Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/496d56-86ff-48be-bde3-271fde2dc655/1/DGp7y_JFTL3OXrrYGZtcS1clst8.roa
File: DGp7y_JFTL3OXrrYGZtcS1clst8.roa (raw, json)
Hash identifier: /5X0GSC8Piy0HYwioapg7/MNa00Ajg3xyHe07VGCQmU=
Subject key identifier: 0C:6A:7B:CB:F2:45:4C:BD:CE:5E:BA:D8:19:9B:5C:4B:57:25:B2:DF
Certificate issuer: /CN=75790c7ecf24d28be2e13fe069118cee27d58002
Certificate serial: 1C5D93C1
Authority key identifier: 75:79:0C:7E:CF:24:D2:8B:E2:E1:3F:E0:69:11:8C:EE:27:D5:80:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dXkMfs8k0ovi4T_gaRGM7ifVgAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/496d56-86ff-48be-bde3-271fde2dc655/1/DGp7y_JFTL3OXrrYGZtcS1clst8.roa
Signing time: Sat 01 Jan 2022 15:58:43 +0000
ROA not before: Sat 01 Jan 2022 15:58:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60909
IP address blocks: 93.114.216.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 475894721 (0x1c5d93c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75790c7ecf24d28be2e13fe069118cee27d58002
Validity
Not Before: Jan 1 15:58:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c6a7bcbf2454cbdce5ebad8199b5c4b5725b2df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:69:12:80:3a:ed:cd:e8:f8:71:85:a9:f1:21:
c7:ec:4a:8e:71:26:9c:c2:5b:6d:e3:94:31:a1:43:
8a:ed:6d:5b:23:52:72:d0:95:40:1f:48:c9:9e:d0:
c3:b0:32:90:21:c0:e1:9d:3a:2f:59:df:f0:10:d0:
b9:86:6b:cb:00:f4:c8:64:e2:61:4e:2f:f4:78:46:
46:fe:df:7b:45:94:68:d0:8d:5f:14:0a:84:5d:7b:
96:38:5d:77:6a:83:de:c4:de:60:26:3b:73:8b:3a:
11:5b:0c:31:0d:86:cf:23:88:07:cc:bf:70:f8:02:
0b:db:c9:67:79:f4:12:22:df:bd:57:6e:ae:58:10:
f6:b7:7c:9f:b9:cb:df:39:4a:5c:09:8c:27:3f:ce:
d3:e2:6a:6a:85:a8:01:0b:c4:9e:e7:ac:e8:87:57:
c2:44:14:c8:1b:e4:ac:b7:be:90:8b:07:7a:18:80:
f3:1d:60:f2:2e:f5:af:00:e7:a4:58:78:6f:da:17:
ef:0e:6a:f5:b0:2b:0f:f0:d6:83:44:36:ef:d4:c0:
90:d1:c0:90:a9:6e:fd:7e:32:7f:a9:be:ab:9e:a5:
e7:2a:67:ea:0f:33:2d:04:00:7e:98:c7:b1:b3:3e:
8a:99:27:fd:16:a4:6e:08:2b:67:66:2c:40:e9:b5:
1c:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:6A:7B:CB:F2:45:4C:BD:CE:5E:BA:D8:19:9B:5C:4B:57:25:B2:DF
X509v3 Authority Key Identifier:
keyid:75:79:0C:7E:CF:24:D2:8B:E2:E1:3F:E0:69:11:8C:EE:27:D5:80:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dXkMfs8k0ovi4T_gaRGM7ifVgAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/496d56-86ff-48be-bde3-271fde2dc655/1/DGp7y_JFTL3OXrrYGZtcS1clst8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/496d56-86ff-48be-bde3-271fde2dc655/1/dXkMfs8k0ovi4T_gaRGM7ifVgAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.114.216.0/22
Signature Algorithm: sha256WithRSAEncryption
83:f9:40:95:21:07:65:2e:6b:b4:aa:bc:bd:cb:52:24:6c:c3:
07:e6:f2:67:30:b1:87:6d:e9:49:4d:14:46:00:7c:11:6a:95:
ba:26:c1:0d:dd:d2:48:85:62:c9:8c:c6:e9:aa:8d:cf:97:f5:
0e:30:71:71:5d:62:e4:7b:c4:93:85:da:99:02:b3:20:b3:65:
72:fb:fc:0f:62:df:6e:f3:39:0d:de:db:e4:16:f9:d4:7c:65:
69:2a:bc:52:95:58:78:5e:80:88:36:08:66:d5:46:f6:32:77:
9d:1d:a4:9d:05:58:57:30:9d:98:2a:9c:43:d4:a6:2a:2e:4b:
2e:9d:87:9b:1b:d8:14:fb:cc:43:d0:37:35:84:01:2e:b4:c8:
d1:b2:b6:6b:85:3a:97:e8:66:bd:d4:00:09:4d:cc:e3:e6:18:
ad:e3:4b:9b:88:96:14:88:69:59:55:08:84:0c:1d:86:7f:3c:
f1:16:30:90:ec:e7:43:f6:e7:44:22:ba:f9:ab:2b:d0:67:8c:
69:d8:bc:12:d0:42:85:25:db:c1:5e:fa:a5:7d:59:37:6e:25:
2d:16:31:fd:f4:ae:dd:2c:67:59:25:54:cf:90:bd:1a:17:01:
ba:3c:ba:91:e1:df:25:da:d5:5e:2e:3a:3f:24:34:17:e6:48:
f0:c3:1a:c7
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEHF2TwTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NTc5MGM3ZWNmMjRkMjhiZTJlMTNmZTA2OTExOGNlZTI3ZDU4MDAyMB4XDTIyMDEw
MTE1NTg0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGM2YTdiY2JmMjQ1
NGNiZGNlNWViYWQ4MTk5YjVjNGI1NzI1YjJkZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJJpEoA67c3o+HGFqfEhx+xKjnEmnMJbbeOUMaFDiu1tWyNS
ctCVQB9IyZ7Qw7AykCHA4Z06L1nf8BDQuYZrywD0yGTiYU4v9HhGRv7fe0WUaNCN
XxQKhF17ljhdd2qD3sTeYCY7c4s6EVsMMQ2GzyOIB8y/cPgCC9vJZ3n0EiLfvVdu
rlgQ9rd8n7nL3zlKXAmMJz/O0+JqaoWoAQvEnues6IdXwkQUyBvkrLe+kIsHehiA
8x1g8i71rwDnpFh4b9oX7w5q9bArD/DWg0Q279TAkNHAkKlu/X4yf6m+q56l5ypn
6g8zLQQAfpjHsbM+ipkn/RakbggrZ2YsQOm1HCMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQManvL8kVMvc5eutgZm1xLVyWy3zAfBgNVHSMEGDAWgBR1eQx+zyTSi+Lh
P+BpEYzuJ9WAAjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RYa01mczhrMG92aTRUX2dhUkdNN2lmVmdBSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODIvNDk2ZDU2LTg2ZmYtNDhiZS1iZGUzLTI3MWZkZTJkYzY1NS8x
L0RHcDd5X0pGVEwzT1hycllHWnRjUzFjbHN0OC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODIv
NDk2ZDU2LTg2ZmYtNDhiZS1iZGUzLTI3MWZkZTJkYzY1NS8xL2RYa01mczhrMG92
aTRUX2dhUkdNN2lmVmdBSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAl1y2DANBgkqhkiG9w0BAQsFAAOC
AQEAg/lAlSEHZS5rtKq8vctSJGzDB+byZzCxh23pSU0URgB8EWqVuibBDd3SSIVi
yYzG6aqNz5f1DjBxcV1i5HvEk4XamQKzILNlcvv8D2LfbvM5Dd7b5Bb51HxlaSq8
UpVYeF6AiDYIZtVG9jJ3nR2knQVYVzCdmCqcQ9SmKi5LLp2HmxvYFPvMQ9A3NYQB
LrTI0bK2a4U6l+hmvdQACU3M4+YYreNLm4iWFIhpWVUIhAwdhn888RYwkOznQ/bn
RCK6+asr0GeMadi8EtBChSXbwV76pX1ZN24lLRYx/fSu3SxnWSVUz5C9GhcBujy6
keHfJdrVXi46PyQ0F+ZI8MMaxw==
-----END CERTIFICATE-----
Generated at Mon Apr 7 22:44:09 2025 by rpki-client