Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/kUyYtRVGy6mNiJYOFns5NsS3Jdw.roa
File: kUyYtRVGy6mNiJYOFns5NsS3Jdw.roa (raw, json)
Hash identifier: MvkxO+Fm4vAvPLhVPwLkQZHmODxLYQ7Nj2S6PX4UfbM=
Subject key identifier: 91:4C:98:B5:15:46:CB:A9:8D:88:96:0E:16:7B:39:36:C4:B7:25:DC
Certificate issuer: /CN=7539b7a123417aa719325946aa89e0f30ab0ca09
Certificate serial: 39B3CED4
Authority key identifier: 75:39:B7:A1:23:41:7A:A7:19:32:59:46:AA:89:E0:F3:0A:B0:CA:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dTm3oSNBeqcZMllGqong8wqwygk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/kUyYtRVGy6mNiJYOFns5NsS3Jdw.roa
Signing time: Wed 29 Jun 2022 08:20:04 +0000
ROA not before: Wed 29 Jun 2022 08:20:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12850
IP address blocks: 87.248.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 968085204 (0x39b3ced4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7539b7a123417aa719325946aa89e0f30ab0ca09
Validity
Not Before: Jun 29 08:20:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=914c98b51546cba98d88960e167b3936c4b725dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a0:44:4c:bb:d9:4f:b7:20:3e:94:3f:71:09:
ca:cd:93:47:ee:88:fb:cc:c5:c6:80:3d:83:f4:24:
77:67:f2:1a:05:2e:e1:b8:e6:26:22:54:d1:92:51:
f4:73:60:3e:f6:00:35:52:20:dc:47:87:31:10:e4:
5b:6a:da:32:24:2b:4c:e7:ab:cb:ac:da:60:87:39:
46:b6:05:1e:98:b5:b2:e7:86:e8:7e:f2:2d:bb:ea:
b0:ba:8f:55:2b:76:e5:a2:4c:63:d3:71:90:89:7a:
9a:13:8b:6a:27:5c:07:5a:36:3c:38:de:7c:a2:16:
e9:0f:f7:f7:3b:98:f5:e0:b3:54:49:43:19:b7:9f:
96:63:a6:ae:7b:05:f0:97:48:be:74:87:f0:72:32:
f4:81:03:33:16:11:1d:b4:b8:08:57:9e:bd:a4:0c:
9c:9f:11:7f:8d:73:5c:12:ed:7c:62:20:25:c7:73:
60:09:1a:6c:07:73:27:ab:14:92:96:84:aa:a6:34:
bc:55:09:f3:73:49:7a:d2:e4:44:cc:5e:b7:c4:9d:
c9:e8:26:3f:d6:3a:f2:78:86:ed:05:df:e4:f8:47:
57:75:00:66:a7:ed:5c:c8:f5:72:e6:e0:c6:b1:2a:
71:7c:bb:bb:54:4d:ba:d4:2e:bd:d4:d2:b6:13:b8:
bc:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:4C:98:B5:15:46:CB:A9:8D:88:96:0E:16:7B:39:36:C4:B7:25:DC
X509v3 Authority Key Identifier:
keyid:75:39:B7:A1:23:41:7A:A7:19:32:59:46:AA:89:E0:F3:0A:B0:CA:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dTm3oSNBeqcZMllGqong8wqwygk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/kUyYtRVGy6mNiJYOFns5NsS3Jdw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/dTm3oSNBeqcZMllGqong8wqwygk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.32.0/19
Signature Algorithm: sha256WithRSAEncryption
cb:3d:a5:67:6c:9b:ab:cd:f5:25:25:bd:35:84:da:2f:41:92:
2a:07:c6:92:b2:65:dd:01:1f:29:25:ef:80:80:81:a4:c3:f9:
43:0b:4b:20:41:1e:17:05:9b:ad:95:25:44:36:5b:9e:57:45:
fe:cb:8f:0c:ac:e4:e6:09:30:9c:9d:83:e8:f7:a0:88:a0:d8:
84:e9:69:27:d6:81:bc:a1:1c:c5:0d:f5:17:c7:58:04:24:f4:
35:5b:1c:e7:44:6a:d9:35:c3:f2:94:00:94:b0:4a:b0:8c:4b:
48:d8:2c:86:2c:07:36:39:81:2f:23:b6:71:05:87:96:22:72:
26:a8:99:99:ed:bc:64:b7:f6:e0:f5:52:7c:52:01:31:38:b7:
a7:ca:bc:5a:df:f7:dc:8d:42:6f:0d:ee:81:02:c4:ed:ab:a7:
0d:97:e9:e3:4b:62:43:23:8c:c4:4f:d9:a3:49:97:29:7f:9f:
f3:0c:2c:43:a3:80:4e:51:4b:1a:5e:37:47:56:80:c2:b5:ff:
bc:57:38:f6:e2:88:11:1a:fe:f3:44:37:cd:a6:2e:87:0f:7f:
e3:da:b7:ac:22:7b:cb:e9:62:ab:14:dd:1f:07:ae:8d:77:cb:
d0:90:61:f6:55:c2:f2:3f:89:7d:f8:99:ba:f7:bf:e2:10:b3:
42:2c:01:98
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEObPO1DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NTM5YjdhMTIzNDE3YWE3MTkzMjU5NDZhYTg5ZTBmMzBhYjBjYTA5MB4XDTIyMDYy
OTA4MjAwNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTE0Yzk4YjUxNTQ2
Y2JhOThkODg5NjBlMTY3YjM5MzZjNGI3MjVkYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL+gREy72U+3ID6UP3EJys2TR+6I+8zFxoA9g/Qkd2fyGgUu
4bjmJiJU0ZJR9HNgPvYANVIg3EeHMRDkW2raMiQrTOery6zaYIc5RrYFHpi1sueG
6H7yLbvqsLqPVSt25aJMY9NxkIl6mhOLaidcB1o2PDjefKIW6Q/39zuY9eCzVElD
GbeflmOmrnsF8JdIvnSH8HIy9IEDMxYRHbS4CFeevaQMnJ8Rf41zXBLtfGIgJcdz
YAkabAdzJ6sUkpaEqqY0vFUJ83NJetLkRMxet8SdyegmP9Y68niG7QXf5PhHV3UA
ZqftXMj1cubgxrEqcXy7u1RNutQuvdTSthO4vE8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSRTJi1FUbLqY2Ilg4Wezk2xLcl3DAfBgNVHSMEGDAWgBR1ObehI0F6pxky
WUaqieDzCrDKCTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RUbTNvU05CZXFjWk1sbEdxb25nOHdxd3lnay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmIvODA3ZWQ1LTUwYjMtNGU1Zi05MzY3LTViNWUzM2NlNzBhZC8x
L2tVeVl0UlZHeTZtTmlKWU9GbnM1TnNTM0pkdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmIv
ODA3ZWQ1LTUwYjMtNGU1Zi05MzY3LTViNWUzM2NlNzBhZC8xL2RUbTNvU05CZXFj
Wk1sbEdxb25nOHdxd3lnay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBVf4IDANBgkqhkiG9w0BAQsFAAOC
AQEAyz2lZ2ybq831JSW9NYTaL0GSKgfGkrJl3QEfKSXvgICBpMP5QwtLIEEeFwWb
rZUlRDZbnldF/suPDKzk5gkwnJ2D6PegiKDYhOlpJ9aBvKEcxQ31F8dYBCT0NVsc
50Rq2TXD8pQAlLBKsIxLSNgshiwHNjmBLyO2cQWHliJyJqiZme28ZLf24PVSfFIB
MTi3p8q8Wt/33I1Cbw3ugQLE7aunDZfp40tiQyOMxE/Zo0mXKX+f8wwsQ6OATlFL
Gl43R1aAwrX/vFc49uKIERr+80Q3zaYuhw9/49q3rCJ7y+liqxTdHweujXfL0JBh
9lXC8j+JffiZuve/4hCzQiwBmA==
-----END CERTIFICATE-----
Generated at Sat Apr 19 07:18:36 2025 by rpki-client