Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/c96291-5efb-41b3-bcfb-92b0fd5d7644/1/dl0iBcsjGxqPMSQ24c0U9EPM9Kc.roa
File: dl0iBcsjGxqPMSQ24c0U9EPM9Kc.roa (raw, json)
Hash identifier: DvRFi4I2lq4IBCEhsH0XiDvr1sdfdG6AHUuqNiLX9zE=
Subject key identifier: 76:5D:22:05:CB:23:1B:1A:8F:31:24:36:E1:CD:14:F4:43:CC:F4:A7
Certificate issuer: /CN=463528c540a6d577c2d1cc1a6eea17124b392386
Certificate serial: 01856FC2922A24EC792EE218E27DA41620E5
Authority key identifier: 46:35:28:C5:40:A6:D5:77:C2:D1:CC:1A:6E:EA:17:12:4B:39:23:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RjUoxUCm1XfC0cwabuoXEks5I4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/c96291-5efb-41b3-bcfb-92b0fd5d7644/1/dl0iBcsjGxqPMSQ24c0U9EPM9Kc.roa
Signing time: Sun 01 Jan 2023 23:55:00 +0000
ROA not before: Sun 01 Jan 2023 23:55:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200440
IP address blocks: 194.56.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:92:2a:24:ec:79:2e:e2:18:e2:7d:a4:16:20:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=463528c540a6d577c2d1cc1a6eea17124b392386
Validity
Not Before: Jan 1 23:55:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=765d2205cb231b1a8f312436e1cd14f443ccf4a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:2f:d4:86:33:5c:f1:b6:26:20:88:cf:af:bb:
08:99:54:0c:ea:b7:0f:15:90:45:08:76:d1:7c:34:
4c:bf:01:6f:b4:9c:ae:31:25:f2:09:67:24:d2:3a:
e7:be:72:08:de:64:4c:2c:e2:39:e0:cb:56:50:6a:
df:85:d7:21:d0:de:2a:a1:e2:08:27:2d:39:c8:70:
5b:b0:4f:38:fa:51:56:59:0c:26:3e:03:ef:91:c9:
01:bb:cf:19:2a:fc:6d:55:ce:e3:74:5b:33:19:3b:
16:c7:57:e8:c1:b5:3f:70:b7:9c:6c:69:eb:e9:eb:
7a:06:ad:25:ad:34:8c:2c:f5:9c:22:e1:70:d5:7f:
d6:0b:04:b2:7b:5b:b1:66:ef:df:07:7c:30:e7:a7:
1c:f5:a1:00:d6:8c:da:32:8a:af:66:61:97:5a:a0:
f4:ea:67:a4:a0:6e:89:ae:3f:65:d6:1b:d1:60:a2:
78:bf:26:4b:d8:7f:25:39:e7:15:3d:e7:b2:28:d0:
a4:19:5c:42:b5:80:d2:c3:65:eb:00:be:bb:90:67:
f0:e3:87:bf:64:2e:4d:7c:14:fb:ed:4a:4c:4f:39:
92:9b:44:e7:c6:05:b2:9d:c1:28:c4:4b:86:7e:92:
34:7c:df:fc:e1:6e:13:c5:f0:3b:57:50:17:0e:6a:
d4:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:5D:22:05:CB:23:1B:1A:8F:31:24:36:E1:CD:14:F4:43:CC:F4:A7
X509v3 Authority Key Identifier:
keyid:46:35:28:C5:40:A6:D5:77:C2:D1:CC:1A:6E:EA:17:12:4B:39:23:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RjUoxUCm1XfC0cwabuoXEks5I4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/c96291-5efb-41b3-bcfb-92b0fd5d7644/1/dl0iBcsjGxqPMSQ24c0U9EPM9Kc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/c96291-5efb-41b3-bcfb-92b0fd5d7644/1/RjUoxUCm1XfC0cwabuoXEks5I4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.56.75.0/24
Signature Algorithm: sha256WithRSAEncryption
57:e4:f6:b2:5e:14:c1:b6:35:e0:e0:ae:5c:2d:9e:3d:92:3c:
a3:b4:00:5b:76:12:53:dc:76:1f:6a:4c:8d:07:ee:5d:e0:66:
bf:49:7b:2f:f5:5d:a6:1b:80:9f:c6:a2:05:67:06:2a:40:37:
51:cd:23:05:fb:ea:ab:66:27:cf:31:3c:5d:b5:d1:9a:fb:a3:
52:3c:1b:e5:db:2f:29:42:c3:08:e6:43:f6:59:2a:f7:8a:ef:
12:16:64:69:49:9d:ef:e8:28:22:8e:a3:2b:62:61:e8:aa:a1:
f5:8e:78:6f:ec:ac:d8:8a:d1:64:eb:6a:00:62:30:ba:91:da:
c6:37:d6:c9:e4:d8:4e:24:17:99:28:00:14:80:47:65:73:2d:
34:c8:ca:01:2b:3a:e0:b0:bf:7b:67:44:e1:8c:2e:46:c1:db:
3a:ef:9d:07:bd:50:d2:f3:38:44:9b:9e:e6:9d:46:6e:ea:f1:
a5:ef:ca:22:cf:ca:9a:d8:28:01:98:51:f3:51:f0:4d:96:43:
ea:63:cf:93:69:aa:e0:45:5f:b9:a2:1d:c4:91:f3:1e:06:38:
36:5c:6f:e8:4e:f3:9a:1d:ab:86:7d:a0:b7:4a:e1:e6:5b:df:
c5:4a:ce:71:9b:e3:4e:4e:a7:5c:07:94:48:b7:df:cb:9b:aa:
40:97:8a:2a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvwpIqJOx5LuIY4n2kFiDlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ2MzUyOGM1NDBhNmQ1NzdjMmQxY2MxYTZlZWExNzEyNGIz
OTIzODYwHhcNMjMwMTAxMjM1NTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NjVkMjIwNWNiMjMxYjFhOGYzMTI0MzZlMWNkMTRmNDQzY2NmNGE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0C/UhjNc8bYmIIjPr7sImVQM6rcP
FZBFCHbRfDRMvwFvtJyuMSXyCWck0jrnvnII3mRMLOI54MtWUGrfhdch0N4qoeII
Jy05yHBbsE84+lFWWQwmPgPvkckBu88ZKvxtVc7jdFszGTsWx1fowbU/cLecbGnr
6et6Bq0lrTSMLPWcIuFw1X/WCwSye1uxZu/fB3ww56cc9aEA1ozaMoqvZmGXWqD0
6mekoG6Jrj9l1hvRYKJ4vyZL2H8lOecVPeeyKNCkGVxCtYDSw2XrAL67kGfw44e/
ZC5NfBT77UpMTzmSm0TnxgWyncEoxEuGfpI0fN/84W4TxfA7V1AXDmrUJwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHZdIgXLIxsajzEkNuHNFPRDzPSnMB8GA1UdIwQY
MBaAFEY1KMVAptV3wtHMGm7qFxJLOSOGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUmpVb3hVQ20xWGZDMGN3YWJ1b1hFa3M1STRZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9jOTYyOTEtNWVmYi00MWIzLWJjZmIt
OTJiMGZkNWQ3NjQ0LzEvZGwwaUJjc2pHeHFQTVNRMjRjMFU5RVBNOUtjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS9jOTYyOTEtNWVmYi00MWIzLWJjZmItOTJiMGZkNWQ3NjQ0
LzEvUmpVb3hVQ20xWGZDMGN3YWJ1b1hFa3M1STRZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwjhLMA0G
CSqGSIb3DQEBCwUAA4IBAQBX5PayXhTBtjXg4K5cLZ49kjyjtABbdhJT3HYfakyN
B+5d4Ga/SXsv9V2mG4CfxqIFZwYqQDdRzSMF++qrZifPMTxdtdGa+6NSPBvl2y8p
QsMI5kP2WSr3iu8SFmRpSZ3v6CgijqMrYmHoqqH1jnhv7KzYitFk62oAYjC6kdrG
N9bJ5NhOJBeZKAAUgEdlcy00yMoBKzrgsL97Z0ThjC5Gwds6750HvVDS8zhEm57m
nUZu6vGl78oiz8qa2CgBmFHzUfBNlkPqY8+TaargRV+5oh3EkfMeBjg2XG/oTvOa
HauGfaC3SuHmW9/FSs5xm+NOTqdcB5RIt9/Lm6pAl4oq
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:33:29 2025 by rpki-client