cBoevL+ZPrTCK
E4XDqyD+8Syvnjk545HjRkJOWna40JEKDqPVWaRIzzYkCYm7pHKFxzGR2QFsGMBb
/3inJOXtGzb26QeLEZeGG1n2N2EEQxt6/5UoBFkp9HfTTzsDKWJ2YUwkT6LeTDx8
xzpuPf12L0j+i9SzRBVZfR3B9oAagi1VNnQhBZbP1T2N5xXEgGsB58S2t15C2Iua
+jGV/sc52sXXnhD3DvLkDeDs+mtU3qh2UqCYLDLm662bWXyFOT85UhIqFQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF9VgjOmzyQFoI+yjz4KNIOrgKZqMB8GA1UdIwQY
MBaAFFz1YyHrfqPuRc3tAoZoQg43+i+sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFBWaklldC1vLTVGemUwQ2htaENEamY2TDZ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC9kZmE0YTgtMzhiMC00NjFiLWEwODIt
ODQzZTI2MmRkOGRjLzEvWDFXQ002YlBKQVdnajdLUFBnbzBnNnVBcG1vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MC9kZmE0YTgtMzhiMC00NjFiLWEwODItODQzZTI2MmRkOGRj
LzEvWFBWaklldC1vLTVGemUwQ2htaENEamY2TDZ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwkx6MA0G
CSqGSIb3DQEBCwUAA4IBAQAbNna147Dv4u7d2rOFLenwh0cMSoZnefbQS9L+LkBU
YXglpPtDPd+U8SqfUNuYiYO/fG7/hlpalMFI5K5hEBMjv9zHWpx1mkim/+T0eIy+
34K+BAGvKvN6z8HRP7aqe/6/yWJOcsTelUicIPF9Wq6CWLMhliLkugcuMRD7cXQU
BNKb/v0NlQTiwIGXWeGnwKLxlK/qeWDGN1O6kcUsEaZbj3DxdV7S8raVXA/G/NYl
1E+gsgIus5QIfLDzgPtm72XZQSHXydPoG3GyyWkXQ6cjkwq9/+oivbeoRHGj4KFF
oQ7NoB7chNayxcCiqwZp8Jnww1eEk4mCTnuXzuxeMRbS
-----END CERTIFICATE-----
Generated at Thu Apr 17 09:11:16 2025 by rpki-client