Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/60fcfe-7b2c-4672-bc2f-40479870976e/1/JOqS2ees2CDn1f5qdH3gKnVUwC0.roa
File: JOqS2ees2CDn1f5qdH3gKnVUwC0.roa (raw, json)
Hash identifier: WMjxnQcRDNYzU5RZVnEp/iu87zetX8xmamGoD4iaTEw=
Subject key identifier: 24:EA:92:D9:E7:AC:D8:20:E7:D5:FE:6A:74:7D:E0:2A:75:54:C0:2D
Certificate issuer: /CN=66de1d9dcdb25c1e532c5c9b69dfa757e306210e
Certificate serial: 328E4A9F
Authority key identifier: 66:DE:1D:9D:CD:B2:5C:1E:53:2C:5C:9B:69:DF:A7:57:E3:06:21:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zt4dnc2yXB5TLFybad-nV-MGIQ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/60fcfe-7b2c-4672-bc2f-40479870976e/1/JOqS2ees2CDn1f5qdH3gKnVUwC0.roa
Signing time: Mon 03 Jan 2022 23:24:15 +0000
ROA not before: Mon 03 Jan 2022 23:24:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57179
IP address blocks: 45.94.128.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 848186015 (0x328e4a9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66de1d9dcdb25c1e532c5c9b69dfa757e306210e
Validity
Not Before: Jan 3 23:24:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24ea92d9e7acd820e7d5fe6a747de02a7554c02d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:c9:12:dd:af:94:65:ec:ec:0c:1b:00:3f:2e:
23:71:f6:31:30:be:b0:4b:a3:4e:40:24:44:4c:b4:
30:5a:c3:b1:4b:97:2c:62:9c:b0:86:12:e6:fc:ff:
22:d8:cb:43:8a:c2:e5:e6:59:72:f9:10:ad:06:1e:
d1:0d:03:54:11:c0:e9:14:97:f5:ef:0c:0e:b0:2c:
63:3e:25:2d:88:4a:ae:36:fd:19:c7:79:e1:9d:83:
3f:b1:05:18:f0:00:a3:14:3c:95:38:51:fe:d6:63:
f3:ee:01:e4:ea:9c:29:06:2f:2c:20:62:95:93:7b:
f3:b6:fa:1b:6d:c9:c7:f4:38:e9:cb:8b:3a:77:40:
54:fb:be:54:d6:0e:72:d1:c5:7f:19:16:b5:a0:81:
b2:fa:ce:df:0c:d5:42:44:5e:cf:00:d0:8f:52:44:
f4:b2:24:38:82:7b:7a:69:c1:cb:b1:f2:66:24:61:
34:80:fd:c7:b5:2a:95:35:e5:46:fe:f2:c5:2e:29:
c2:3c:44:70:0b:cb:d9:ac:71:09:7a:59:fd:e9:74:
89:45:40:46:a1:01:db:7f:8f:49:28:58:2a:07:1e:
f4:4a:57:0c:43:65:ae:5e:c8:2d:20:66:80:1a:bb:
a5:b4:d1:03:a5:99:20:fe:b5:0f:68:7c:dd:e0:36:
59:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:EA:92:D9:E7:AC:D8:20:E7:D5:FE:6A:74:7D:E0:2A:75:54:C0:2D
X509v3 Authority Key Identifier:
keyid:66:DE:1D:9D:CD:B2:5C:1E:53:2C:5C:9B:69:DF:A7:57:E3:06:21:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zt4dnc2yXB5TLFybad-nV-MGIQ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/60fcfe-7b2c-4672-bc2f-40479870976e/1/JOqS2ees2CDn1f5qdH3gKnVUwC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/60fcfe-7b2c-4672-bc2f-40479870976e/1/Zt4dnc2yXB5TLFybad-nV-MGIQ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.128.0/22
Signature Algorithm: sha256WithRSAEncryption
00:71:24:7c:06:dd:02:02:60:9e:cd:2c:4b:73:d2:4b:1c:6c:
bb:04:70:b0:46:48:b9:88:cf:76:cf:99:82:f3:a0:3f:f1:36:
34:68:21:f2:87:76:a3:b2:58:92:77:5f:8d:46:82:7e:23:f2:
21:72:18:29:2b:d9:a9:17:42:95:0c:5a:4c:0e:69:77:b1:91:
96:ce:ef:f5:b3:a5:d8:94:1f:4e:3d:58:5c:f2:59:3b:66:83:
c4:ac:28:cf:9e:90:c6:5d:28:f8:30:33:27:3b:a0:33:96:88:
2e:91:5e:2a:ee:d1:cf:98:46:f9:f7:07:b7:0b:32:24:09:8f:
7c:28:b2:ca:1a:e9:dc:3f:38:83:d5:db:c3:8a:7f:4f:e1:f5:
20:73:16:4b:39:df:6c:3a:d4:f8:82:36:4e:43:2b:89:2e:bd:
ee:20:d2:e3:c4:07:5c:e7:b0:48:bd:82:62:89:40:3b:0a:eb:
4a:8b:16:a1:cc:12:b7:8d:ce:0f:34:c7:87:74:02:a6:74:7a:
38:58:e9:4e:33:55:03:63:97:5e:69:42:19:92:19:c1:9d:3c:
5d:73:2b:6f:b6:5c:db:c2:72:63:49:50:72:40:70:a8:87:fb:
f1:56:a2:b9:e8:f7:3e:ef:31:98:8b:ab:7e:f7:f6:f9:b4:f2:
d0:38:f5:31
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEMo5KnzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
NmRlMWQ5ZGNkYjI1YzFlNTMyYzVjOWI2OWRmYTc1N2UzMDYyMTBlMB4XDTIyMDEw
MzIzMjQxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjRlYTkyZDllN2Fj
ZDgyMGU3ZDVmZTZhNzQ3ZGUwMmE3NTU0YzAyZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOrJEt2vlGXs7AwbAD8uI3H2MTC+sEujTkAkREy0MFrDsUuX
LGKcsIYS5vz/ItjLQ4rC5eZZcvkQrQYe0Q0DVBHA6RSX9e8MDrAsYz4lLYhKrjb9
Gcd54Z2DP7EFGPAAoxQ8lThR/tZj8+4B5OqcKQYvLCBilZN787b6G23Jx/Q46cuL
OndAVPu+VNYOctHFfxkWtaCBsvrO3wzVQkRezwDQj1JE9LIkOIJ7emnBy7HyZiRh
NID9x7UqlTXlRv7yxS4pwjxEcAvL2axxCXpZ/el0iUVARqEB23+PSShYKgce9EpX
DENlrl7ILSBmgBq7pbTRA6WZIP61D2h83eA2WbcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQk6pLZ56zYIOfV/mp0feAqdVTALTAfBgNVHSMEGDAWgBRm3h2dzbJcHlMs
XJtp36dX4wYhDjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1p0NGRuYzJ5WEI1VExGeWJhZC1uVi1NR0lRNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjQvNjBmY2ZlLTdiMmMtNDY3Mi1iYzJmLTQwNDc5ODcwOTc2ZS8x
L0pPcVMyZWVzMkNEbjFmNXFkSDNnS25WVXdDMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjQv
NjBmY2ZlLTdiMmMtNDY3Mi1iYzJmLTQwNDc5ODcwOTc2ZS8xL1p0NGRuYzJ5WEI1
VExGeWJhZC1uVi1NR0lRNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi1egDANBgkqhkiG9w0BAQsFAAOC
AQEAAHEkfAbdAgJgns0sS3PSSxxsuwRwsEZIuYjPds+ZgvOgP/E2NGgh8od2o7JY
kndfjUaCfiPyIXIYKSvZqRdClQxaTA5pd7GRls7v9bOl2JQfTj1YXPJZO2aDxKwo
z56Qxl0o+DAzJzugM5aILpFeKu7Rz5hG+fcHtwsyJAmPfCiyyhrp3D84g9Xbw4p/
T+H1IHMWSznfbDrU+II2TkMriS697iDS48QHXOewSL2CYolAOwrrSosWocwSt43O
DzTHh3QCpnR6OFjpTjNVA2OXXmlCGZIZwZ08XXMrb7Zc28JyY0lQckBwqIf78Vai
uej3Pu8xmIurfvf2+bTy0Dj1MQ==
-----END CERTIFICATE-----
Generated at Tue Apr 8 10:12:58 2025 by rpki-client