Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/da96f5-3f33-46f9-a514-2befffd57fb7/1/u5kKUyUXTJ_HYVw_C7ODFoy-ECQ.roa
File: u5kKUyUXTJ_HYVw_C7ODFoy-ECQ.roa (raw, json)
Hash identifier: tQMJ2V0Jll8Ves309/BJh4N5Yauz7orDfv+LiOa6MlA=
Subject key identifier: BB:99:0A:53:25:17:4C:9F:C7:61:5C:3F:0B:B3:83:16:8C:BE:10:24
Certificate issuer: /CN=4196230e58decc0cbcfb15f56aa64dedd1f389f5
Certificate serial: 67B3A5
Authority key identifier: 41:96:23:0E:58:DE:CC:0C:BC:FB:15:F5:6A:A6:4D:ED:D1:F3:89:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QZYjDljezAy8-xX1aqZN7dHzifU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/da96f5-3f33-46f9-a514-2befffd57fb7/1/u5kKUyUXTJ_HYVw_C7ODFoy-ECQ.roa
Signing time: Sat 01 Jan 2022 03:56:53 +0000
ROA not before: Sat 01 Jan 2022 03:56:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39855
IP address blocks: 195.128.162.0/24 maxlen: 24
195.128.178.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6796197 (0x67b3a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4196230e58decc0cbcfb15f56aa64dedd1f389f5
Validity
Not Before: Jan 1 03:56:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb990a5325174c9fc7615c3f0bb383168cbe1024
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:54:40:ec:ee:0b:33:41:53:4a:4c:a4:0a:1a:
ad:b7:22:b2:df:f1:2f:f0:6d:ba:e7:38:fe:f6:05:
32:e4:e7:d6:d5:62:a6:13:e5:66:de:59:ee:40:9a:
d6:5a:ac:d0:4d:c6:16:2c:fd:fc:b0:fd:b2:d8:73:
da:eb:d4:7e:c1:9e:aa:d6:a4:0a:96:97:b5:b2:1f:
c3:c5:3c:60:32:05:43:a9:d7:cd:7d:9d:af:68:3e:
6c:f3:fb:5d:7f:c2:4d:e7:fb:e7:91:e1:2e:7c:e1:
cd:35:4f:af:4f:68:ca:2c:a7:7e:3f:49:b0:06:29:
e0:0f:8f:10:2c:4d:38:5b:c5:b7:e4:9a:6a:1d:f5:
bd:9a:ed:8c:25:22:68:9e:1d:b2:83:6d:fb:64:04:
39:7a:de:98:6b:a4:c0:74:26:ad:15:b1:18:d8:ac:
8d:b3:ae:5f:c4:7b:65:24:7f:1f:14:19:8c:19:01:
44:e1:9d:ad:65:eb:4c:97:94:06:79:8a:22:92:7a:
20:2d:30:5e:04:bb:5d:79:3c:80:3c:28:fd:71:57:
32:b7:1a:9a:a2:0f:2c:1b:69:fc:a9:1c:fd:b6:24:
53:2c:4c:1c:93:27:35:1e:c3:53:25:e7:9b:8f:37:
2b:f2:e1:77:72:29:cc:80:28:8c:80:02:41:83:cb:
50:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:99:0A:53:25:17:4C:9F:C7:61:5C:3F:0B:B3:83:16:8C:BE:10:24
X509v3 Authority Key Identifier:
keyid:41:96:23:0E:58:DE:CC:0C:BC:FB:15:F5:6A:A6:4D:ED:D1:F3:89:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QZYjDljezAy8-xX1aqZN7dHzifU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/da96f5-3f33-46f9-a514-2befffd57fb7/1/u5kKUyUXTJ_HYVw_C7ODFoy-ECQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/da96f5-3f33-46f9-a514-2befffd57fb7/1/QZYjDljezAy8-xX1aqZN7dHzifU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.128.162.0/24
195.128.178.0/24
Signature Algorithm: sha256WithRSAEncryption
72:68:6b:97:1e:26:a2:29:c9:87:49:34:9e:40:e4:aa:02:93:
ea:1a:bc:a4:75:06:43:9c:71:cd:d2:f6:d5:0a:2d:50:b3:c3:
3d:44:f3:24:04:65:c4:44:a4:7c:ed:1d:ed:26:78:00:e0:8e:
96:17:1d:51:a4:81:fa:da:47:74:8a:8b:55:db:94:c2:1d:1c:
b9:72:c0:d0:e4:dd:c5:ff:8f:bf:e6:64:72:8f:f8:58:52:1e:
d3:9b:24:ca:98:3a:3a:63:65:17:24:4d:5b:92:36:64:2d:66:
05:78:12:aa:de:cb:23:b5:ca:82:a2:08:0c:9b:45:5c:73:6d:
3b:88:f4:38:9d:b1:38:c9:5a:1b:0f:db:b3:38:0d:11:7a:b0:
6b:6b:8b:05:4f:7e:a7:a2:b7:ea:99:07:ba:cf:92:da:f5:69:
02:ab:0d:b9:7e:9a:9a:26:07:08:9b:6b:fc:ca:3d:d5:cf:8c:
13:9c:ea:98:5a:b0:8d:88:ea:de:c9:19:e4:c8:f6:20:62:96:
83:21:25:ac:0b:0f:e2:be:84:88:ec:20:bf:86:f3:b7:33:60:
94:e0:d3:e7:bb:39:96:6e:0f:33:0f:98:07:d3:24:5d:4e:a8:
e8:2e:2b:cd:40:83:24:88:8e:c8:29:74:bf:65:79:2a:00:6a:
1d:8a:15:e3
-----BEGIN CERTIFICATE-----
MIIE9DCCA9ygAwIBAgIDZ7OlMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDQx
OTYyMzBlNThkZWNjMGNiY2ZiMTVmNTZhYTY0ZGVkZDFmMzg5ZjUwHhcNMjIwMTAx
MDM1NjUzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhiYjk5MGE1MzI1MTc0
YzlmYzc2MTVjM2YwYmIzODMxNjhjYmUxMDI0MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAu1RA7O4LM0FTSkykChqttyKy3/Ev8G265zj+9gUy5OfW1WKm
E+Vm3lnuQJrWWqzQTcYWLP38sP2y2HPa69R+wZ6q1qQKlpe1sh/DxTxgMgVDqdfN
fZ2vaD5s8/tdf8JN5/vnkeEufOHNNU+vT2jKLKd+P0mwBingD48QLE04W8W35Jpq
HfW9mu2MJSJonh2yg237ZAQ5et6Ya6TAdCatFbEY2KyNs65fxHtlJH8fFBmMGQFE
4Z2tZetMl5QGeYoiknogLTBeBLtdeTyAPCj9cVcytxqaog8sG2n8qRz9tiRTLEwc
kyc1HsNTJeebjzcr8uF3cinMgCiMgAJBg8tQDQIDAQABo4ICDzCCAgswHQYDVR0O
BBYEFLuZClMlF0yfx2FcPwuzgxaMvhAkMB8GA1UdIwQYMBaAFEGWIw5Y3swMvPsV
9WqmTe3R84n1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
UVpZakRsamV6QXk4LXhYMWFxWk43ZEh6aWZVLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC83MC9kYTk2ZjUtM2YzMy00NmY5LWE1MTQtMmJlZmZmZDU3ZmI3LzEv
dTVrS1V5VVhUSl9IWVZ3X0M3T0RGb3ktRUNRLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC9k
YTk2ZjUtM2YzMy00NmY5LWE1MTQtMmJlZmZmZDU3ZmI3LzEvUVpZakRsamV6QXk4
LXhYMWFxWk43ZEh6aWZVLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUG
CCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAw4CiAwQAw4CyMA0GCSqGSIb3DQEB
CwUAA4IBAQByaGuXHiaiKcmHSTSeQOSqApPqGrykdQZDnHHN0vbVCi1Qs8M9RPMk
BGXERKR87R3tJngA4I6WFx1RpIH62kd0iotV25TCHRy5csDQ5N3F/4+/5mRyj/hY
Uh7TmyTKmDo6Y2UXJE1bkjZkLWYFeBKq3ssjtcqCoggMm0Vcc207iPQ4nbE4yVob
D9uzOA0RerBra4sFT36norfqmQe6z5La9WkCqw25fpqaJgcIm2v8yj3Vz4wTnOqY
WrCNiOreyRnkyPYgYpaDISWsCw/ivoSI7CC/hvO3M2CU4NPnuzmWbg8zD5gH0yRd
TqjoLivNQIMkiI7IKXS/ZXkqAGodihXj
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:20:45 2025 by rpki-client