Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/ed5e15-4f14-49e6-a6dd-45351f9dbb52/1/Etw8K7FqveQaZ26NZ6oUGdxRBlw.roa
File: Etw8K7FqveQaZ26NZ6oUGdxRBlw.roa (raw, json)
Hash identifier: 68CfipHDZhXPYl/De+4H++x/IpghjDMK6IDDObjbMqY=
Subject key identifier: 12:DC:3C:2B:B1:6A:BD:E4:1A:67:6E:8D:67:AA:14:19:DC:51:06:5C
Certificate issuer: /CN=fd6369271b6d13a6aedcaa23ebb29e29b796a46b
Certificate serial: 0192A5E3
Authority key identifier: FD:63:69:27:1B:6D:13:A6:AE:DC:AA:23:EB:B2:9E:29:B7:96:A4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_WNpJxttE6au3Koj67KeKbeWpGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/ed5e15-4f14-49e6-a6dd-45351f9dbb52/1/Etw8K7FqveQaZ26NZ6oUGdxRBlw.roa
Signing time: Sat 01 Jan 2022 04:04:00 +0000
ROA not before: Sat 01 Jan 2022 04:04:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15830
IP address blocks: 194.55.3.0/24 maxlen: 24
194.55.2.0/24 maxlen: 24
194.55.2.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26387939 (0x192a5e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd6369271b6d13a6aedcaa23ebb29e29b796a46b
Validity
Not Before: Jan 1 04:04:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=12dc3c2bb16abde41a676e8d67aa1419dc51065c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:4e:e0:39:94:f1:cb:a7:20:06:03:b4:aa:dd:
01:59:a6:8a:c1:f8:57:c2:16:a3:a1:d5:0a:a9:89:
62:7d:5e:59:91:b4:c1:f5:eb:26:69:05:0c:9f:37:
c0:90:f9:95:b1:9b:e0:94:10:d5:fa:53:c1:ab:dc:
e3:76:6f:85:7a:28:a8:8d:e0:90:9b:a2:f9:d4:dc:
ac:b2:c1:36:ff:38:1f:38:5c:4b:4b:56:75:df:c0:
70:05:18:d7:d1:95:60:89:5a:3e:df:a2:9d:02:30:
4d:e8:4a:d2:c9:ca:10:54:a1:7b:2c:ea:88:1f:be:
b6:c4:bc:57:6f:71:b9:ac:75:b0:b9:45:4f:6f:b2:
10:83:ca:cc:ec:b1:d1:59:6c:4c:c9:88:db:28:9d:
82:1a:e5:7a:b5:01:1c:7a:ca:5b:ea:b2:a7:ea:f6:
bb:10:23:b7:91:0b:44:49:a0:08:14:d8:e3:d9:13:
65:7d:3a:d3:bd:3e:11:2d:ab:87:7c:eb:a4:ef:3e:
b0:b9:6a:88:94:66:75:14:c0:a5:c3:b4:ab:aa:6a:
82:67:2a:5e:04:a5:dc:97:a1:fd:50:f7:24:1c:2d:
ae:ea:03:9b:a4:5e:b7:1f:51:6f:1e:96:c8:17:45:
af:ae:82:02:93:f1:bb:23:38:08:55:95:ac:c2:4a:
9f:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:DC:3C:2B:B1:6A:BD:E4:1A:67:6E:8D:67:AA:14:19:DC:51:06:5C
X509v3 Authority Key Identifier:
keyid:FD:63:69:27:1B:6D:13:A6:AE:DC:AA:23:EB:B2:9E:29:B7:96:A4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_WNpJxttE6au3Koj67KeKbeWpGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/ed5e15-4f14-49e6-a6dd-45351f9dbb52/1/Etw8K7FqveQaZ26NZ6oUGdxRBlw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/ed5e15-4f14-49e6-a6dd-45351f9dbb52/1/_WNpJxttE6au3Koj67KeKbeWpGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.55.2.0/23
Signature Algorithm: sha256WithRSAEncryption
54:ff:49:dc:d2:66:7e:dc:1b:2d:94:07:cd:cb:b8:b4:30:79:
d9:c8:09:28:9c:82:5e:f9:13:75:89:2d:0f:38:b9:2b:c7:72:
b2:82:f2:45:ca:81:98:9b:40:f7:80:f3:27:7a:30:2c:a5:9d:
8d:25:b7:ab:18:82:14:61:2b:84:14:a0:ce:15:20:4c:16:e6:
2c:cf:96:fb:25:8d:b9:cc:48:31:dd:9e:46:b9:69:bd:da:4a:
7d:d5:97:c8:4a:46:92:26:92:b1:a9:de:2e:af:16:37:b5:b6:
f5:40:da:b4:7b:93:82:d0:4d:49:1a:93:87:94:ab:ef:1e:d2:
84:66:20:24:20:dc:e8:24:c5:59:7e:f4:a2:a3:1a:a9:24:e5:
62:53:d2:69:31:3f:ce:d2:d3:94:0e:e7:0c:cd:c0:77:8f:f0:
63:56:01:2e:12:43:c2:1e:ea:ce:a1:c4:60:d6:13:ae:c9:90:
fa:4a:01:2c:d5:cd:b0:64:c0:ad:71:aa:1b:b2:b4:f2:99:63:
f5:1b:d8:d1:1c:8c:b7:18:25:27:2b:28:5c:65:d7:7b:25:e7:
82:e5:53:b2:ab:93:cf:20:88:a7:f1:d6:1b:a6:04:c6:ad:d5:
60:76:e0:46:fb:69:b2:0d:19:aa:4c:39:65:cd:07:1e:12:4d:
b9:5a:55:72
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAZKl4zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ZDYzNjkyNzFiNmQxM2E2YWVkY2FhMjNlYmIyOWUyOWI3OTZhNDZiMB4XDTIyMDEw
MTA0MDQwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTJkYzNjMmJiMTZh
YmRlNDFhNjc2ZThkNjdhYTE0MTlkYzUxMDY1YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK5O4DmU8cunIAYDtKrdAVmmisH4V8IWo6HVCqmJYn1eWZG0
wfXrJmkFDJ83wJD5lbGb4JQQ1fpTwavc43ZvhXooqI3gkJui+dTcrLLBNv84Hzhc
S0tWdd/AcAUY19GVYIlaPt+inQIwTehK0snKEFSheyzqiB++tsS8V29xuax1sLlF
T2+yEIPKzOyx0VlsTMmI2yidghrlerUBHHrKW+qyp+r2uxAjt5ELREmgCBTY49kT
ZX06070+ES2rh3zrpO8+sLlqiJRmdRTApcO0q6pqgmcqXgSl3Jeh/VD3JBwtruoD
m6Retx9Rbx6WyBdFr66CApPxuyM4CFWVrMJKn7ECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQS3DwrsWq95Bpnbo1nqhQZ3FEGXDAfBgNVHSMEGDAWgBT9Y2knG20Tpq7c
qiPrsp4pt5akazAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L19XTnBKeHR0RTZhdTNLb2o2N0tlS2JlV3BHcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWUvZWQ1ZTE1LTRmMTQtNDllNi1hNmRkLTQ1MzUxZjlkYmI1Mi8x
L0V0dzhLN0ZxdmVRYVoyNk5aNm9VR2R4UkJsdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWUv
ZWQ1ZTE1LTRmMTQtNDllNi1hNmRkLTQ1MzUxZjlkYmI1Mi8xL19XTnBKeHR0RTZh
dTNLb2o2N0tlS2JlV3BHcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcI3AjANBgkqhkiG9w0BAQsFAAOC
AQEAVP9J3NJmftwbLZQHzcu4tDB52cgJKJyCXvkTdYktDzi5K8dysoLyRcqBmJtA
94DzJ3owLKWdjSW3qxiCFGErhBSgzhUgTBbmLM+W+yWNucxIMd2eRrlpvdpKfdWX
yEpGkiaSsaneLq8WN7W29UDatHuTgtBNSRqTh5Sr7x7ShGYgJCDc6CTFWX70oqMa
qSTlYlPSaTE/ztLTlA7nDM3Ad4/wY1YBLhJDwh7qzqHEYNYTrsmQ+koBLNXNsGTA
rXGqG7K08plj9RvY0RyMtxglJysoXGXXeyXnguVTsquTzyCIp/HWG6YExq3VYHbg
Rvtpsg0Zqkw5Zc0HHhJNuVpVcg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:23 2025 by rpki-client