Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/ab2b10-5e87-4624-9776-59a0c5ff6505/1/q71hhTbbbFE3U2yr0MrE3Gl60fM.roa
File: q71hhTbbbFE3U2yr0MrE3Gl60fM.roa (raw, json)
Hash identifier: DvfsWuFCAMeOM48F9U1/MSx3cUpWoK1srXXWQSCwPKY=
Subject key identifier: AB:BD:61:85:36:DB:6C:51:37:53:6C:AB:D0:CA:C4:DC:69:7A:D1:F3
Certificate issuer: /CN=878eca3bccd4e5c2efb3608ee83a57f9ae821be6
Certificate serial: 0CA7346A
Authority key identifier: 87:8E:CA:3B:CC:D4:E5:C2:EF:B3:60:8E:E8:3A:57:F9:AE:82:1B:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h47KO8zU5cLvs2CO6DpX-a6CG-Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/ab2b10-5e87-4624-9776-59a0c5ff6505/1/q71hhTbbbFE3U2yr0MrE3Gl60fM.roa
Signing time: Sat 01 Jan 2022 01:57:41 +0000
ROA not before: Sat 01 Jan 2022 01:57:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201333
IP address blocks: 185.196.164.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 212284522 (0xca7346a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=878eca3bccd4e5c2efb3608ee83a57f9ae821be6
Validity
Not Before: Jan 1 01:57:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=abbd618536db6c5137536cabd0cac4dc697ad1f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a5:92:04:0f:ce:72:0a:55:ec:38:46:92:ae:
0f:44:1d:09:ee:e0:bb:42:a1:94:43:a2:fa:dc:2a:
88:f7:1f:48:64:63:00:d4:9b:bb:b1:57:08:0c:da:
46:0e:6c:d0:e4:6f:3a:42:54:26:b6:d6:0a:9c:63:
4a:64:6c:2e:5f:65:8e:33:1b:69:a2:6e:4d:01:7a:
75:dd:bd:3b:d2:d3:b5:50:ca:49:2e:18:68:3f:70:
c9:b6:b9:17:f7:52:37:81:7a:81:bb:16:ed:dd:e2:
d2:3c:14:53:59:47:1a:6e:38:9b:95:ea:e6:cf:c5:
20:53:e6:ca:d7:30:ce:fa:26:a9:04:97:a3:55:0b:
0e:13:20:82:10:89:5f:23:53:7d:0d:0f:b7:9f:c7:
7b:57:cf:f4:8d:18:d9:ce:a1:5e:f8:ed:f3:39:0b:
05:8b:bd:6a:ee:08:ff:39:6b:5e:dc:5d:94:3f:4f:
e6:4d:28:32:3b:25:56:b6:79:be:a2:79:94:3d:55:
51:89:f7:9f:36:3a:e9:5d:ba:d7:98:4f:b9:26:cf:
29:ba:2b:7c:73:a6:06:ef:c7:69:5c:e4:59:23:a8:
44:21:15:1a:59:ed:92:6a:e8:3f:80:43:46:fc:dc:
a2:b2:8a:56:d7:3e:e8:07:63:b3:9b:8f:d0:db:96:
6b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:BD:61:85:36:DB:6C:51:37:53:6C:AB:D0:CA:C4:DC:69:7A:D1:F3
X509v3 Authority Key Identifier:
keyid:87:8E:CA:3B:CC:D4:E5:C2:EF:B3:60:8E:E8:3A:57:F9:AE:82:1B:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h47KO8zU5cLvs2CO6DpX-a6CG-Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/ab2b10-5e87-4624-9776-59a0c5ff6505/1/q71hhTbbbFE3U2yr0MrE3Gl60fM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/ab2b10-5e87-4624-9776-59a0c5ff6505/1/h47KO8zU5cLvs2CO6DpX-a6CG-Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.164.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:81:51:1d:ae:1d:f3:7e:b7:c0:a5:d7:04:b8:93:95:ed:75:
ee:6e:fc:7b:c4:c0:65:46:54:74:ac:3e:f9:f8:06:f4:69:1d:
38:ab:a8:e7:b5:dc:3f:17:85:33:85:f1:0c:11:2b:d8:86:b4:
ef:3a:47:27:33:9e:19:ad:61:f8:b8:ff:a1:48:7f:f0:42:74:
fe:d5:19:b0:96:f0:6f:54:b1:f8:ce:c2:c5:9e:72:fd:19:de:
90:37:ed:03:c8:eb:b4:be:b5:e3:b1:cd:d4:16:cf:91:16:0a:
e3:ac:38:3e:5a:f9:65:55:30:8b:52:f7:f7:43:f8:26:23:f5:
be:b5:06:6b:a2:73:71:b5:b0:bb:a6:db:01:53:c3:38:0c:d0:
17:52:1c:fb:7f:70:30:f6:6c:e5:bf:37:79:69:06:f8:6c:c2:
a3:0f:3d:c1:be:58:11:84:18:a0:3e:79:d1:59:89:18:9f:b1:
ef:9b:1d:df:56:0d:63:29:1f:3d:4d:a1:86:e6:ac:67:1d:5d:
62:38:6f:a4:7b:a5:02:6f:85:08:83:91:76:31:0a:c3:7c:ec:
81:37:fb:4a:1e:6f:9e:70:f3:b0:27:7d:65:11:2d:37:e7:d9:
34:79:64:cd:78:97:6b:ea:49:f5:bb:29:bd:de:5a:98:1f:67:
2b:a6:81:c8
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDKc0ajANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NzhlY2EzYmNjZDRlNWMyZWZiMzYwOGVlODNhNTdmOWFlODIxYmU2MB4XDTIyMDEw
MTAxNTc0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWJiZDYxODUzNmRi
NmM1MTM3NTM2Y2FiZDBjYWM0ZGM2OTdhZDFmMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMKlkgQPznIKVew4RpKuD0QdCe7gu0KhlEOi+twqiPcfSGRj
ANSbu7FXCAzaRg5s0ORvOkJUJrbWCpxjSmRsLl9ljjMbaaJuTQF6dd29O9LTtVDK
SS4YaD9wyba5F/dSN4F6gbsW7d3i0jwUU1lHGm44m5Xq5s/FIFPmytcwzvomqQSX
o1ULDhMgghCJXyNTfQ0Pt5/He1fP9I0Y2c6hXvjt8zkLBYu9au4I/zlrXtxdlD9P
5k0oMjslVrZ5vqJ5lD1VUYn3nzY66V2615hPuSbPKborfHOmBu/HaVzkWSOoRCEV
GlntkmroP4BDRvzcorKKVtc+6Adjs5uP0NuWa00CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSrvWGFNttsUTdTbKvQysTcaXrR8zAfBgNVHSMEGDAWgBSHjso7zNTlwu+z
YI7oOlf5roIb5jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2g0N0tPOHpVNWNMdnMyQ082RHBYLWE2Q0ctWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTYvYWIyYjEwLTVlODctNDYyNC05Nzc2LTU5YTBjNWZmNjUwNS8x
L3E3MWhoVGJiYkZFM1UyeXIwTXJFM0dsNjBmTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTYv
YWIyYjEwLTVlODctNDYyNC05Nzc2LTU5YTBjNWZmNjUwNS8xL2g0N0tPOHpVNWNM
dnMyQ082RHBYLWE2Q0ctWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArnEpDANBgkqhkiG9w0BAQsFAAOC
AQEAToFRHa4d8363wKXXBLiTle117m78e8TAZUZUdKw++fgG9GkdOKuo57XcPxeF
M4XxDBEr2Ia07zpHJzOeGa1h+Lj/oUh/8EJ0/tUZsJbwb1Sx+M7CxZ5y/RnekDft
A8jrtL6147HN1BbPkRYK46w4Plr5ZVUwi1L390P4JiP1vrUGa6JzcbWwu6bbAVPD
OAzQF1Ic+39wMPZs5b83eWkG+GzCow89wb5YEYQYoD550VmJGJ+x75sd31YNYykf
PU2hhuasZx1dYjhvpHulAm+FCIORdjEKw3zsgTf7Sh5vnnDzsCd9ZREtN+fZNHlk
zXiXa+pJ9bspvd5amB9nK6aByA==
-----END CERTIFICATE-----
Generated at Mon Apr 21 11:08:38 2025 by rpki-client