Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/b9adf4-f910-4355-bfc8-608564839fd0/1/xvNqiOOeR6SAVjKp3Q_uTGaJXYM.roa
File: xvNqiOOeR6SAVjKp3Q_uTGaJXYM.roa (raw, json)
Hash identifier: t9ixafeJHJ2aE7fiRZbsjV9QyBrP+et6i0+vKfej/JM=
Subject key identifier: C6:F3:6A:88:E3:9E:47:A4:80:56:32:A9:DD:0F:EE:4C:66:89:5D:83
Certificate issuer: /CN=1f68138d4ec2ea51cacef09ff1058a370a5be190
Certificate serial: 3DC454D5
Authority key identifier: 1F:68:13:8D:4E:C2:EA:51:CA:CE:F0:9F:F1:05:8A:37:0A:5B:E1:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H2gTjU7C6lHKzvCf8QWKNwpb4ZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/b9adf4-f910-4355-bfc8-608564839fd0/1/xvNqiOOeR6SAVjKp3Q_uTGaJXYM.roa
Signing time: Sat 01 Jan 2022 08:56:52 +0000
ROA not before: Sat 01 Jan 2022 08:56:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2119
IP address blocks: 195.198.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1036276949 (0x3dc454d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f68138d4ec2ea51cacef09ff1058a370a5be190
Validity
Not Before: Jan 1 08:56:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c6f36a88e39e47a4805632a9dd0fee4c66895d83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:37:f5:e3:61:d6:66:8a:b6:6d:26:67:1a:7d:
0d:e1:11:1c:d5:f8:b1:96:84:95:cf:1f:aa:3f:2d:
53:db:9d:67:1d:a2:2d:3e:95:1c:39:62:39:48:3a:
7a:eb:c5:d7:77:f8:8d:27:90:55:55:b7:99:08:79:
dd:31:3d:52:d4:d6:f6:80:43:da:f3:d2:bb:e9:02:
6a:63:ba:eb:89:d3:e0:cc:f2:c2:46:b2:f1:bd:8d:
ed:0b:50:37:55:d2:17:1a:1c:32:1c:1b:51:81:b1:
55:9a:6a:f5:94:5d:b9:20:9d:10:d5:dc:d0:58:c5:
a7:f6:b0:dc:34:d5:9c:8c:00:44:4a:13:53:18:60:
73:cb:25:5e:c1:4f:86:98:22:38:32:19:9b:17:f9:
92:29:c5:fb:c9:36:41:9f:4a:09:da:09:46:58:29:
fe:4a:4d:ce:30:6e:c4:7e:5f:17:c8:fa:e2:34:60:
b3:5c:28:2d:bd:11:77:59:00:c5:cf:a7:95:5b:b4:
7c:2b:4b:f8:46:ff:39:4c:d7:c4:71:b1:fd:a7:9d:
86:89:b8:c8:fc:9f:bf:91:a7:26:9f:7e:2f:15:90:
d1:d6:be:c8:ef:20:e8:c1:28:17:16:1b:1a:93:38:
5d:b7:90:30:ed:a1:15:72:57:7f:b0:4a:78:d8:7b:
d4:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:F3:6A:88:E3:9E:47:A4:80:56:32:A9:DD:0F:EE:4C:66:89:5D:83
X509v3 Authority Key Identifier:
keyid:1F:68:13:8D:4E:C2:EA:51:CA:CE:F0:9F:F1:05:8A:37:0A:5B:E1:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H2gTjU7C6lHKzvCf8QWKNwpb4ZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/b9adf4-f910-4355-bfc8-608564839fd0/1/xvNqiOOeR6SAVjKp3Q_uTGaJXYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/b9adf4-f910-4355-bfc8-608564839fd0/1/H2gTjU7C6lHKzvCf8QWKNwpb4ZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.198.52.0/24
Signature Algorithm: sha256WithRSAEncryption
45:40:20:04:b8:f2:6f:4f:9f:8c:0c:e7:8a:e3:3c:d1:96:c8:
d4:a8:f2:ff:98:39:a0:23:fd:ed:61:34:d5:9f:a8:7e:61:cc:
b1:59:dc:be:cb:89:f5:58:3d:c6:05:04:98:7b:ff:55:1d:ae:
b2:9d:30:0b:ec:59:2b:ec:3d:61:62:37:5d:45:74:68:d0:96:
91:e9:55:5a:94:97:e0:ac:8e:6a:61:7b:05:84:1f:33:be:64:
43:9d:f1:4e:39:f4:db:d6:20:11:8a:2e:47:50:e1:95:c9:2a:
1c:1f:e5:59:d2:76:4d:54:95:5a:41:c1:fd:06:17:43:12:0a:
95:ce:eb:1b:ac:5b:3c:bd:d1:fc:42:7d:82:e2:40:f9:21:13:
cc:aa:25:30:e0:a2:06:8a:54:b1:26:23:49:30:1c:30:e3:e6:
b0:67:7c:a5:eb:da:19:b1:0e:d5:fd:a8:84:bb:67:b6:b1:7a:
ae:32:33:84:24:c4:03:62:ab:47:89:43:58:d6:78:9a:c2:ba:
88:4c:21:75:15:8f:fd:cc:b7:95:2c:88:63:e7:74:14:24:e5:
bc:9d:04:c4:25:b9:ab:a5:16:87:85:81:68:ab:ae:fc:48:ae:
62:97:18:26:65:64:9e:dd:5e:6a:c5:95:3e:a8:96:fb:ca:bc:
eb:05:d7:fe
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEPcRU1TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZjY4MTM4ZDRlYzJlYTUxY2FjZWYwOWZmMTA1OGEzNzBhNWJlMTkwMB4XDTIyMDEw
MTA4NTY1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzZmMzZhODhlMzll
NDdhNDgwNTYzMmE5ZGQwZmVlNGM2Njg5NWQ4MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJs39eNh1maKtm0mZxp9DeERHNX4sZaElc8fqj8tU9udZx2i
LT6VHDliOUg6euvF13f4jSeQVVW3mQh53TE9UtTW9oBD2vPSu+kCamO664nT4Mzy
wkay8b2N7QtQN1XSFxocMhwbUYGxVZpq9ZRduSCdENXc0FjFp/aw3DTVnIwAREoT
Uxhgc8slXsFPhpgiODIZmxf5kinF+8k2QZ9KCdoJRlgp/kpNzjBuxH5fF8j64jRg
s1woLb0Rd1kAxc+nlVu0fCtL+Eb/OUzXxHGx/aedhom4yPyfv5GnJp9+LxWQ0da+
yO8g6MEoFxYbGpM4XbeQMO2hFXJXf7BKeNh71F0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTG82qI455HpIBWMqndD+5MZoldgzAfBgNVHSMEGDAWgBQfaBONTsLqUcrO
8J/xBYo3ClvhkDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0gyZ1RqVTdDNmxIS3p2Q2Y4UVdLTndwYjRaQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTcvYjlhZGY0LWY5MTAtNDM1NS1iZmM4LTYwODU2NDgzOWZkMC8x
L3h2TnFpT09lUjZTQVZqS3AzUV91VEdhSlhZTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTcv
YjlhZGY0LWY5MTAtNDM1NS1iZmM4LTYwODU2NDgzOWZkMC8xL0gyZ1RqVTdDNmxI
S3p2Q2Y4UVdLTndwYjRaQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMPGNDANBgkqhkiG9w0BAQsFAAOC
AQEARUAgBLjyb0+fjAzniuM80ZbI1Kjy/5g5oCP97WE01Z+ofmHMsVncvsuJ9Vg9
xgUEmHv/VR2usp0wC+xZK+w9YWI3XUV0aNCWkelVWpSX4KyOamF7BYQfM75kQ53x
Tjn029YgEYouR1DhlckqHB/lWdJ2TVSVWkHB/QYXQxIKlc7rG6xbPL3R/EJ9guJA
+SETzKolMOCiBopUsSYjSTAcMOPmsGd8pevaGbEO1f2ohLtntrF6rjIzhCTEA2Kr
R4lDWNZ4msK6iEwhdRWP/cy3lSyIY+d0FCTlvJ0ExCW5q6UWh4WBaKuu/EiuYpcY
JmVknt1easWVPqiW+8q86wXX/g==
-----END CERTIFICATE-----
Generated at Wed Feb 19 21:57:19 2025 by rpki-client