Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/0cf7b9-938f-4c17-8ec7-d18d1ea568f5/1/dTq8oPbwrwzG2Cfeg12Wd46q5u8.roa
File: dTq8oPbwrwzG2Cfeg12Wd46q5u8.roa (raw, json)
Hash identifier: AvcIduUgt40CCZ9ZKdEfwNqG1tq4P+QEq8TD+9Sz8Ck=
Subject key identifier: 75:3A:BC:A0:F6:F0:AF:0C:C6:D8:27:DE:83:5D:96:77:8E:AA:E6:EF
Certificate issuer: /CN=e4202a3fc1a8e85c9dfd2d65d319a80dd1fb917d
Certificate serial: 0185710C2A9A19FEC7157A1304C5BF36489A
Authority key identifier: E4:20:2A:3F:C1:A8:E8:5C:9D:FD:2D:65:D3:19:A8:0D:D1:FB:91:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5CAqP8Go6Fyd_S1l0xmoDdH7kX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/0cf7b9-938f-4c17-8ec7-d18d1ea568f5/1/dTq8oPbwrwzG2Cfeg12Wd46q5u8.roa
Signing time: Mon 02 Jan 2023 05:55:00 +0000
ROA not before: Mon 02 Jan 2023 05:55:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208348
IP address blocks: 45.142.160.0/22 maxlen: 22
193.3.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:2a:9a:19:fe:c7:15:7a:13:04:c5:bf:36:48:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4202a3fc1a8e85c9dfd2d65d319a80dd1fb917d
Validity
Not Before: Jan 2 05:55:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=753abca0f6f0af0cc6d827de835d96778eaae6ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:5c:41:3a:ea:5d:29:18:a5:9f:d3:98:4b:73:
0b:ce:3a:a3:32:e6:1c:60:f7:14:65:35:dd:8b:01:
38:04:d4:e7:1f:ca:34:e9:77:30:d4:c7:00:b3:bb:
69:44:af:48:f4:48:7e:73:79:a7:69:f2:41:fc:c3:
1e:2f:67:b5:41:c4:f7:00:e7:58:d3:7c:f0:9c:a5:
44:b3:f3:5b:39:86:78:e4:e4:da:05:0d:2a:9a:9d:
05:9a:83:b0:c7:4a:b7:ea:b8:e1:e4:c5:b8:aa:3c:
1d:48:46:e3:a5:2b:42:71:d5:c6:86:6d:1a:37:5b:
6e:b3:3f:ef:fc:be:35:43:e3:26:4e:76:f9:35:1f:
f2:c0:e8:6c:5e:82:b3:4a:6f:c3:02:d2:8b:25:92:
fc:fc:09:de:db:9c:71:e8:b3:4c:96:b1:10:62:71:
52:52:fe:26:48:c4:9d:16:36:15:83:7b:c1:57:35:
23:d4:5b:da:74:6a:5a:51:d7:83:60:56:19:2b:eb:
0b:62:6b:b2:41:6f:10:8c:05:1f:c0:25:56:73:47:
4a:5d:2e:34:df:0d:29:70:2a:e1:13:33:f4:c6:65:
50:bf:b6:0c:66:dd:b7:46:d0:42:7c:fe:32:03:9a:
4b:e7:6a:ec:c6:71:aa:91:ae:3b:f6:fd:15:74:47:
65:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:3A:BC:A0:F6:F0:AF:0C:C6:D8:27:DE:83:5D:96:77:8E:AA:E6:EF
X509v3 Authority Key Identifier:
keyid:E4:20:2A:3F:C1:A8:E8:5C:9D:FD:2D:65:D3:19:A8:0D:D1:FB:91:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5CAqP8Go6Fyd_S1l0xmoDdH7kX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/0cf7b9-938f-4c17-8ec7-d18d1ea568f5/1/dTq8oPbwrwzG2Cfeg12Wd46q5u8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/0cf7b9-938f-4c17-8ec7-d18d1ea568f5/1/5CAqP8Go6Fyd_S1l0xmoDdH7kX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.160.0/22
193.3.241.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:36:37:a4:f5:02:77:ef:b5:9f:d3:4c:90:d4:49:72:41:94:
2a:e7:1a:a0:ff:00:6b:e3:cd:0d:9d:a4:a4:41:43:f2:ad:85:
6c:0b:81:5d:ef:7b:e9:a4:63:26:6e:b4:a3:5a:4a:7f:4f:b4:
35:05:e3:58:fe:54:29:12:61:15:ba:27:c4:5b:83:48:bc:1a:
fa:54:82:f4:5f:0d:fb:80:19:46:bc:50:42:21:31:27:66:e7:
99:15:d9:f3:e2:88:81:34:9b:4f:f1:4c:97:c2:70:08:bf:5f:
77:8a:82:b2:85:84:a1:da:ce:83:0e:91:c6:e0:0c:bf:7c:28:
5b:36:0d:53:f5:d4:bb:6d:a7:46:91:6c:a9:89:d9:73:73:74:
de:71:4c:84:c2:c8:86:95:2a:3b:13:c0:2b:66:d0:82:e8:89:
0a:ac:bf:0e:a6:f1:7e:1f:5c:be:09:f3:08:5e:40:b2:0b:c5:
60:4c:66:f5:7d:84:e9:40:90:af:c4:e2:f1:1e:fa:31:2c:cc:
5e:da:d9:f5:c1:3a:94:f0:4a:48:50:4d:11:8e:20:50:bb:7b:
1f:cf:53:70:d3:9c:8a:dc:c3:5f:7c:34:f7:01:b2:c7:8b:f8:
69:5e:aa:1b:af:20:4f:ab:84:61:df:ae:6f:5f:67:25:ce:56:
4f:ef:33:59
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVxDCqaGf7HFXoTBMW/NkiaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0MjAyYTNmYzFhOGU4NWM5ZGZkMmQ2NWQzMTlhODBkZDFm
YjkxN2QwHhcNMjMwMTAyMDU1NTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NTNhYmNhMGY2ZjBhZjBjYzZkODI3ZGU4MzVkOTY3NzhlYWFlNmVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs1xBOupdKRiln9OYS3MLzjqjMuYc
YPcUZTXdiwE4BNTnH8o06Xcw1McAs7tpRK9I9Eh+c3mnafJB/MMeL2e1QcT3AOdY
03zwnKVEs/NbOYZ45OTaBQ0qmp0FmoOwx0q36rjh5MW4qjwdSEbjpStCcdXGhm0a
N1tusz/v/L41Q+MmTnb5NR/ywOhsXoKzSm/DAtKLJZL8/Ane25xx6LNMlrEQYnFS
Uv4mSMSdFjYVg3vBVzUj1FvadGpaUdeDYFYZK+sLYmuyQW8QjAUfwCVWc0dKXS40
3w0pcCrhEzP0xmVQv7YMZt23RtBCfP4yA5pL52rsxnGqka479v0VdEdlIQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFHU6vKD28K8Mxtgn3oNdlneOqubvMB8GA1UdIwQY
MBaAFOQgKj/BqOhcnf0tZdMZqA3R+5F9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUNBcVA4R282RnlkX1MxbDB4bW9EZEg3a1gwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC8wY2Y3YjktOTM4Zi00YzE3LThlYzct
ZDE4ZDFlYTU2OGY1LzEvZFRxOG9QYndyd3pHMkNmZWcxMldkNDZxNXU4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OC8wY2Y3YjktOTM4Zi00YzE3LThlYzctZDE4ZDFlYTU2OGY1
LzEvNUNBcVA4R282RnlkX1MxbDB4bW9EZEg3a1gwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCLY6gAwQA
wQPxMA0GCSqGSIb3DQEBCwUAA4IBAQCLNjek9QJ377Wf00yQ1ElyQZQq5xqg/wBr
480NnaSkQUPyrYVsC4Fd73vppGMmbrSjWkp/T7Q1BeNY/lQpEmEVuifEW4NIvBr6
VIL0Xw37gBlGvFBCITEnZueZFdnz4oiBNJtP8UyXwnAIv193ioKyhYSh2s6DDpHG
4Ay/fChbNg1T9dS7badGkWypidlzc3TecUyEwsiGlSo7E8ArZtCC6IkKrL8OpvF+
H1y+CfMIXkCyC8VgTGb1fYTpQJCvxOLxHvoxLMxe2tn1wTqU8EpIUE0RjiBQu3sf
z1Nw05yK3MNffDT3AbLHi/hpXqobryBPq4Rh365vX2clzlZP7zNZ
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:35:16 2025 by rpki-client