Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/561d24-e921-4ec8-a611-4dc20c5b6268/1/rEg_rwhXli6m70U0nobw1HYv1Po.roa
File: rEg_rwhXli6m70U0nobw1HYv1Po.roa (raw, json)
Hash identifier: UqVGw4xQRv8iptsAH+Qyh1pvNwCoucxb5ccSanPTzr8=
Subject key identifier: AC:48:3F:AF:08:57:96:2E:A6:EF:45:34:9E:86:F0:D4:76:2F:D4:FA
Certificate issuer: /CN=bbca3f25d54620b50ef8520657634d3b096bac57
Certificate serial: 013CCE
Authority key identifier: BB:CA:3F:25:D5:46:20:B5:0E:F8:52:06:57:63:4D:3B:09:6B:AC:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u8o_JdVGILUO-FIGV2NNOwlrrFc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/561d24-e921-4ec8-a611-4dc20c5b6268/1/rEg_rwhXli6m70U0nobw1HYv1Po.roa
Signing time: Fri 07 Jan 2022 10:20:47 +0000
ROA not before: Fri 07 Jan 2022 10:20:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58212
IP address blocks: 2.59.132.0/22 maxlen: 24
2a11:ae80::/29 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81102 (0x13cce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbca3f25d54620b50ef8520657634d3b096bac57
Validity
Not Before: Jan 7 10:20:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac483faf0857962ea6ef45349e86f0d4762fd4fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:43:1a:21:6a:53:c2:99:9e:f6:24:6f:c6:f6:
c8:31:65:f2:5e:fe:54:ed:b4:03:e6:e5:c0:ef:3b:
3e:5e:a3:2f:05:9b:d1:d0:9b:25:2d:b8:b0:63:9f:
c3:d4:8e:7f:d6:6f:02:90:90:00:67:b7:17:12:33:
2c:e8:f3:c3:e6:b6:fa:66:e6:95:bf:9f:19:ec:f1:
d8:10:59:3e:48:1d:51:eb:18:e5:36:d5:0e:38:d1:
76:9b:21:1e:08:38:c5:5d:1b:1f:76:35:b4:f7:f9:
23:2e:a8:33:67:3b:17:b0:a5:9c:c2:12:e7:2d:b1:
e4:a3:60:1b:73:b1:30:57:a5:4b:91:a5:81:22:82:
1c:4b:f1:07:d8:ae:c5:b9:22:3b:6c:a2:51:9e:ab:
28:be:e3:b2:8d:8b:9a:83:bc:4f:cc:f9:5c:2a:07:
fc:09:81:c9:8f:e9:9a:01:66:84:3a:fd:49:d2:e6:
49:41:75:12:05:5e:cf:e1:a7:71:a1:2b:78:ad:92:
70:07:06:c9:a2:e2:44:45:23:37:68:09:97:8d:9e:
3f:a4:f4:ca:7a:12:05:c5:e9:34:58:b0:80:6d:19:
c3:a7:37:bc:f3:ae:26:29:49:62:6c:ea:23:65:06:
d6:d2:ae:bf:e8:36:12:4b:f2:87:df:cf:58:3b:40:
49:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:48:3F:AF:08:57:96:2E:A6:EF:45:34:9E:86:F0:D4:76:2F:D4:FA
X509v3 Authority Key Identifier:
keyid:BB:CA:3F:25:D5:46:20:B5:0E:F8:52:06:57:63:4D:3B:09:6B:AC:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u8o_JdVGILUO-FIGV2NNOwlrrFc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/561d24-e921-4ec8-a611-4dc20c5b6268/1/rEg_rwhXli6m70U0nobw1HYv1Po.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/561d24-e921-4ec8-a611-4dc20c5b6268/1/u8o_JdVGILUO-FIGV2NNOwlrrFc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.132.0/22
IPv6:
2a11:ae80::/29
Signature Algorithm: sha256WithRSAEncryption
a7:15:2c:81:45:1c:fc:ea:b5:c0:47:1d:8f:b1:6d:01:55:16:
11:1f:73:46:ac:61:fa:0e:89:45:6c:f7:82:bc:68:4e:ba:d4:
f9:ed:4f:32:bd:a0:6d:73:d9:8f:ed:4b:89:e7:e2:45:7f:b7:
b9:e6:74:67:25:c6:64:e0:ce:80:15:3d:d7:a0:88:3d:77:36:
13:d3:83:ec:b2:6c:81:66:2c:aa:19:ac:52:75:7a:eb:ce:65:
75:62:d1:c9:e6:0b:84:56:56:ab:9c:b8:d0:b8:11:91:2c:c4:
20:95:8d:93:70:00:41:dc:57:bf:08:23:75:aa:f6:a1:df:4f:
67:01:f7:e7:91:14:05:8c:aa:fe:7d:c5:cb:ff:99:c5:f4:40:
0f:54:93:d4:d4:e2:71:fe:cb:9d:35:62:89:a6:59:d5:91:db:
12:ac:f8:23:39:d2:0b:d7:39:0b:36:f9:7a:b7:d4:08:9f:25:
21:f9:0c:5e:67:30:dc:c4:e1:fc:7c:54:f7:3c:43:b2:9b:9f:
f4:58:2b:bb:94:38:46:8c:5d:7d:da:b1:0a:4a:48:28:00:d1:
64:93:9d:85:d9:72:65:ce:95:66:71:7c:53:5f:6e:cf:ec:f5:
85:73:87:14:da:ae:67:84:1b:1f:e0:32:31:41:70:8b:09:53:
88:19:d1:e1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgIDATzOMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGJi
Y2EzZjI1ZDU0NjIwYjUwZWY4NTIwNjU3NjM0ZDNiMDk2YmFjNTcwHhcNMjIwMTA3
MTAyMDQ3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhhYzQ4M2ZhZjA4NTc5
NjJlYTZlZjQ1MzQ5ZTg2ZjBkNDc2MmZkNGZhMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAq0MaIWpTwpme9iRvxvbIMWXyXv5U7bQD5uXA7zs+XqMvBZvR
0JslLbiwY5/D1I5/1m8CkJAAZ7cXEjMs6PPD5rb6ZuaVv58Z7PHYEFk+SB1R6xjl
NtUOONF2myEeCDjFXRsfdjW09/kjLqgzZzsXsKWcwhLnLbHko2Abc7EwV6VLkaWB
IoIcS/EH2K7FuSI7bKJRnqsovuOyjYuag7xPzPlcKgf8CYHJj+maAWaEOv1J0uZJ
QXUSBV7P4adxoSt4rZJwBwbJouJERSM3aAmXjZ4/pPTKehIFxek0WLCAbRnDpze8
864mKUlibOojZQbW0q6/6DYSS/KH389YO0BJ1QIDAQABo4ICGDCCAhQwHQYDVR0O
BBYEFKxIP68IV5Yupu9FNJ6G8NR2L9T6MB8GA1UdIwQYMBaAFLvKPyXVRiC1DvhS
BldjTTsJa6xXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
dThvX0pkVkdJTFVPLUZJR1YyTk5Pd2xyckZjLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC84Yi81NjFkMjQtZTkyMS00ZWM4LWE2MTEtNGRjMjBjNWI2MjY4LzEv
ckVnX3J3aFhsaTZtNzBVMG5vYncxSFl2MVBvLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi81
NjFkMjQtZTkyMS00ZWM4LWE2MTEtNGRjMjBjNWI2MjY4LzEvdThvX0pkVkdJTFVP
LUZJR1YyTk5Pd2xyckZjLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4G
CCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCAjuEMA0EAgACMAcDBQMqEa6AMA0G
CSqGSIb3DQEBCwUAA4IBAQCnFSyBRRz86rXARx2PsW0BVRYRH3NGrGH6DolFbPeC
vGhOutT57U8yvaBtc9mP7UuJ5+JFf7e55nRnJcZk4M6AFT3XoIg9dzYT04PssmyB
ZiyqGaxSdXrrzmV1YtHJ5guEVlarnLjQuBGRLMQglY2TcABB3Fe/CCN1qvah309n
AffnkRQFjKr+fcXL/5nF9EAPVJPU1OJx/sudNWKJplnVkdsSrPgjOdIL1zkLNvl6
t9QInyUh+QxeZzDcxOH8fFT3PEOym5/0WCu7lDhGjF192rEKSkgoANFkk52F2XJl
zpVmcXxTX27P7PWFc4cU2q5nhBsf4DIxQXCLCVOIGdHh
-----END CERTIFICATE-----
Generated at Thu Mar 13 20:30:46 2025 by rpki-client