Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/fab918-8f4d-4ede-bad1-31b950270536/1/cMRTqrPDX2YkgBeeioFuHCuoo8E.roa
File: cMRTqrPDX2YkgBeeioFuHCuoo8E.roa (raw, json)
Hash identifier: 7YUQ2Pbk4V2v8T/6o3JR0jVl2wLfEWAKZxJDIWYmo2s=
Subject key identifier: 70:C4:53:AA:B3:C3:5F:66:24:80:17:9E:8A:81:6E:1C:2B:A8:A3:C1
Certificate issuer: /CN=0690913dbbeedadde95dce4704526284e7ae7cca
Certificate serial: 07316831
Authority key identifier: 06:90:91:3D:BB:EE:DA:DD:E9:5D:CE:47:04:52:62:84:E7:AE:7C:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BpCRPbvu2t3pXc5HBFJihOeufMo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/fab918-8f4d-4ede-bad1-31b950270536/1/cMRTqrPDX2YkgBeeioFuHCuoo8E.roa
Signing time: Sat 01 Jan 2022 12:05:21 +0000
ROA not before: Sat 01 Jan 2022 12:05:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12637
IP address blocks: 195.182.210.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120678449 (0x7316831)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0690913dbbeedadde95dce4704526284e7ae7cca
Validity
Not Before: Jan 1 12:05:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70c453aab3c35f662480179e8a816e1c2ba8a3c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:2c:1e:16:74:b1:aa:d8:22:23:0f:13:65:12:
dc:2c:6d:5e:49:6c:3b:06:16:d3:60:78:f7:9c:4e:
05:55:c4:7c:68:95:53:e5:63:42:e2:8d:3b:99:42:
83:95:e4:e6:59:53:05:99:a6:ae:00:14:46:b3:f7:
2c:cd:74:14:ba:cd:72:d6:93:89:41:e5:f5:f0:f9:
f6:82:e3:62:dc:a2:c7:fc:b0:10:96:75:56:06:31:
53:95:9e:8b:72:16:17:e8:6b:06:ab:29:cf:04:f1:
46:52:08:b9:7b:9f:13:ae:55:5a:7a:d9:f7:86:bc:
52:06:f4:1c:b4:33:0e:b0:56:69:60:b1:79:4a:31:
0f:57:78:93:2f:a7:61:9e:65:64:4a:67:28:1c:2b:
bb:8d:1f:94:85:fd:54:5b:06:ba:7e:dc:f2:c1:5c:
35:d1:77:fc:ee:29:4d:3e:77:0b:c4:a4:42:79:4c:
e2:be:ab:08:7b:a2:ec:c7:c9:72:09:ba:c6:6f:ec:
57:71:ea:1c:39:7c:11:10:f8:4c:56:20:b6:66:18:
bc:81:fa:28:7f:95:50:b4:c7:4d:e1:89:8b:5c:37:
d8:3b:76:a6:d4:b8:d1:3a:2d:6b:88:e3:90:8d:df:
3a:f2:72:eb:4a:49:20:c8:ea:52:70:07:e4:d5:ff:
ac:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:C4:53:AA:B3:C3:5F:66:24:80:17:9E:8A:81:6E:1C:2B:A8:A3:C1
X509v3 Authority Key Identifier:
keyid:06:90:91:3D:BB:EE:DA:DD:E9:5D:CE:47:04:52:62:84:E7:AE:7C:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BpCRPbvu2t3pXc5HBFJihOeufMo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/fab918-8f4d-4ede-bad1-31b950270536/1/cMRTqrPDX2YkgBeeioFuHCuoo8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/fab918-8f4d-4ede-bad1-31b950270536/1/BpCRPbvu2t3pXc5HBFJihOeufMo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.182.210.0/23
Signature Algorithm: sha256WithRSAEncryption
91:de:96:06:fc:24:3a:2a:a9:49:eb:0f:95:99:13:cf:29:e1:
22:50:74:c6:73:0d:c9:40:92:97:a1:f2:e6:c1:ab:52:ea:f9:
83:e8:be:e0:fc:f5:2d:b7:e1:71:14:64:c8:41:5b:21:78:71:
95:a4:80:17:27:55:f8:fe:40:d4:cc:57:be:56:9d:b8:cb:03:
3c:37:0e:ea:e7:31:bc:3c:ac:a0:4b:bc:5d:21:cb:b6:2c:14:
9e:d3:6c:d1:e3:76:fe:56:18:d6:16:47:b5:47:c7:70:45:0e:
0a:87:71:fe:6e:4a:e9:a9:71:96:7b:5a:47:ba:7f:96:90:e9:
5c:a4:2e:f0:7f:4d:95:dd:57:71:ae:40:19:a6:38:56:76:19:
5c:e2:99:cd:2d:ac:6c:93:5c:2b:41:f0:8e:50:0a:39:4b:f8:
67:b5:b6:67:eb:3a:e1:36:46:21:9a:06:6a:b8:44:62:74:f7:
c8:1a:80:cb:43:6d:8c:d4:99:74:de:2a:ee:10:08:54:61:ae:
e7:c9:a3:92:b2:72:c6:69:1b:04:5a:c7:b3:5d:9b:43:28:d6:
99:33:b4:30:e5:d0:8d:e4:12:ff:16:cd:c0:bf:a2:30:77:35:
37:d6:d2:4a:8a:cd:71:6c:67:e6:a5:d3:8b:ac:13:fe:4f:5c:
19:ac:28:3a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBzFoMTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NjkwOTEzZGJiZWVkYWRkZTk1ZGNlNDcwNDUyNjI4NGU3YWU3Y2NhMB4XDTIyMDEw
MTEyMDUyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzBjNDUzYWFiM2Mz
NWY2NjI0ODAxNzllOGE4MTZlMWMyYmE4YTNjMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOAsHhZ0sarYIiMPE2US3CxtXklsOwYW02B495xOBVXEfGiV
U+VjQuKNO5lCg5Xk5llTBZmmrgAURrP3LM10FLrNctaTiUHl9fD59oLjYtyix/yw
EJZ1VgYxU5Wei3IWF+hrBqspzwTxRlIIuXufE65VWnrZ94a8Ugb0HLQzDrBWaWCx
eUoxD1d4ky+nYZ5lZEpnKBwru40flIX9VFsGun7c8sFcNdF3/O4pTT53C8SkQnlM
4r6rCHui7MfJcgm6xm/sV3HqHDl8ERD4TFYgtmYYvIH6KH+VULTHTeGJi1w32Dt2
ptS40Tota4jjkI3fOvJy60pJIMjqUnAH5NX/rDkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRwxFOqs8NfZiSAF56KgW4cK6ijwTAfBgNVHSMEGDAWgBQGkJE9u+7a3eld
zkcEUmKE5658yjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JwQ1JQYnZ1MnQzcFhjNUhCRkppaE9ldWZNby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGUvZmFiOTE4LThmNGQtNGVkZS1iYWQxLTMxYjk1MDI3MDUzNi8x
L2NNUlRxclBEWDJZa2dCZWVpb0Z1SEN1b284RS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGUv
ZmFiOTE4LThmNGQtNGVkZS1iYWQxLTMxYjk1MDI3MDUzNi8xL0JwQ1JQYnZ1MnQz
cFhjNUhCRkppaE9ldWZNby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcO20jANBgkqhkiG9w0BAQsFAAOC
AQEAkd6WBvwkOiqpSesPlZkTzynhIlB0xnMNyUCSl6Hy5sGrUur5g+i+4Pz1Lbfh
cRRkyEFbIXhxlaSAFydV+P5A1MxXvladuMsDPDcO6ucxvDysoEu8XSHLtiwUntNs
0eN2/lYY1hZHtUfHcEUOCodx/m5K6alxlntaR7p/lpDpXKQu8H9Nld1Xca5AGaY4
VnYZXOKZzS2sbJNcK0HwjlAKOUv4Z7W2Z+s64TZGIZoGarhEYnT3yBqAy0NtjNSZ
dN4q7hAIVGGu58mjkrJyxmkbBFrHs12bQyjWmTO0MOXQjeQS/xbNwL+iMHc1N9bS
SorNcWxn5qXTi6wT/k9cGawoOg==
-----END CERTIFICATE-----
Generated at Tue Apr 22 17:28:09 2025 by rpki-client