Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/d2c38e-0aaf-4e3b-8ed8-b54ae6f08f4f/1/NoDGOwIRgAMYqZ7qT_CO2iLI-Zk.roa
File: NoDGOwIRgAMYqZ7qT_CO2iLI-Zk.roa (raw, json)
Hash identifier: Jsr62sKF8pQqUc+pc+mzKi200olXOhXth2Akr76xluk=
Subject key identifier: 36:80:C6:3B:02:11:80:03:18:A9:9E:EA:4F:F0:8E:DA:22:C8:F9:99
Certificate issuer: /CN=3be4761d44d806c3f9e4e76b79c8f2296cc7bbcf
Certificate serial: 018C6813A2546CAF328A3C88E52EECD861B2
Authority key identifier: 3B:E4:76:1D:44:D8:06:C3:F9:E4:E7:6B:79:C8:F2:29:6C:C7:BB:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O-R2HUTYBsP55OdrecjyKWzHu88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/d2c38e-0aaf-4e3b-8ed8-b54ae6f08f4f/1/NoDGOwIRgAMYqZ7qT_CO2iLI-Zk.roa
Signing time: Thu 14 Dec 2023 11:26:06 +0000
ROA not before: Thu 14 Dec 2023 11:26:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202234
IP address blocks: 185.49.108.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:68:13:a2:54:6c:af:32:8a:3c:88:e5:2e:ec:d8:61:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3be4761d44d806c3f9e4e76b79c8f2296cc7bbcf
Validity
Not Before: Dec 14 11:26:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3680c63b0211800318a99eea4ff08eda22c8f999
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ee:e0:d3:31:10:ee:44:ab:a1:d3:70:94:33:
9c:11:ab:d7:9b:c1:99:aa:82:5a:e5:5a:de:ab:9f:
1e:08:68:db:1e:0f:00:7d:d8:0d:75:ce:59:70:9e:
7b:a7:97:cb:f9:08:e5:fe:3d:99:35:eb:7c:2b:f6:
bb:4a:43:ab:a7:b3:be:57:64:71:e3:a8:05:d4:d0:
87:ff:d0:1b:b2:27:64:1e:d8:69:91:f2:f4:84:7a:
90:31:d0:2f:7d:89:d5:16:d1:c7:7f:fa:ed:da:7a:
0b:15:8d:23:a7:af:30:d5:7c:fe:36:af:f4:7d:74:
43:08:3c:c8:d0:29:ba:b1:90:da:c9:bd:50:30:73:
fb:53:25:d6:59:4a:77:40:6b:8a:45:79:59:e9:2c:
dd:34:48:09:2e:60:66:b8:e7:5c:7d:86:f7:7c:4e:
ab:68:af:75:92:2f:04:ca:0d:5c:f0:79:e9:49:cc:
f0:ae:05:bf:19:89:66:c5:8e:94:2e:ae:02:d4:3e:
e3:7d:de:11:4c:0c:1f:da:10:6e:17:b7:d9:4f:10:
28:4b:8a:55:c0:d1:84:53:20:db:af:b4:c0:b4:a9:
e7:47:7f:68:81:c5:27:42:60:35:00:24:11:6a:82:
98:91:2a:86:df:0a:31:66:5f:3b:3b:11:bc:67:39:
b1:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:80:C6:3B:02:11:80:03:18:A9:9E:EA:4F:F0:8E:DA:22:C8:F9:99
X509v3 Authority Key Identifier:
keyid:3B:E4:76:1D:44:D8:06:C3:F9:E4:E7:6B:79:C8:F2:29:6C:C7:BB:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O-R2HUTYBsP55OdrecjyKWzHu88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/d2c38e-0aaf-4e3b-8ed8-b54ae6f08f4f/1/NoDGOwIRgAMYqZ7qT_CO2iLI-Zk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/d2c38e-0aaf-4e3b-8ed8-b54ae6f08f4f/1/O-R2HUTYBsP55OdrecjyKWzHu88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.49.108.0/22
Signature Algorithm: sha256WithRSAEncryption
62:bf:d7:fb:61:b7:39:70:1f:c9:d3:df:89:aa:7e:f4:dc:72:
95:4b:37:5a:8d:67:ce:47:78:6f:02:87:86:2b:e6:b2:84:25:
c8:e3:0c:d4:1c:39:2e:11:a1:04:3c:cc:65:93:2a:fd:44:26:
ea:38:89:1b:e7:f5:68:4f:15:69:d0:e0:65:96:87:dd:9e:a7:
71:dd:80:08:d9:88:92:29:70:f6:1a:a0:b9:d5:28:7d:1e:fd:
78:76:22:25:26:55:25:fc:40:52:d8:66:48:d8:e8:bc:6b:70:
e4:19:91:bb:d0:6f:93:06:ed:80:1a:d2:38:7c:48:a0:6a:6e:
72:06:ed:e0:30:6f:03:54:b8:ef:f1:c8:39:3d:4f:eb:9c:56:
63:73:1a:c3:1b:55:e5:3e:4e:db:25:e7:f8:9a:67:a2:fe:a5:
f1:56:2a:97:6f:25:ff:78:54:e2:d6:33:87:a4:c5:1b:23:d6:
27:c6:b2:52:a8:65:09:52:00:8d:b6:d6:aa:32:45:2c:37:de:
99:ac:4d:94:72:64:17:6f:ee:4d:fe:23:a0:7b:60:3f:5c:1f:
ae:7e:23:7a:21:95:8c:1d:90:02:3d:a6:88:a1:c6:0f:06:d5:
8c:46:07:f0:d6:c4:2f:63:8a:95:51:47:c2:a6:c4:31:3b:fe:
c0:0c:e0:15
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYxoE6JUbK8yijyI5S7s2GGyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiZTQ3NjFkNDRkODA2YzNmOWU0ZTc2Yjc5YzhmMjI5NmNj
N2JiY2YwHhcNMjMxMjE0MTEyNjA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNjgwYzYzYjAyMTE4MDAzMThhOTllZWE0ZmYwOGVkYTIyYzhmOTk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApu7g0zEQ7kSrodNwlDOcEavXm8GZ
qoJa5Vreq58eCGjbHg8AfdgNdc5ZcJ57p5fL+Qjl/j2ZNet8K/a7SkOrp7O+V2Rx
46gF1NCH/9AbsidkHthpkfL0hHqQMdAvfYnVFtHHf/rt2noLFY0jp68w1Xz+Nq/0
fXRDCDzI0Cm6sZDayb1QMHP7UyXWWUp3QGuKRXlZ6SzdNEgJLmBmuOdcfYb3fE6r
aK91ki8Eyg1c8HnpSczwrgW/GYlmxY6ULq4C1D7jfd4RTAwf2hBuF7fZTxAoS4pV
wNGEUyDbr7TAtKnnR39ogcUnQmA1ACQRaoKYkSqG3woxZl87OxG8Zzmx+wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDaAxjsCEYADGKme6k/wjtoiyPmZMB8GA1UdIwQY
MBaAFDvkdh1E2AbD+eTna3nI8ilsx7vPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTy1SMkhVVFlCc1A1NU9kcmVjanlLV3pIdTg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS9kMmMzOGUtMGFhZi00ZTNiLThlZDgt
YjU0YWU2ZjA4ZjRmLzEvTm9ER093SVJnQU1ZcVo3cVRfQ08yaUxJLVprLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS9kMmMzOGUtMGFhZi00ZTNiLThlZDgtYjU0YWU2ZjA4ZjRm
LzEvTy1SMkhVVFlCc1A1NU9kcmVjanlLV3pIdTg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuTFsMA0G
CSqGSIb3DQEBCwUAA4IBAQBiv9f7Ybc5cB/J09+Jqn703HKVSzdajWfOR3hvAoeG
K+ayhCXI4wzUHDkuEaEEPMxlkyr9RCbqOIkb5/VoTxVp0OBllofdnqdx3YAI2YiS
KXD2GqC51Sh9Hv14diIlJlUl/EBS2GZI2Oi8a3DkGZG70G+TBu2AGtI4fEigam5y
Bu3gMG8DVLjv8cg5PU/rnFZjcxrDG1XlPk7bJef4mmei/qXxViqXbyX/eFTi1jOH
pMUbI9YnxrJSqGUJUgCNttaqMkUsN96ZrE2UcmQXb+5N/iOge2A/XB+ufiN6IZWM
HZACPaaIocYPBtWMRgfw1sQvY4qVUUfCpsQxO/7ADOAV
-----END CERTIFICATE-----
Generated at Sat Apr 19 14:35:49 2025 by rpki-client