Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/b5ba77-898c-4d76-a845-0e6f39f56e19/1/RnL8ZjiG3JC9mRrrwiUEURTuaxI.roa
File: RnL8ZjiG3JC9mRrrwiUEURTuaxI.roa (raw, json)
Hash identifier: dHlH/hOfOv3dvtUBUOJGeKaqPSXAVCqeMN9uLCVgmYA=
Subject key identifier: 46:72:FC:66:38:86:DC:90:BD:99:1A:EB:C2:25:04:51:14:EE:6B:12
Certificate issuer: /CN=d9e483f8b027b20a70414a56d3fdc7894896addc
Certificate serial: 016A9C
Authority key identifier: D9:E4:83:F8:B0:27:B2:0A:70:41:4A:56:D3:FD:C7:89:48:96:AD:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2eSD-LAnsgpwQUpW0_3HiUiWrdw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/b5ba77-898c-4d76-a845-0e6f39f56e19/1/RnL8ZjiG3JC9mRrrwiUEURTuaxI.roa
Signing time: Fri 06 May 2022 08:08:02 +0000
ROA not before: Fri 06 May 2022 08:08:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16199
IP address blocks: 195.250.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92828 (0x16a9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9e483f8b027b20a70414a56d3fdc7894896addc
Validity
Not Before: May 6 08:08:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4672fc663886dc90bd991aebc225045114ee6b12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:79:a9:3d:28:e2:f8:35:32:b8:9e:9a:49:f6:
d7:b8:05:6a:15:a6:68:83:a3:0f:25:9f:90:58:c0:
0c:2e:04:cd:23:1b:39:ee:e6:64:dd:48:bf:22:c7:
03:28:4e:c1:71:aa:b1:dc:ee:35:5b:59:f5:5a:51:
95:f3:0e:13:21:4a:08:d3:f2:f9:80:8c:ab:af:74:
9a:9d:08:16:1c:1a:b4:e9:1f:f6:5f:95:85:00:fd:
99:95:4d:84:5e:48:68:19:3f:b2:50:ea:b8:1d:c0:
ea:42:4f:11:a1:a2:4a:0f:09:96:cd:6a:cd:c5:2d:
21:95:eb:49:3b:a1:9d:08:d4:73:ba:10:90:db:a0:
ef:23:9a:8e:e3:28:9e:62:b0:2a:39:15:74:c5:f7:
b8:a8:36:ef:28:c0:2e:68:94:39:20:0a:c7:2d:7c:
b3:45:fd:cc:36:c4:52:0b:e8:33:77:cc:c2:b8:ca:
d0:d0:b7:05:b7:f2:f7:9c:e2:eb:59:2a:6e:c9:e1:
4c:e0:2d:82:3e:1f:1b:cf:f2:02:60:d0:b1:74:b8:
ea:39:2d:67:00:fb:ca:3a:89:b6:62:07:ed:bc:8e:
59:37:e0:09:19:a2:3f:44:d9:e3:37:18:69:4f:92:
72:44:ec:a2:9f:46:41:d2:b8:5d:53:06:cc:47:9b:
c6:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:72:FC:66:38:86:DC:90:BD:99:1A:EB:C2:25:04:51:14:EE:6B:12
X509v3 Authority Key Identifier:
keyid:D9:E4:83:F8:B0:27:B2:0A:70:41:4A:56:D3:FD:C7:89:48:96:AD:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2eSD-LAnsgpwQUpW0_3HiUiWrdw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/b5ba77-898c-4d76-a845-0e6f39f56e19/1/RnL8ZjiG3JC9mRrrwiUEURTuaxI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/b5ba77-898c-4d76-a845-0e6f39f56e19/1/2eSD-LAnsgpwQUpW0_3HiUiWrdw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.250.59.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:69:8d:13:cb:67:b2:fd:db:14:fb:d3:89:fd:45:e2:3b:10:
46:62:fd:18:d9:16:8a:f0:80:26:71:0b:1f:69:74:0a:cf:09:
9b:d7:a1:c1:40:0a:19:d0:71:ca:11:18:bd:41:b5:48:d9:fc:
42:c8:0e:a6:81:cf:4a:a1:ad:47:4e:d3:a8:62:16:78:f4:aa:
44:a9:49:2f:a1:ef:28:2b:a8:ba:07:3e:9f:17:9b:e6:b1:6f:
9c:c3:ac:29:43:e6:77:af:33:a3:d6:5e:fc:29:82:6f:3e:2e:
4d:83:87:07:34:20:fd:ea:b6:db:2b:0e:98:0c:da:09:4a:81:
d4:b1:e6:45:38:cc:c1:3b:6f:43:79:49:a9:9e:fd:51:1d:bc:
73:89:9b:d6:94:bd:6f:ce:46:ea:f3:c8:bd:dc:1b:84:4a:ff:
7b:62:2e:0a:2f:06:da:b2:83:d4:44:bd:b6:e3:9f:43:14:8a:
6c:c0:98:a1:58:a9:97:bc:f1:9d:22:08:fb:a3:32:0f:8e:be:
ef:6f:db:8e:66:2f:ea:fa:90:27:74:17:bf:dd:a3:8a:86:24:
1e:98:ca:cc:5b:c6:63:e3:c1:7a:f9:eb:13:a5:d1:c0:70:36:
33:8f:a6:f5:1f:f4:4f:db:e2:bf:af:2f:19:27:5f:1c:e3:ce:
a3:d4:c8:0b
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAWqcMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGQ5
ZTQ4M2Y4YjAyN2IyMGE3MDQxNGE1NmQzZmRjNzg5NDg5NmFkZGMwHhcNMjIwNTA2
MDgwODAyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg0NjcyZmM2NjM4ODZk
YzkwYmQ5OTFhZWJjMjI1MDQ1MTE0ZWU2YjEyMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA63mpPSji+DUyuJ6aSfbXuAVqFaZog6MPJZ+QWMAMLgTNIxs5
7uZk3Ui/IscDKE7Bcaqx3O41W1n1WlGV8w4TIUoI0/L5gIyrr3SanQgWHBq06R/2
X5WFAP2ZlU2EXkhoGT+yUOq4HcDqQk8RoaJKDwmWzWrNxS0hletJO6GdCNRzuhCQ
26DvI5qO4yieYrAqORV0xfe4qDbvKMAuaJQ5IArHLXyzRf3MNsRSC+gzd8zCuMrQ
0LcFt/L3nOLrWSpuyeFM4C2CPh8bz/ICYNCxdLjqOS1nAPvKOom2YgftvI5ZN+AJ
GaI/RNnjNxhpT5JyROyin0ZB0rhdUwbMR5vGLwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFEZy/GY4htyQvZka68IlBFEU7msSMB8GA1UdIwQYMBaAFNnkg/iwJ7IKcEFK
VtP9x4lIlq3cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
MmVTRC1MQW5zZ3B3UVVwVzBfM0hpVWlXcmR3LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC83YS9iNWJhNzctODk4Yy00ZDc2LWE4NDUtMGU2ZjM5ZjU2ZTE5LzEv
Um5MOFpqaUczSkM5bVJycndpVUVVUlR1YXhJLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS9i
NWJhNzctODk4Yy00ZDc2LWE4NDUtMGU2ZjM5ZjU2ZTE5LzEvMmVTRC1MQW5zZ3B3
UVVwVzBfM0hpVWlXcmR3LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw/o7MA0GCSqGSIb3DQEBCwUAA4IB
AQC3aY0Ty2ey/dsU+9OJ/UXiOxBGYv0Y2RaK8IAmcQsfaXQKzwmb16HBQAoZ0HHK
ERi9QbVI2fxCyA6mgc9Koa1HTtOoYhZ49KpEqUkvoe8oK6i6Bz6fF5vmsW+cw6wp
Q+Z3rzOj1l78KYJvPi5Ng4cHNCD96rbbKw6YDNoJSoHUseZFOMzBO29DeUmpnv1R
HbxziZvWlL1vzkbq88i93BuESv97Yi4KLwbasoPURL22459DFIpswJihWKmXvPGd
Igj7ozIPjr7vb9uOZi/q+pAndBe/3aOKhiQemMrMW8Zj48F6+esTpdHAcDYzj6b1
H/RP2+K/ry8ZJ18c486j1MgL
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:15:47 2025 by rpki-client