Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/w3tEKqJYYeDPRBli5acO4Ome_Ps.roa
File: w3tEKqJYYeDPRBli5acO4Ome_Ps.roa (raw, json)
Hash identifier: mhhgC7dHJMkaRKZySQ/o9MeepkP5rC8Feoz9xI90A4w=
Subject key identifier: C3:7B:44:2A:A2:58:61:E0:CF:44:19:62:E5:A7:0E:E0:E9:9E:FC:FB
Certificate issuer: /CN=9c73d9453fbedfb80c4543bb529fc330c1f8c1ce
Certificate serial: 018281985AF6ED343A39B624DA4F792E49F7
Authority key identifier: 9C:73:D9:45:3F:BE:DF:B8:0C:45:43:BB:52:9F:C3:30:C1:F8:C1:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nHPZRT--37gMRUO7Up_DMMH4wc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/w3tEKqJYYeDPRBli5acO4Ome_Ps.roa
Signing time: Tue 09 Aug 2022 07:53:41 +0000
ROA not before: Tue 09 Aug 2022 07:53:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50889
IP address blocks: 193.246.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:81:98:5a:f6:ed:34:3a:39:b6:24:da:4f:79:2e:49:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c73d9453fbedfb80c4543bb529fc330c1f8c1ce
Validity
Not Before: Aug 9 07:53:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c37b442aa25861e0cf441962e5a70ee0e99efcfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:24:57:a7:ad:bd:90:1e:65:39:d5:ee:c1:fc:
09:6c:ae:38:20:a5:ce:45:78:ce:62:fc:57:d0:9f:
1e:e1:2a:2b:c2:13:57:d7:cc:cb:e8:f5:53:37:41:
43:ed:df:8e:b9:b0:51:76:21:98:f7:5d:91:18:d1:
47:17:99:95:be:76:50:36:27:d4:80:e3:91:73:86:
c3:21:e4:00:69:0f:c0:34:8a:ed:ff:c6:6d:f0:18:
3d:fc:83:4d:12:99:ba:0f:e1:fe:4f:62:0e:bb:5c:
b1:b4:a5:78:52:40:1a:1e:3a:64:7d:d2:e2:66:ca:
f1:b7:27:6c:3e:50:42:15:ac:21:46:c8:31:fd:f5:
ca:d2:89:f2:2e:b3:69:37:cb:e4:3f:f3:e7:ea:de:
98:18:ce:02:0b:93:a9:90:8f:bd:51:ef:06:43:19:
8e:74:40:2c:52:97:a2:f5:ef:ed:c5:86:51:c5:d3:
00:24:4b:1c:4c:ec:e1:52:e0:e1:82:6b:a5:0e:05:
d1:d9:92:bf:c6:91:80:eb:ad:d7:a5:b1:9b:b1:00:
16:31:ae:09:f8:06:a0:15:9a:ec:9d:68:57:31:e5:
f5:4d:e5:f2:71:c4:38:38:19:e9:fa:6a:91:a9:25:
ea:1b:99:d7:2a:7c:9f:56:c0:8d:a6:24:8e:a9:20:
c2:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:7B:44:2A:A2:58:61:E0:CF:44:19:62:E5:A7:0E:E0:E9:9E:FC:FB
X509v3 Authority Key Identifier:
keyid:9C:73:D9:45:3F:BE:DF:B8:0C:45:43:BB:52:9F:C3:30:C1:F8:C1:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nHPZRT--37gMRUO7Up_DMMH4wc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/w3tEKqJYYeDPRBli5acO4Ome_Ps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.51.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:41:bc:19:7b:39:0b:54:11:0b:7e:6f:05:56:97:d1:7a:29:
cc:fb:80:df:e1:cb:23:e7:36:8c:95:08:18:9f:f9:be:f0:5e:
24:02:0c:41:00:c7:5c:fe:d2:38:97:7c:6a:bd:97:0a:e3:b8:
e4:a7:82:0e:db:1f:e2:ac:f6:72:46:70:45:bc:5c:09:e8:fd:
23:56:d9:e8:68:63:c6:68:2d:f8:f0:de:8b:4b:5a:15:4c:82:
c6:f4:63:ef:67:44:ae:6f:f9:84:0f:9b:98:86:44:3c:f4:49:
9c:7f:5f:b6:84:e8:74:f0:93:6f:8d:4c:36:d6:5f:b2:c9:26:
d5:32:a7:4e:2c:ea:8b:8d:03:31:8b:9e:a3:0a:bc:fe:56:ac:
d0:0d:fc:9d:22:fd:ee:ce:33:96:d3:81:66:17:88:f5:a7:d8:
f4:40:18:89:d9:b2:45:95:02:0e:ae:02:06:b4:99:02:de:a7:
0a:c5:96:de:bf:f6:55:46:17:e9:cf:a7:6d:e0:8f:e4:43:eb:
58:f9:75:cb:1b:29:9b:fd:22:55:60:fa:ff:4b:b9:95:d0:f8:
6f:e0:24:a2:be:1b:80:69:47:c0:cb:01:05:7b:2c:fb:64:79:
46:a3:02:64:96:ff:49:f2:ea:d8:1f:e9:8c:d4:5a:98:c4:69:
96:8e:8d:a3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYKBmFr27TQ6ObYk2k95Lkn3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDljNzNkOTQ1M2ZiZWRmYjgwYzQ1NDNiYjUyOWZjMzMwYzFm
OGMxY2UwHhcNMjIwODA5MDc1MzQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMzdiNDQyYWEyNTg2MWUwY2Y0NDE5NjJlNWE3MGVlMGU5OWVmY2ZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAniRXp629kB5lOdXuwfwJbK44IKXO
RXjOYvxX0J8e4SorwhNX18zL6PVTN0FD7d+OubBRdiGY912RGNFHF5mVvnZQNifU
gOORc4bDIeQAaQ/ANIrt/8Zt8Bg9/INNEpm6D+H+T2IOu1yxtKV4UkAaHjpkfdLi
ZsrxtydsPlBCFawhRsgx/fXK0onyLrNpN8vkP/Pn6t6YGM4CC5OpkI+9Ue8GQxmO
dEAsUpei9e/txYZRxdMAJEscTOzhUuDhgmulDgXR2ZK/xpGA663XpbGbsQAWMa4J
+AagFZrsnWhXMeX1TeXyccQ4OBnp+mqRqSXqG5nXKnyfVsCNpiSOqSDCBQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMN7RCqiWGHgz0QZYuWnDuDpnvz7MB8GA1UdIwQY
MBaAFJxz2UU/vt+4DEVDu1KfwzDB+MHOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbkhQWlJULS0zN2dNUlVPN1VwX0RNTUg0d2M0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC9iMzUzNzktMjEyMi00MTkxLTg4MjEt
YzQ3ZTE4ZGYwMzcxLzEvdzN0RUtxSllZZURQUkJsaTVhY080T21lX1BzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC9iMzUzNzktMjEyMi00MTkxLTg4MjEtYzQ3ZTE4ZGYwMzcx
LzEvbkhQWlJULS0zN2dNUlVPN1VwX0RNTUg0d2M0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwfYzMA0G
CSqGSIb3DQEBCwUAA4IBAQBOQbwZezkLVBELfm8FVpfReinM+4Df4csj5zaMlQgY
n/m+8F4kAgxBAMdc/tI4l3xqvZcK47jkp4IO2x/irPZyRnBFvFwJ6P0jVtnoaGPG
aC348N6LS1oVTILG9GPvZ0Sub/mED5uYhkQ89Emcf1+2hOh08JNvjUw21l+yySbV
MqdOLOqLjQMxi56jCrz+VqzQDfydIv3uzjOW04FmF4j1p9j0QBiJ2bJFlQIOrgIG
tJkC3qcKxZbev/ZVRhfpz6dt4I/kQ+tY+XXLGymb/SJVYPr/S7mV0Phv4CSivhuA
aUfAywEFeyz7ZHlGowJklv9J8urYH+mM1FqYxGmWjo2j
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:16:19 2025 by rpki-client