Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/ktSUOE1RN9SgRG7kF31U3uDjC7Q.roa
File: ktSUOE1RN9SgRG7kF31U3uDjC7Q.roa (raw, json)
Hash identifier: MeyMX4rcMcC1eUleowPWLOGI0eJMoqjKKThm6b2Bzl4=
Subject key identifier: 92:D4:94:38:4D:51:37:D4:A0:44:6E:E4:17:7D:54:DE:E0:E3:0B:B4
Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Certificate serial: 01870FA6DDE8CBD68453E067579FC78F5058
Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/ktSUOE1RN9SgRG7kF31U3uDjC7Q.roa
Signing time: Thu 23 Mar 2023 18:06:46 +0000
ROA not before: Thu 23 Mar 2023 18:06:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212835
IP address blocks: 185.243.48.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:0f:a6:dd:e8:cb:d6:84:53:e0:67:57:9f:c7:8f:50:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Validity
Not Before: Mar 23 18:06:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=92d494384d5137d4a0446ee4177d54dee0e30bb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:bf:1c:09:60:c3:48:79:96:b3:da:8e:8c:c4:
93:0f:5c:c2:32:82:04:67:ba:f1:61:46:a0:97:58:
1e:f4:d3:55:64:7d:94:d0:52:61:b4:79:1d:c5:cf:
a6:1b:a8:06:ee:40:5d:71:60:22:6d:db:eb:42:91:
90:3a:1d:eb:03:04:36:0b:6f:15:48:ab:04:91:d5:
3d:df:af:f7:57:0c:3c:db:b8:65:d4:3f:5d:1b:76:
24:46:78:51:a8:3b:72:f5:01:1a:23:8c:c3:5f:78:
75:05:a0:37:87:10:b7:2f:44:3e:82:72:1a:d3:2a:
fa:8d:53:a6:28:79:4c:bd:c1:ef:0a:79:a0:d0:ed:
65:53:fa:50:5a:4e:1a:9b:0a:d7:71:ad:51:f5:1f:
4d:26:9c:d8:2b:e7:f1:4f:69:4e:f6:74:25:5a:1a:
e9:84:71:c6:98:61:21:fa:72:25:43:69:f6:5c:a7:
e8:3a:4e:69:fe:86:4a:5e:74:35:4e:ba:36:9c:e3:
11:47:ef:72:96:66:4c:ee:f9:d0:ad:cf:7f:42:af:
4f:48:f8:b9:88:71:23:af:d8:1e:e9:e1:a8:2a:93:
70:4c:27:86:19:30:25:bf:80:fe:56:18:e9:7a:e1:
1b:c7:1d:2a:94:c8:94:9e:7d:0e:8e:bc:b0:04:85:
0f:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:D4:94:38:4D:51:37:D4:A0:44:6E:E4:17:7D:54:DE:E0:E3:0B:B4
X509v3 Authority Key Identifier:
keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/ktSUOE1RN9SgRG7kF31U3uDjC7Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.48.0/24
Signature Algorithm: sha256WithRSAEncryption
08:4a:7d:a4:c9:4c:4d:3c:d1:c9:54:55:f7:6e:52:83:a2:71:
63:b2:ab:e8:dd:23:c4:ae:48:b1:ef:de:0e:6c:5b:8b:59:ad:
fb:05:f2:e2:b0:8c:c8:19:7e:61:32:60:12:d4:8d:08:e5:9f:
c3:ec:a5:7d:39:18:ff:9b:48:41:81:20:c9:af:ae:ea:9e:3b:
68:c4:fb:4a:1a:ad:8a:7d:33:94:99:5b:96:df:43:2c:1f:bf:
a0:a7:f5:33:38:ad:16:a8:af:85:a3:9a:c0:4e:7a:42:f3:fc:
1c:f8:3b:cc:38:91:10:54:00:62:2f:ea:96:7e:4c:65:b9:e0:
d5:f3:4b:2c:91:bd:30:a4:60:00:69:f4:a4:f4:d1:7a:1a:1f:
f5:5e:c3:de:34:2a:8d:b3:16:e7:07:28:43:ed:98:42:38:43:
a7:bf:fc:e6:34:07:f4:29:1e:94:0f:97:80:5e:a3:8a:4f:5b:
1e:f3:90:8c:3f:69:eb:3c:cb:9f:60:13:2c:c7:28:2d:c2:6e:
ea:e0:fe:55:90:34:83:04:37:44:c1:03:5e:dc:65:df:10:f2:
f7:7a:8c:24:a3:35:fc:f7:d6:7c:e5:24:a2:cd:e5:cc:b3:49:
a6:d0:c5:3a:e8:f4:d1:47:b1:f9:e2:71:1d:99:83:85:4c:f1:
dd:5b:7b:55
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYcPpt3oy9aEU+BnV5/Hj1BYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYxMzUzMzM5OWY1NWViNTJlNmIyMjAwYzdjYWU0MjcyYjc0
ZDY0NjQwHhcNMjMwMzIzMTgwNjQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MmQ0OTQzODRkNTEzN2Q0YTA0NDZlZTQxNzdkNTRkZWUwZTMwYmI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkL8cCWDDSHmWs9qOjMSTD1zCMoIE
Z7rxYUagl1ge9NNVZH2U0FJhtHkdxc+mG6gG7kBdcWAibdvrQpGQOh3rAwQ2C28V
SKsEkdU936/3Vww827hl1D9dG3YkRnhRqDty9QEaI4zDX3h1BaA3hxC3L0Q+gnIa
0yr6jVOmKHlMvcHvCnmg0O1lU/pQWk4amwrXca1R9R9NJpzYK+fxT2lO9nQlWhrp
hHHGmGEh+nIlQ2n2XKfoOk5p/oZKXnQ1Tro2nOMRR+9ylmZM7vnQrc9/Qq9PSPi5
iHEjr9ge6eGoKpNwTCeGGTAlv4D+VhjpeuEbxx0qlMiUnn0OjrywBIUPdQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJLUlDhNUTfUoERu5Bd9VN7g4wu0MB8GA1UdIwQY
MBaAFPE1MzmfVetS5rIgDHyuQnK3TWRkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOFRVek9aOVY2MUxtc2lBTWZLNUNjcmROWkdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi84NDRlZWItY2RmMS00N2YxLWJjZmEt
OTg5MTY2ODgxOTY5LzEva3RTVU9FMVJOOVNnUkc3a0YzMVUzdURqQzdRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi84NDRlZWItY2RmMS00N2YxLWJjZmEtOTg5MTY2ODgxOTY5
LzEvOFRVek9aOVY2MUxtc2lBTWZLNUNjcmROWkdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufMwMA0G
CSqGSIb3DQEBCwUAA4IBAQAISn2kyUxNPNHJVFX3blKDonFjsqvo3SPErkix794O
bFuLWa37BfLisIzIGX5hMmAS1I0I5Z/D7KV9ORj/m0hBgSDJr67qnjtoxPtKGq2K
fTOUmVuW30MsH7+gp/UzOK0WqK+Fo5rATnpC8/wc+DvMOJEQVABiL+qWfkxlueDV
80sskb0wpGAAafSk9NF6Gh/1XsPeNCqNsxbnByhD7ZhCOEOnv/zmNAf0KR6UD5eA
XqOKT1se85CMP2nrPMufYBMsxygtwm7q4P5VkDSDBDdEwQNe3GXfEPL3eowkozX8
99Z85SSizeXMs0mm0MU66PTRR7H54nEdmYOFTPHdW3tV
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:33:55 2025 by rpki-client