Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/43f177-5368-4b31-89c9-5b3f64181fff/1/kL5q7iRUnHdR4xZLNmxK_ypPgCw.roa
File: kL5q7iRUnHdR4xZLNmxK_ypPgCw.roa (raw, json)
Hash identifier: Il+qzLVHD0OaGz7kjvKJzjcG+gVRSE0de9Kxhy6YH78=
Subject key identifier: 90:BE:6A:EE:24:54:9C:77:51:E3:16:4B:36:6C:4A:FF:2A:4F:80:2C
Certificate issuer: /CN=fd0b268321570aa04217b353847c10bf731254b5
Certificate serial: 0AF25405
Authority key identifier: FD:0B:26:83:21:57:0A:A0:42:17:B3:53:84:7C:10:BF:73:12:54:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_QsmgyFXCqBCF7NThHwQv3MSVLU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/43f177-5368-4b31-89c9-5b3f64181fff/1/kL5q7iRUnHdR4xZLNmxK_ypPgCw.roa
Signing time: Sat 01 Jan 2022 08:02:15 +0000
ROA not before: Sat 01 Jan 2022 08:02:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51262
IP address blocks: 193.84.120.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 183653381 (0xaf25405)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd0b268321570aa04217b353847c10bf731254b5
Validity
Not Before: Jan 1 08:02:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=90be6aee24549c7751e3164b366c4aff2a4f802c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:2f:c8:76:47:88:fe:92:45:0a:a6:76:4a:fd:
5b:22:bb:47:00:d4:e3:02:54:b6:70:d5:8d:fd:83:
53:7d:3d:69:a9:e4:57:35:27:3d:a4:a8:20:3f:e5:
42:88:6a:55:3b:ca:b2:9e:bb:26:a6:98:7a:65:74:
78:76:94:68:e8:d7:f9:4a:89:7c:52:54:ca:e0:a8:
e5:68:6f:ae:a2:4b:66:3d:dc:54:26:92:60:e7:fd:
38:2a:40:9b:7b:e6:a5:e6:87:5a:ea:f2:db:a6:f2:
6e:99:a5:bd:79:42:63:e6:7b:e5:a4:dc:29:8a:99:
c3:cd:84:6e:3f:34:c3:c3:30:77:e7:48:32:3d:50:
14:43:19:5b:92:5f:7d:91:e4:a8:a5:4e:77:1f:81:
63:07:8d:7c:33:41:b7:1c:b9:4f:64:b2:46:47:0f:
18:a5:6a:5a:5d:38:3d:ac:75:d4:99:a8:98:bc:04:
0d:47:a4:73:86:3c:da:fd:52:b3:78:88:5f:43:56:
a0:b1:9a:c6:ab:ef:0b:71:af:53:de:20:81:2e:ce:
f6:44:c1:b7:0d:d6:26:9a:62:02:b1:f1:e3:ed:b2:
cc:67:7e:eb:ef:84:1f:be:3d:e7:39:01:0f:18:87:
9f:78:93:fd:fe:45:b7:fe:f7:b1:48:a5:0d:46:00:
e4:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:BE:6A:EE:24:54:9C:77:51:E3:16:4B:36:6C:4A:FF:2A:4F:80:2C
X509v3 Authority Key Identifier:
keyid:FD:0B:26:83:21:57:0A:A0:42:17:B3:53:84:7C:10:BF:73:12:54:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_QsmgyFXCqBCF7NThHwQv3MSVLU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/43f177-5368-4b31-89c9-5b3f64181fff/1/kL5q7iRUnHdR4xZLNmxK_ypPgCw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/43f177-5368-4b31-89c9-5b3f64181fff/1/_QsmgyFXCqBCF7NThHwQv3MSVLU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.84.120.0/22
Signature Algorithm: sha256WithRSAEncryption
37:f3:9a:ad:32:ae:ff:17:19:e6:c2:cd:11:13:ae:99:4c:b6:
2e:61:f1:5b:0f:9e:36:87:ae:d4:06:29:07:e0:43:94:0f:a9:
eb:e5:e1:42:eb:ee:e0:9a:55:06:c4:39:56:88:5b:22:3d:33:
4e:a9:dd:5a:dd:55:7e:73:17:08:da:e3:dc:66:5e:b0:ed:84:
ad:41:37:ce:c5:7e:9e:8b:36:77:38:2c:a2:ae:6d:2a:51:9a:
93:f8:98:10:0d:9b:7e:10:4b:77:87:b3:f8:d4:5b:29:16:a7:
63:1c:d3:0b:52:ab:60:eb:65:c8:9b:44:7c:86:0d:e8:0a:65:
a5:d5:4b:9c:d1:3c:ed:b5:10:7b:c4:ea:12:1e:7c:59:5f:45:
17:c4:d9:3e:00:07:17:4b:60:29:9e:5a:34:6e:77:87:9a:91:
3b:f5:51:69:c5:cf:9e:fd:c6:3e:f2:d0:21:68:c4:ff:0a:f5:
0f:8f:6b:64:81:d8:57:c7:c8:6c:9b:49:b2:50:8f:79:43:9c:
5c:a1:04:15:2e:82:99:f3:83:0a:92:37:74:5f:f6:ed:bf:35:
2d:fe:ff:e2:bd:76:a1:20:e2:ed:42:4b:a7:66:e5:49:cd:1e:
f5:5a:67:17:80:31:b3:32:16:d5:04:17:09:13:b7:bf:dc:ec:
60:e3:5b:0a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECvJUBTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ZDBiMjY4MzIxNTcwYWEwNDIxN2IzNTM4NDdjMTBiZjczMTI1NGI1MB4XDTIyMDEw
MTA4MDIxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTBiZTZhZWUyNDU0
OWM3NzUxZTMxNjRiMzY2YzRhZmYyYTRmODAyYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALAvyHZHiP6SRQqmdkr9WyK7RwDU4wJUtnDVjf2DU309aank
VzUnPaSoID/lQohqVTvKsp67JqaYemV0eHaUaOjX+UqJfFJUyuCo5WhvrqJLZj3c
VCaSYOf9OCpAm3vmpeaHWury26bybpmlvXlCY+Z75aTcKYqZw82Ebj80w8Mwd+dI
Mj1QFEMZW5JffZHkqKVOdx+BYweNfDNBtxy5T2SyRkcPGKVqWl04Pax11JmomLwE
DUekc4Y82v1Ss3iIX0NWoLGaxqvvC3GvU94ggS7O9kTBtw3WJppiArHx4+2yzGd+
6++EH7495zkBDxiHn3iT/f5Ft/73sUilDUYA5HECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSQvmruJFScd1HjFks2bEr/Kk+ALDAfBgNVHSMEGDAWgBT9CyaDIVcKoEIX
s1OEfBC/cxJUtTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L19Rc21neUZYQ3FCQ0Y3TlRoSHdRdjNNU1ZMVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWYvNDNmMTc3LTUzNjgtNGIzMS04OWM5LTViM2Y2NDE4MWZmZi8x
L2tMNXE3aVJVbkhkUjR4WkxObXhLX3lwUGdDdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWYv
NDNmMTc3LTUzNjgtNGIzMS04OWM5LTViM2Y2NDE4MWZmZi8xL19Rc21neUZYQ3FC
Q0Y3TlRoSHdRdjNNU1ZMVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsFUeDANBgkqhkiG9w0BAQsFAAOC
AQEAN/OarTKu/xcZ5sLNEROumUy2LmHxWw+eNoeu1AYpB+BDlA+p6+XhQuvu4JpV
BsQ5VohbIj0zTqndWt1VfnMXCNrj3GZesO2ErUE3zsV+nos2dzgsoq5tKlGak/iY
EA2bfhBLd4ez+NRbKRanYxzTC1KrYOtlyJtEfIYN6AplpdVLnNE87bUQe8TqEh58
WV9FF8TZPgAHF0tgKZ5aNG53h5qRO/VRacXPnv3GPvLQIWjE/wr1D49rZIHYV8fI
bJtJslCPeUOcXKEEFS6CmfODCpI3dF/27b81Lf7/4r12oSDi7UJLp2blSc0e9Vpn
F4AxszIW1QQXCRO3v9zsYONbCg==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:45:09 2025 by rpki-client