Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/dcc2b4-9ded-4678-8398-ab79a3789f8f/1/y1cVD8NjH36V4qb_lLvTAlb_taE.roa
File: y1cVD8NjH36V4qb_lLvTAlb_taE.roa (raw, json)
Hash identifier: LmI7O34wD48GQcXg8asoAUM7HD3te/qvKtyojMuA1i4=
Subject key identifier: CB:57:15:0F:C3:63:1F:7E:95:E2:A6:FF:94:BB:D3:02:56:FF:B5:A1
Certificate issuer: /CN=700a1231d1c27a754e46ef10e92a730ae15d0f55
Certificate serial: 03C51756
Authority key identifier: 70:0A:12:31:D1:C2:7A:75:4E:46:EF:10:E9:2A:73:0A:E1:5D:0F:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cAoSMdHCenVORu8Q6SpzCuFdD1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/dcc2b4-9ded-4678-8398-ab79a3789f8f/1/y1cVD8NjH36V4qb_lLvTAlb_taE.roa
Signing time: Sat 01 Jan 2022 12:57:20 +0000
ROA not before: Sat 01 Jan 2022 12:57:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200862
IP address blocks: 217.11.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63248214 (0x3c51756)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=700a1231d1c27a754e46ef10e92a730ae15d0f55
Validity
Not Before: Jan 1 12:57:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb57150fc3631f7e95e2a6ff94bbd30256ffb5a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:0c:90:2d:b6:81:ea:76:11:35:de:75:3a:2d:
15:7d:6d:ac:1b:f2:f8:27:46:4c:3b:40:d8:fa:2d:
bc:89:f7:49:50:7d:80:f1:41:2f:a8:4d:bd:a7:67:
a5:5e:46:e4:1f:7b:1d:c6:33:a4:94:f1:95:d4:8a:
e9:fc:43:f3:95:61:15:08:87:6b:a6:97:01:47:02:
63:d7:59:48:7f:85:8d:59:a4:61:b9:5e:4f:d6:a3:
75:49:54:43:c6:b4:63:d6:14:f5:04:27:ce:84:9a:
a9:0b:e5:79:d3:7b:c5:6d:fb:57:5b:90:57:bc:7f:
ea:f3:dc:cf:4b:20:8d:c5:bd:e6:8d:a0:7a:6d:71:
22:3c:8e:c4:2c:85:6c:bd:56:e0:4d:9b:f3:cd:89:
d3:4e:60:7c:99:48:fb:3c:99:de:69:7c:4e:5d:66:
4a:98:ea:e2:11:67:20:08:5c:fd:dd:f2:fc:48:f6:
fe:0e:08:a8:4e:1f:d7:92:9f:7f:26:2b:e8:a9:1c:
45:0b:ba:ca:4b:10:f4:de:6f:b4:50:b2:86:86:ce:
5f:7a:be:26:c0:52:15:51:08:1a:7d:48:80:b3:5b:
8d:a0:73:5d:67:9d:25:7c:51:6f:56:a7:71:c7:01:
c8:fc:9a:55:6a:59:09:12:4c:4a:78:9e:06:f4:e7:
15:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:57:15:0F:C3:63:1F:7E:95:E2:A6:FF:94:BB:D3:02:56:FF:B5:A1
X509v3 Authority Key Identifier:
keyid:70:0A:12:31:D1:C2:7A:75:4E:46:EF:10:E9:2A:73:0A:E1:5D:0F:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cAoSMdHCenVORu8Q6SpzCuFdD1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/dcc2b4-9ded-4678-8398-ab79a3789f8f/1/y1cVD8NjH36V4qb_lLvTAlb_taE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/dcc2b4-9ded-4678-8398-ab79a3789f8f/1/cAoSMdHCenVORu8Q6SpzCuFdD1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.11.132.0/24
Signature Algorithm: sha256WithRSAEncryption
00:5c:62:1f:86:8a:3d:2b:ee:ce:95:25:00:63:59:41:73:af:
8f:70:35:d8:3f:02:39:34:b7:1e:9c:79:4f:16:46:8b:02:88:
2f:a4:f5:20:47:63:41:94:a9:84:74:18:a9:b9:73:20:49:c4:
2f:3c:f3:61:5d:f0:8e:da:b6:2a:77:5c:64:09:bf:d4:5b:1e:
68:d0:a2:08:95:1d:53:2e:11:78:6b:6b:a3:d8:d2:83:51:d7:
2b:60:07:ea:22:c2:ed:3e:74:e4:80:de:42:50:64:dc:b3:fb:
6c:12:f8:a6:d5:47:ae:01:71:02:46:9b:50:88:fd:c2:6b:69:
34:8e:12:5d:b1:5c:02:e6:7f:79:b7:2a:9c:d0:3e:94:19:e3:
ea:8b:45:f3:bb:8d:ea:31:62:7b:c9:bb:98:eb:ef:c4:e4:e4:
b4:5f:35:37:c9:82:f5:7d:13:7d:f8:56:70:09:2b:58:b1:f2:
b6:2c:86:3c:3d:25:e7:5b:c2:72:a6:2f:09:db:8a:7f:c5:5f:
20:57:93:ea:6c:f6:1f:5d:1d:0b:ea:3e:5a:6f:b2:bd:b4:4d:
0e:ea:86:54:62:c8:0f:a8:de:9d:33:39:a7:e6:86:7a:1a:ae:
b6:b2:60:86:a3:5c:21:00:bc:ed:77:94:be:39:ed:ed:fb:a8:
a4:54:7a:50
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA8UXVjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
MDBhMTIzMWQxYzI3YTc1NGU0NmVmMTBlOTJhNzMwYWUxNWQwZjU1MB4XDTIyMDEw
MTEyNTcyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2I1NzE1MGZjMzYz
MWY3ZTk1ZTJhNmZmOTRiYmQzMDI1NmZmYjVhMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMYMkC22gep2ETXedTotFX1trBvy+CdGTDtA2PotvIn3SVB9
gPFBL6hNvadnpV5G5B97HcYzpJTxldSK6fxD85VhFQiHa6aXAUcCY9dZSH+FjVmk
YbleT9ajdUlUQ8a0Y9YU9QQnzoSaqQvledN7xW37V1uQV7x/6vPcz0sgjcW95o2g
em1xIjyOxCyFbL1W4E2b882J005gfJlI+zyZ3ml8Tl1mSpjq4hFnIAhc/d3y/Ej2
/g4IqE4f15KffyYr6KkcRQu6yksQ9N5vtFCyhobOX3q+JsBSFVEIGn1IgLNbjaBz
XWedJXxRb1ancccByPyaVWpZCRJMSnieBvTnFbUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTLVxUPw2MffpXipv+Uu9MCVv+1oTAfBgNVHSMEGDAWgBRwChIx0cJ6dU5G
7xDpKnMK4V0PVTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2NBb1NNZEhDZW5WT1J1OFE2U3B6Q3VGZEQxVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTEvZGNjMmI0LTlkZWQtNDY3OC04Mzk4LWFiNzlhMzc4OWY4Zi8x
L3kxY1ZEOE5qSDM2VjRxYl9sTHZUQWxiX3RhRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTEv
ZGNjMmI0LTlkZWQtNDY3OC04Mzk4LWFiNzlhMzc4OWY4Zi8xL2NBb1NNZEhDZW5W
T1J1OFE2U3B6Q3VGZEQxVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANkLhDANBgkqhkiG9w0BAQsFAAOC
AQEAAFxiH4aKPSvuzpUlAGNZQXOvj3A12D8COTS3Hpx5TxZGiwKIL6T1IEdjQZSp
hHQYqblzIEnELzzzYV3wjtq2KndcZAm/1FseaNCiCJUdUy4ReGtro9jSg1HXK2AH
6iLC7T505IDeQlBk3LP7bBL4ptVHrgFxAkabUIj9wmtpNI4SXbFcAuZ/ebcqnNA+
lBnj6otF87uN6jFie8m7mOvvxOTktF81N8mC9X0TffhWcAkrWLHytiyGPD0l51vC
cqYvCduKf8VfIFeT6mz2H10dC+o+Wm+yvbRNDuqGVGLID6jenTM5p+aGehqutrJg
hqNcIQC87XeUvjnt7fuopFR6UA==
-----END CERTIFICATE-----
Generated at Sun Apr 20 17:34:41 2025 by rpki-client