Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/dcc86a-5f51-4d12-963d-f27c628b8353/1/44lGCj_TDNFiBWGy18Jw0Ga6V7E.roa
File: 44lGCj_TDNFiBWGy18Jw0Ga6V7E.roa (raw, json)
Hash identifier: FqFZlUU1GkcsFTlR98NgyBHB+wHjqtb0btQE/J3qoyA=
Subject key identifier: E3:89:46:0A:3F:D3:0C:D1:62:05:61:B2:D7:C2:70:D0:66:BA:57:B1
Certificate issuer: /CN=05eb8cbbaaf25a71bf2fcab6e11057ebf91f01e3
Certificate serial: 018571D7A3095EA2C984077261B5094F2B52
Authority key identifier: 05:EB:8C:BB:AA:F2:5A:71:BF:2F:CA:B6:E1:10:57:EB:F9:1F:01:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BeuMu6ryWnG_L8q24RBX6_kfAeM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/dcc86a-5f51-4d12-963d-f27c628b8353/1/44lGCj_TDNFiBWGy18Jw0Ga6V7E.roa
Signing time: Mon 02 Jan 2023 09:37:15 +0000
ROA not before: Mon 02 Jan 2023 09:37:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9201
IP address blocks: 193.241.128.0/18 maxlen: 18
193.241.32.0/19 maxlen: 19
193.241.64.0/18 maxlen: 18
193.241.192.0/18 maxlen: 18
193.241.0.0/19 maxlen: 19
2001:67c:2c74::/48 maxlen: 48
2001:67c:2c70::/48 maxlen: 48
2001:67c:2c78::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:a3:09:5e:a2:c9:84:07:72:61:b5:09:4f:2b:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05eb8cbbaaf25a71bf2fcab6e11057ebf91f01e3
Validity
Not Before: Jan 2 09:37:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e389460a3fd30cd1620561b2d7c270d066ba57b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:5e:8e:9c:a7:03:35:db:cb:dd:ad:9c:c9:35:
85:59:ec:85:86:19:ed:20:b6:87:36:cb:1c:78:77:
10:a0:80:d8:ba:d2:da:bc:ac:5f:ac:2c:4a:58:db:
5e:36:97:47:56:a4:01:75:47:e1:78:ed:61:36:91:
b4:c5:f7:c8:0d:aa:2e:51:71:1d:c3:c8:49:1a:4c:
d9:4c:96:1b:02:bc:63:0f:47:16:aa:26:dd:5c:4b:
9b:95:e9:54:89:40:07:2c:64:fb:0b:c0:d5:ac:0e:
d4:40:10:78:6e:06:3d:52:cf:d4:80:50:82:ca:0e:
dd:2b:a5:ec:f8:13:99:bf:c1:cf:19:e9:7d:ec:45:
18:c1:21:49:f8:2b:b5:32:24:2f:27:f0:5c:fc:98:
44:5d:ad:bd:96:72:43:90:a6:95:28:de:a5:23:9a:
39:cd:82:56:82:73:b4:2c:83:5f:61:fb:2b:bf:33:
3d:2f:29:3e:cf:4d:7a:3d:40:8f:ec:64:9c:8d:88:
62:4a:9c:0d:24:f3:27:74:90:92:fd:30:38:10:2a:
fa:a6:5f:7b:b6:ed:87:48:39:f1:70:02:3b:4a:94:
e6:84:bf:50:3b:60:25:34:4a:2c:41:1a:f4:ca:c8:
0e:d0:20:fd:bd:83:2e:13:6b:86:d8:bd:ea:7e:a2:
a4:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:89:46:0A:3F:D3:0C:D1:62:05:61:B2:D7:C2:70:D0:66:BA:57:B1
X509v3 Authority Key Identifier:
keyid:05:EB:8C:BB:AA:F2:5A:71:BF:2F:CA:B6:E1:10:57:EB:F9:1F:01:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BeuMu6ryWnG_L8q24RBX6_kfAeM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/dcc86a-5f51-4d12-963d-f27c628b8353/1/44lGCj_TDNFiBWGy18Jw0Ga6V7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/dcc86a-5f51-4d12-963d-f27c628b8353/1/BeuMu6ryWnG_L8q24RBX6_kfAeM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.241.0.0/16
IPv6:
2001:67c:2c70::/48
2001:67c:2c74::/48
2001:67c:2c78::/48
Signature Algorithm: sha256WithRSAEncryption
9b:9f:0c:8f:bd:fd:bb:69:94:9f:c8:ab:2d:42:68:d0:3f:fe:
5a:39:af:6f:ed:a8:f4:2b:4c:3b:58:1c:3f:11:8f:59:88:fa:
3e:09:bb:e2:74:7f:43:2e:51:70:f7:ae:f5:1e:be:2c:47:5a:
07:ba:1d:0a:8b:55:98:d6:8f:a7:70:21:b8:22:57:32:4d:31:
4f:6e:9d:ca:5f:21:1e:7b:c6:72:79:02:a2:5a:eb:36:74:ed:
b6:c0:a2:69:fc:8c:08:06:be:9d:16:1e:de:86:12:97:70:eb:
24:50:16:17:3a:4d:4e:d8:82:7e:20:c3:16:8b:d9:3d:4c:84:
69:2e:3a:3b:2e:dc:af:26:f7:95:8a:d5:b9:59:d0:b5:71:41:
cb:60:8a:bf:5e:d6:f8:4f:2d:2e:e3:12:6f:af:8c:64:93:2c:
83:f3:c3:d4:41:d7:ce:02:8a:4f:ba:70:56:37:26:fa:07:e0:
ae:87:be:36:5e:da:7e:d5:b1:9a:ab:63:f5:3e:6f:3c:4c:7e:
89:65:6e:da:31:1c:89:1f:40:0f:c1:98:58:38:99:58:cb:29:
bf:d1:74:3f:bd:66:c4:a1:52:9e:b1:a0:27:62:67:7d:06:b7:
a0:b3:76:b6:f3:c0:b1:6c:b0:22:19:20:59:dd:81:96:f2:7c:
65:0d:d6:32
-----BEGIN CERTIFICATE-----
MIIFHzCCBAegAwIBAgISAYVx16MJXqLJhAdyYbUJTytSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1ZWI4Y2JiYWFmMjVhNzFiZjJmY2FiNmUxMTA1N2ViZjkx
ZjAxZTMwHhcNMjMwMTAyMDkzNzE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMzg5NDYwYTNmZDMwY2QxNjIwNTYxYjJkN2MyNzBkMDY2YmE1N2IxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApl6OnKcDNdvL3a2cyTWFWeyFhhnt
ILaHNssceHcQoIDYutLavKxfrCxKWNteNpdHVqQBdUfheO1hNpG0xffIDaouUXEd
w8hJGkzZTJYbArxjD0cWqibdXEublelUiUAHLGT7C8DVrA7UQBB4bgY9Us/UgFCC
yg7dK6Xs+BOZv8HPGel97EUYwSFJ+Cu1MiQvJ/Bc/JhEXa29lnJDkKaVKN6lI5o5
zYJWgnO0LINfYfsrvzM9Lyk+z016PUCP7GScjYhiSpwNJPMndJCS/TA4ECr6pl97
tu2HSDnxcAI7SpTmhL9QO2AlNEosQRr0ysgO0CD9vYMuE2uG2L3qfqKkAwIDAQAB
o4ICKzCCAicwHQYDVR0OBBYEFOOJRgo/0wzRYgVhstfCcNBmulexMB8GA1UdIwQY
MBaAFAXrjLuq8lpxvy/KtuEQV+v5HwHjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmV1TXU2cnlXbkdfTDhxMjRSQlg2X2tmQWVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS9kY2M4NmEtNWY1MS00ZDEyLTk2M2Qt
ZjI3YzYyOGI4MzUzLzEvNDRsR0NqX1RETkZpQldHeTE4SncwR2E2VjdFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MS9kY2M4NmEtNWY1MS00ZDEyLTk2M2QtZjI3YzYyOGI4MzUz
LzEvQmV1TXU2cnlXbkdfTDhxMjRSQlg2X2tmQWVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIwMDALBAIAATAFAwMAwfEwIQQC
AAIwGwMHACABBnwscAMHACABBnwsdAMHACABBnwseDANBgkqhkiG9w0BAQsFAAOC
AQEAm58Mj739u2mUn8irLUJo0D/+Wjmvb+2o9CtMO1gcPxGPWYj6Pgm74nR/Qy5R
cPeu9R6+LEdaB7odCotVmNaPp3AhuCJXMk0xT26dyl8hHnvGcnkColrrNnTttsCi
afyMCAa+nRYe3oYSl3DrJFAWFzpNTtiCfiDDFovZPUyEaS46Oy7cryb3lYrVuVnQ
tXFBy2CKv17W+E8tLuMSb6+MZJMsg/PD1EHXzgKKT7pwVjcm+gfgroe+Nl7aftWx
mqtj9T5vPEx+iWVu2jEciR9AD8GYWDiZWMspv9F0P71mxKFSnrGgJ2JnfQa3oLN2
tvPAsWywIhkgWd2BlvJ8ZQ3WMg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:35:48 2025 by rpki-client