Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/QHBvCdwC92kSLoNfZ-2ela7Gg-8.roa
File: QHBvCdwC92kSLoNfZ-2ela7Gg-8.roa (raw, json)
Hash identifier: Up+dVBpPmkAJL2PkpHa9IuUwpu7D6r6sO+XrWYA0VS0=
Subject key identifier: 40:70:6F:09:DC:02:F7:69:12:2E:83:5F:67:ED:9E:95:AE:C6:83:EF
Certificate issuer: /CN=3ee6cecffd9b8bba18d474e7b3993e0a1d14dbb3
Certificate serial: 32821CD1
Authority key identifier: 3E:E6:CE:CF:FD:9B:8B:BA:18:D4:74:E7:B3:99:3E:0A:1D:14:DB:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PubOz_2bi7oY1HTns5k-Ch0U27M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/QHBvCdwC92kSLoNfZ-2ela7Gg-8.roa
Signing time: Sat 01 Jan 2022 13:55:57 +0000
ROA not before: Sat 01 Jan 2022 13:55:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8767
IP address blocks: 194.246.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 847387857 (0x32821cd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ee6cecffd9b8bba18d474e7b3993e0a1d14dbb3
Validity
Not Before: Jan 1 13:55:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=40706f09dc02f769122e835f67ed9e95aec683ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b7:62:53:55:3b:8a:f6:ac:69:91:49:9a:68:
4f:73:ef:a5:0a:a7:88:dd:43:3c:4d:7b:8c:db:c4:
25:6c:e9:09:f3:91:c8:bb:e9:a7:5f:d5:83:88:14:
b5:66:e4:f7:dd:15:20:55:0f:9f:28:d1:95:fc:e2:
fb:14:3f:c3:f9:24:71:33:06:19:14:03:fe:48:37:
72:91:07:7c:16:6e:53:44:0f:ad:e7:4f:1d:4a:cc:
b5:d4:fd:97:79:9a:92:08:3b:5d:1a:12:17:0c:53:
c2:2b:f3:8a:f5:eb:c9:d8:b9:32:32:9d:33:50:a8:
19:e8:12:ca:fe:47:13:3c:d2:7e:64:d8:8c:1d:b4:
4c:d4:3c:98:f1:22:18:6b:17:38:14:2d:16:f4:64:
4a:85:ee:ae:03:d1:8c:1f:e7:54:cb:7e:30:7a:fd:
3e:f0:5a:51:a4:10:ba:ad:cb:bc:16:b9:16:ea:1a:
3c:b6:59:8d:13:b8:06:84:e9:26:86:33:32:83:35:
c0:a5:6e:62:d7:74:29:7b:17:85:6c:4a:68:36:7c:
3b:47:d8:f8:61:44:73:0c:9c:aa:0c:73:96:49:a3:
72:2b:4a:27:40:61:44:ad:6b:35:15:e5:c0:18:16:
06:37:bf:c1:ca:44:14:00:62:f9:26:c1:5a:37:c1:
71:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:70:6F:09:DC:02:F7:69:12:2E:83:5F:67:ED:9E:95:AE:C6:83:EF
X509v3 Authority Key Identifier:
keyid:3E:E6:CE:CF:FD:9B:8B:BA:18:D4:74:E7:B3:99:3E:0A:1D:14:DB:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PubOz_2bi7oY1HTns5k-Ch0U27M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/QHBvCdwC92kSLoNfZ-2ela7Gg-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/PubOz_2bi7oY1HTns5k-Ch0U27M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.246.16.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:c1:30:83:0a:84:e1:ef:f9:c3:52:e2:08:fc:65:69:f7:68:
fb:74:27:bf:da:64:67:f4:f5:8b:27:3a:1f:21:c2:0d:97:66:
6e:b2:6b:2b:7f:bc:63:a0:d8:1b:f5:ad:54:93:be:49:8a:30:
7e:0c:80:ad:09:d4:91:18:22:d0:db:ac:a8:38:24:91:69:90:
64:6d:62:9e:6d:44:f0:c9:cd:17:af:4b:f3:96:fd:d4:c9:da:
d9:c3:11:28:a7:c6:a0:43:62:00:3d:2d:aa:ba:fc:f4:c4:90:
e1:d7:75:bc:95:01:30:d8:6c:33:6d:5e:21:67:d4:d0:6e:6d:
36:e3:24:39:b8:90:e3:e8:db:4a:40:19:02:71:2c:fd:7c:88:
bd:6c:eb:30:de:af:1a:74:12:22:41:2c:a9:4f:33:72:9d:78:
d4:1f:9c:11:63:d8:c9:00:16:80:0d:d3:5c:79:f4:63:30:88:
89:d9:3f:e3:cb:52:9e:b9:22:14:91:f8:3b:e7:c9:e9:e6:6d:
ea:94:ec:e9:4c:bf:e4:7f:33:bb:14:d1:89:91:a7:18:00:6b:
9f:1a:40:70:16:59:91:31:ab:c7:cb:a5:25:89:55:88:83:8b:
02:44:63:90:e6:7d:93:b0:65:e8:9c:7a:d2:db:73:f8:c5:0f:
02:3e:28:12
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEMoIc0TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
ZWU2Y2VjZmZkOWI4YmJhMThkNDc0ZTdiMzk5M2UwYTFkMTRkYmIzMB4XDTIyMDEw
MTEzNTU1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDA3MDZmMDlkYzAy
Zjc2OTEyMmU4MzVmNjdlZDllOTVhZWM2ODNlZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALC3YlNVO4r2rGmRSZpoT3PvpQqniN1DPE17jNvEJWzpCfOR
yLvpp1/Vg4gUtWbk990VIFUPnyjRlfzi+xQ/w/kkcTMGGRQD/kg3cpEHfBZuU0QP
redPHUrMtdT9l3makgg7XRoSFwxTwivzivXrydi5MjKdM1CoGegSyv5HEzzSfmTY
jB20TNQ8mPEiGGsXOBQtFvRkSoXurgPRjB/nVMt+MHr9PvBaUaQQuq3LvBa5Fuoa
PLZZjRO4BoTpJoYzMoM1wKVuYtd0KXsXhWxKaDZ8O0fY+GFEcwycqgxzlkmjcitK
J0BhRK1rNRXlwBgWBje/wcpEFABi+SbBWjfBcfECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRAcG8J3AL3aRIug19n7Z6VrsaD7zAfBgNVHSMEGDAWgBQ+5s7P/ZuLuhjU
dOezmT4KHRTbszAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1B1Yk96XzJiaTdvWTFIVG5zNWstQ2gwVTI3TS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjkvZTYxY2FhLTI1MDAtNDM4OC1hOWZhLTczMjQ5MTM5NzVkNS8x
L1FIQnZDZHdDOTJrU0xvTmZaLTJlbGE3R2ctOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjkv
ZTYxY2FhLTI1MDAtNDM4OC1hOWZhLTczMjQ5MTM5NzVkNS8xL1B1Yk96XzJiaTdv
WTFIVG5zNWstQ2gwVTI3TS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAML2EDANBgkqhkiG9w0BAQsFAAOC
AQEAzcEwgwqE4e/5w1LiCPxlafdo+3Qnv9pkZ/T1iyc6HyHCDZdmbrJrK3+8Y6DY
G/WtVJO+SYowfgyArQnUkRgi0NusqDgkkWmQZG1inm1E8MnNF69L85b91Mna2cMR
KKfGoENiAD0tqrr89MSQ4dd1vJUBMNhsM21eIWfU0G5tNuMkObiQ4+jbSkAZAnEs
/XyIvWzrMN6vGnQSIkEsqU8zcp141B+cEWPYyQAWgA3TXHn0YzCIidk/48tSnrki
FJH4O+fJ6eZt6pTs6Uy/5H8zuxTRiZGnGABrnxpAcBZZkTGrx8ulJYlViIOLAkRj
kOZ9k7Bl6Jx60ttz+MUPAj4oEg==
-----END CERTIFICATE-----
Generated at Sat Apr 19 08:22:07 2025 by rpki-client