Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/e35ac1-05d1-406d-b668-36eaf7948531/1/Sdodxm8-3rhaJTpxyKyG9_hvenk.roa
File: Sdodxm8-3rhaJTpxyKyG9_hvenk.roa (raw, json)
Hash identifier: ZmmCx2k1y95Mhss1alNx57qCpXK4GCtzwKw02+gEbzI=
Subject key identifier: 49:DA:1D:C6:6F:3E:DE:B8:5A:25:3A:71:C8:AC:86:F7:F8:6F:7A:79
Certificate issuer: /CN=365b4abab716ad1407a902e5176560ecc37c966d
Certificate serial: 01856F1D801ABFEEA637EB9834759D1D84DD
Authority key identifier: 36:5B:4A:BA:B7:16:AD:14:07:A9:02:E5:17:65:60:EC:C3:7C:96:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NltKurcWrRQHqQLlF2Vg7MN8lm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/e35ac1-05d1-406d-b668-36eaf7948531/1/Sdodxm8-3rhaJTpxyKyG9_hvenk.roa
Signing time: Sun 01 Jan 2023 20:54:42 +0000
ROA not before: Sun 01 Jan 2023 20:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16019
IP address blocks: 130.193.17.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:80:1a:bf:ee:a6:37:eb:98:34:75:9d:1d:84:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=365b4abab716ad1407a902e5176560ecc37c966d
Validity
Not Before: Jan 1 20:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=49da1dc66f3edeb85a253a71c8ac86f7f86f7a79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:89:ab:ff:92:91:a8:0f:79:47:0b:d7:79:30:
eb:16:5b:83:4b:e6:a9:00:09:b2:7b:18:ba:47:fb:
d9:19:84:76:fe:83:a5:2d:58:14:f5:16:6f:49:3e:
8b:1d:ab:11:84:20:7b:1c:5f:83:ac:07:c6:1d:7d:
e3:22:04:82:c0:50:b4:f5:5f:60:a2:6f:48:9c:28:
f9:a1:02:23:a8:5f:99:0d:7e:39:3a:00:ea:05:bb:
5e:3b:13:34:11:88:f1:e0:3a:ee:c2:2c:c7:11:71:
17:9f:26:0a:9b:3c:fd:6b:68:c6:e3:5a:96:ff:0b:
df:0e:02:e6:50:20:72:1c:45:09:3c:d0:08:75:1b:
5c:80:c6:7b:7b:8d:a9:e2:11:bc:da:52:46:b5:88:
3f:b0:3a:7d:97:8b:32:50:31:98:b5:d8:89:fd:85:
6f:b5:19:f1:e2:f9:64:7e:fa:32:62:77:2c:a9:dc:
ea:34:9c:39:bb:73:ce:36:78:b7:03:81:bd:e3:b0:
8e:0d:a5:0d:d0:1a:8c:ea:b1:ae:1d:88:b0:ca:73:
ad:a7:a0:ad:dc:f6:09:39:e6:e3:09:80:82:9d:79:
6c:96:4b:be:e4:ff:ce:65:50:0b:ff:6d:a7:a9:be:
7f:9e:8a:d3:16:21:ea:2b:46:99:06:08:91:c1:53:
13:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:DA:1D:C6:6F:3E:DE:B8:5A:25:3A:71:C8:AC:86:F7:F8:6F:7A:79
X509v3 Authority Key Identifier:
keyid:36:5B:4A:BA:B7:16:AD:14:07:A9:02:E5:17:65:60:EC:C3:7C:96:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NltKurcWrRQHqQLlF2Vg7MN8lm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/e35ac1-05d1-406d-b668-36eaf7948531/1/Sdodxm8-3rhaJTpxyKyG9_hvenk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/e35ac1-05d1-406d-b668-36eaf7948531/1/NltKurcWrRQHqQLlF2Vg7MN8lm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.193.17.0/24
Signature Algorithm: sha256WithRSAEncryption
86:d4:a1:4d:8c:c1:88:d0:af:71:96:21:40:09:ef:9e:83:2d:
f0:39:2d:0a:80:81:27:f9:05:a1:f4:b4:1f:6f:0f:13:ff:09:
8a:8a:3b:ce:d2:39:52:d9:96:fe:d5:6d:f0:38:79:df:73:7b:
8c:ab:1c:93:09:68:5b:21:a4:12:5f:cd:55:88:56:44:fb:06:
85:15:3e:9a:56:e2:b0:e2:ec:04:c1:e6:b5:3f:d1:24:e4:d2:
dc:c8:d4:25:e2:91:a8:fe:f3:c2:5c:03:46:3a:95:42:bc:42:
c2:a1:42:c6:47:b6:29:17:70:6d:c1:de:2c:19:68:25:3b:b7:
24:17:c1:f0:40:bf:e1:35:a3:a6:d9:75:1b:89:de:a6:f5:f4:
2c:82:10:b7:56:f8:a9:7a:a9:b8:df:5d:7c:b7:05:ef:95:33:
c4:23:03:88:28:a9:f8:a6:69:57:d7:a2:ce:9a:cf:c9:ef:15:
34:94:e4:cb:9e:6c:ea:35:ee:1a:4d:cb:3b:ed:3d:80:d0:63:
7e:65:84:8a:b5:a6:cd:9f:b5:c4:9e:9a:c4:27:8f:1c:b3:6e:
d9:fa:76:28:d6:11:dc:85:3a:95:57:37:3d:45:b4:f6:7a:82:
4a:d6:fe:ec:60:9a:29:30:bf:fa:f4:e7:47:08:b9:f4:1a:a9:
d8:05:41:f4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvHYAav+6mN+uYNHWdHYTdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2NWI0YWJhYjcxNmFkMTQwN2E5MDJlNTE3NjU2MGVjYzM3
Yzk2NmQwHhcNMjMwMTAxMjA1NDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OWRhMWRjNjZmM2VkZWI4NWEyNTNhNzFjOGFjODZmN2Y4NmY3YTc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiYmr/5KRqA95RwvXeTDrFluDS+ap
AAmyexi6R/vZGYR2/oOlLVgU9RZvST6LHasRhCB7HF+DrAfGHX3jIgSCwFC09V9g
om9InCj5oQIjqF+ZDX45OgDqBbteOxM0EYjx4DruwizHEXEXnyYKmzz9a2jG41qW
/wvfDgLmUCByHEUJPNAIdRtcgMZ7e42p4hG82lJGtYg/sDp9l4syUDGYtdiJ/YVv
tRnx4vlkfvoyYncsqdzqNJw5u3PONni3A4G947CODaUN0BqM6rGuHYiwynOtp6Ct
3PYJOebjCYCCnXlslku+5P/OZVAL/22nqb5/norTFiHqK0aZBgiRwVMTfQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEnaHcZvPt64WiU6ccishvf4b3p5MB8GA1UdIwQY
MBaAFDZbSrq3Fq0UB6kC5RdlYOzDfJZtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTmx0S3VyY1dyUlFIcVFMbEYyVmc3TU44bG0wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS9lMzVhYzEtMDVkMS00MDZkLWI2Njgt
MzZlYWY3OTQ4NTMxLzEvU2RvZHhtOC0zcmhhSlRweHlLeUc5X2h2ZW5rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZS9lMzVhYzEtMDVkMS00MDZkLWI2NjgtMzZlYWY3OTQ4NTMx
LzEvTmx0S3VyY1dyUlFIcVFMbEYyVmc3TU44bG0wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAgsERMA0G
CSqGSIb3DQEBCwUAA4IBAQCG1KFNjMGI0K9xliFACe+egy3wOS0KgIEn+QWh9LQf
bw8T/wmKijvO0jlS2Zb+1W3wOHnfc3uMqxyTCWhbIaQSX81ViFZE+waFFT6aVuKw
4uwEwea1P9Ek5NLcyNQl4pGo/vPCXANGOpVCvELCoULGR7YpF3Btwd4sGWglO7ck
F8HwQL/hNaOm2XUbid6m9fQsghC3Vvipeqm43118twXvlTPEIwOIKKn4pmlX16LO
ms/J7xU0lOTLnmzqNe4aTcs77T2A0GN+ZYSKtabNn7XEnprEJ48cs27Z+nYo1hHc
hTqVVzc9RbT2eoJK1v7sYJopML/69OdHCLn0GqnYBUH0
-----END CERTIFICATE-----
Generated at Sun Apr 13 10:25:20 2025 by rpki-client