Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/e02035-73ae-4fd2-80c1-e151d4d39b41/1/TjubIkXQPMOJ2dyEciKWLMR-3YI.roa
File: TjubIkXQPMOJ2dyEciKWLMR-3YI.roa (raw, json)
Hash identifier: uEcpgtMiMcjwV06vm5aBYBEMGAEQWw9yXrhVlVtVrKE=
Subject key identifier: 4E:3B:9B:22:45:D0:3C:C3:89:D9:DC:84:72:22:96:2C:C4:7E:DD:82
Certificate issuer: /CN=ba6c1d958ff094caf1346cc66f716cceb6dc5009
Certificate serial: 03819F5C
Authority key identifier: BA:6C:1D:95:8F:F0:94:CA:F1:34:6C:C6:6F:71:6C:CE:B6:DC:50:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umwdlY_wlMrxNGzGb3FszrbcUAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/e02035-73ae-4fd2-80c1-e151d4d39b41/1/TjubIkXQPMOJ2dyEciKWLMR-3YI.roa
Signing time: Sat 01 Jan 2022 12:04:08 +0000
ROA not before: Sat 01 Jan 2022 12:04:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49995
IP address blocks: 195.178.10.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58826588 (0x3819f5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba6c1d958ff094caf1346cc66f716cceb6dc5009
Validity
Not Before: Jan 1 12:04:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e3b9b2245d03cc389d9dc847222962cc47edd82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:f8:e6:4c:9d:50:ae:71:43:6d:f2:32:1e:c8:
a0:61:cd:5a:9d:fa:e3:da:c1:00:b0:bf:0b:02:aa:
db:19:34:de:80:ea:e0:53:ce:7a:29:f7:43:29:87:
56:d8:ca:10:b3:51:bd:10:3f:68:37:18:d4:c9:2a:
f1:10:d6:07:32:f4:92:05:b3:93:07:73:a8:07:b8:
09:86:0b:5b:1f:1c:b3:8e:dc:d4:06:c9:75:43:3d:
c6:8a:72:47:bc:dd:4e:df:e2:35:39:6f:19:50:b3:
bd:2f:b2:17:b0:96:91:68:77:63:a1:dc:08:f3:4f:
af:3b:02:0a:aa:a9:d1:d3:f7:36:9b:cf:fa:16:a2:
e7:40:da:c3:65:0d:e5:f9:ec:fc:79:e1:2f:c5:3b:
54:ff:6c:33:2b:df:28:37:a7:32:92:ac:ac:59:fa:
a7:01:2e:83:5a:cb:41:2c:5e:cb:0a:2c:7d:88:a6:
42:0e:fd:d4:ef:1b:e5:6d:ff:b0:c3:ae:09:57:f3:
86:ea:99:62:61:db:74:b4:09:e5:29:08:72:2e:58:
c6:5d:fc:84:cb:83:82:b0:84:fa:97:8b:f7:b1:67:
8f:fd:1b:ec:dd:bc:a9:43:4e:7a:6b:9c:78:c5:5a:
37:a1:33:ec:77:ad:12:52:9b:96:86:14:27:e8:bd:
71:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:3B:9B:22:45:D0:3C:C3:89:D9:DC:84:72:22:96:2C:C4:7E:DD:82
X509v3 Authority Key Identifier:
keyid:BA:6C:1D:95:8F:F0:94:CA:F1:34:6C:C6:6F:71:6C:CE:B6:DC:50:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umwdlY_wlMrxNGzGb3FszrbcUAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/e02035-73ae-4fd2-80c1-e151d4d39b41/1/TjubIkXQPMOJ2dyEciKWLMR-3YI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/e02035-73ae-4fd2-80c1-e151d4d39b41/1/umwdlY_wlMrxNGzGb3FszrbcUAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.178.10.0/23
Signature Algorithm: sha256WithRSAEncryption
1a:18:ff:37:96:5c:18:d3:af:d5:22:44:b9:4c:74:f4:b8:54:
64:f5:79:6e:eb:ff:21:5d:ad:48:20:3f:50:a6:97:2a:be:5a:
ea:56:60:3b:61:7d:71:33:62:51:77:01:b1:dd:d0:95:9c:02:
0c:01:25:aa:12:26:a0:6f:05:9e:a6:74:65:a9:e9:0c:83:f6:
c5:6f:ff:39:dd:ab:7d:df:f9:4b:8b:aa:e1:b3:11:04:45:c9:
d7:79:cf:cd:17:b9:8f:47:ae:85:c4:02:41:9c:38:95:ec:ee:
1a:2a:9f:71:b4:b0:39:6b:e3:16:ed:3c:aa:36:50:ed:6b:41:
aa:dd:d4:76:3a:5f:8f:f9:74:bc:4f:cc:95:06:dd:96:cd:3a:
77:fa:dd:56:66:cd:66:ad:64:b4:2e:51:04:98:1b:65:a2:49:
ca:97:b3:c1:69:13:45:ca:cf:33:8b:17:c6:0d:15:e6:bf:da:
30:f5:cf:3b:ee:2f:c4:c2:79:fb:74:3c:ee:d2:16:35:b7:70:
fe:a4:00:d0:fb:63:ee:b8:e1:56:e6:ca:33:3c:eb:22:d7:a5:
1e:f8:0d:17:c3:6a:b7:65:93:a2:fa:cf:66:bf:23:b4:e3:83:
0f:57:f5:4b:53:f1:16:ab:31:44:ae:b9:32:e2:6e:1e:2f:f7:
1a:30:25:9d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA4GfXDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
YTZjMWQ5NThmZjA5NGNhZjEzNDZjYzY2ZjcxNmNjZWI2ZGM1MDA5MB4XDTIyMDEw
MTEyMDQwOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGUzYjliMjI0NWQw
M2NjMzg5ZDlkYzg0NzIyMjk2MmNjNDdlZGQ4MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAND45kydUK5xQ23yMh7IoGHNWp3649rBALC/CwKq2xk03oDq
4FPOein3QymHVtjKELNRvRA/aDcY1Mkq8RDWBzL0kgWzkwdzqAe4CYYLWx8cs47c
1AbJdUM9xopyR7zdTt/iNTlvGVCzvS+yF7CWkWh3Y6HcCPNPrzsCCqqp0dP3NpvP
+hai50Daw2UN5fns/HnhL8U7VP9sMyvfKDenMpKsrFn6pwEug1rLQSxeywosfYim
Qg791O8b5W3/sMOuCVfzhuqZYmHbdLQJ5SkIci5Yxl38hMuDgrCE+peL97Fnj/0b
7N28qUNOemuceMVaN6Ez7HetElKbloYUJ+i9cc0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBROO5siRdA8w4nZ3IRyIpYsxH7dgjAfBgNVHSMEGDAWgBS6bB2Vj/CUyvE0
bMZvcWzOttxQCTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3Vtd2RsWV93bE1yeE5HekdiM0ZzenJiY1VBay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODYvZTAyMDM1LTczYWUtNGZkMi04MGMxLWUxNTFkNGQzOWI0MS8x
L1RqdWJJa1hRUE1PSjJkeUVjaUtXTE1SLTNZSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODYv
ZTAyMDM1LTczYWUtNGZkMi04MGMxLWUxNTFkNGQzOWI0MS8xL3Vtd2RsWV93bE1y
eE5HekdiM0ZzenJiY1VBay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcOyCjANBgkqhkiG9w0BAQsFAAOC
AQEAGhj/N5ZcGNOv1SJEuUx09LhUZPV5buv/IV2tSCA/UKaXKr5a6lZgO2F9cTNi
UXcBsd3QlZwCDAElqhImoG8FnqZ0ZanpDIP2xW//Od2rfd/5S4uq4bMRBEXJ13nP
zRe5j0euhcQCQZw4lezuGiqfcbSwOWvjFu08qjZQ7WtBqt3Udjpfj/l0vE/MlQbd
ls06d/rdVmbNZq1ktC5RBJgbZaJJypezwWkTRcrPM4sXxg0V5r/aMPXPO+4vxMJ5
+3Q87tIWNbdw/qQA0Ptj7rjhVubKMzzrItelHvgNF8Nqt2WTovrPZr8jtOODD1f1
S1PxFqsxRK65MuJuHi/3GjAlnQ==
-----END CERTIFICATE-----
Generated at Thu Mar 13 19:43:49 2025 by rpki-client