Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/b2f893-911d-40c0-8ac2-fd3ff35f34a9/1/yt5pYDtgCGAYbho9LJvk4Jz33V4.roa
File: yt5pYDtgCGAYbho9LJvk4Jz33V4.roa (raw, json)
Hash identifier: tdYmYQ1gcTCT8xtsSxEX1qf8S7rPUShFc24YTwpPBaU=
Subject key identifier: CA:DE:69:60:3B:60:08:60:18:6E:1A:3D:2C:9B:E4:E0:9C:F7:DD:5E
Certificate issuer: /CN=5ee4eb9ef8dd3589e232df8fe876f25ce9707a14
Certificate serial: 01555A71
Authority key identifier: 5E:E4:EB:9E:F8:DD:35:89:E2:32:DF:8F:E8:76:F2:5C:E9:70:7A:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuTrnvjdNYniMt-P6HbyXOlwehQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/b2f893-911d-40c0-8ac2-fd3ff35f34a9/1/yt5pYDtgCGAYbho9LJvk4Jz33V4.roa
Signing time: Sat 01 Jan 2022 13:55:46 +0000
ROA not before: Sat 01 Jan 2022 13:55:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35099
IP address blocks: 193.221.115.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22370929 (0x1555a71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee4eb9ef8dd3589e232df8fe876f25ce9707a14
Validity
Not Before: Jan 1 13:55:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cade69603b600860186e1a3d2c9be4e09cf7dd5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:93:13:40:d3:0f:ee:81:f0:17:36:cc:ad:76:
5e:d2:fd:b0:0f:6a:ae:1f:96:68:96:11:5b:89:94:
a0:eb:29:fc:b6:bb:f0:7a:39:82:f9:55:6b:9f:dd:
3d:8d:d1:df:b7:7a:f6:07:cf:8e:32:b9:54:38:8f:
5c:45:0e:9a:a2:ef:58:53:98:8a:59:cb:60:03:e7:
82:43:0d:da:89:01:b8:05:fc:dd:39:25:c5:3c:b6:
8a:d8:32:95:45:64:1e:c0:45:09:60:47:26:c5:d4:
0d:24:16:3c:ca:0d:62:cc:d8:d3:9d:0c:27:e2:6b:
73:72:cc:85:5a:90:bf:cb:44:df:49:f8:ca:d2:3b:
79:63:1f:a4:0f:e8:2d:98:1a:43:c0:74:7a:5a:9a:
26:44:9d:c4:7a:d4:11:4f:a2:1a:6f:97:37:97:aa:
d0:55:b9:e6:b1:42:43:9b:bc:e9:63:4a:4d:9a:55:
86:04:62:94:24:bd:99:4d:a2:d5:e0:22:b4:06:3b:
e4:61:07:87:4f:50:5b:db:d6:79:73:a9:a1:e7:88:
5c:fd:85:ed:81:72:cc:70:b2:5c:c7:42:6b:36:0d:
65:d3:00:c7:9a:28:d4:5c:16:cf:8a:43:ab:5c:1d:
ad:a0:e7:40:8c:be:2b:eb:14:fc:6d:f3:b7:cb:57:
08:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:DE:69:60:3B:60:08:60:18:6E:1A:3D:2C:9B:E4:E0:9C:F7:DD:5E
X509v3 Authority Key Identifier:
keyid:5E:E4:EB:9E:F8:DD:35:89:E2:32:DF:8F:E8:76:F2:5C:E9:70:7A:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuTrnvjdNYniMt-P6HbyXOlwehQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b2f893-911d-40c0-8ac2-fd3ff35f34a9/1/yt5pYDtgCGAYbho9LJvk4Jz33V4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b2f893-911d-40c0-8ac2-fd3ff35f34a9/1/XuTrnvjdNYniMt-P6HbyXOlwehQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.221.115.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:7e:97:77:2a:d0:dd:cf:8c:b5:94:c3:4d:98:14:49:f6:75:
2f:d5:58:0a:56:e2:48:9f:eb:32:31:cc:06:29:e9:99:9f:ba:
95:a9:14:32:9c:db:ba:1f:64:df:59:43:2a:ae:53:7e:42:58:
af:a4:fa:94:4d:8d:25:a4:7b:05:22:94:4f:36:06:58:e8:e9:
98:a0:8d:4c:e3:85:0a:97:e7:18:f4:d0:28:f1:fb:57:7e:92:
bb:20:38:f3:e1:53:f3:af:17:81:a7:9c:c7:11:57:ab:ac:66:
e9:e0:f7:ec:c3:49:59:5e:d3:35:05:6c:b8:8f:84:28:96:a1:
d2:ad:2a:dd:7c:39:69:2a:1d:8b:3d:c6:29:9f:3a:d7:cb:5f:
d9:f3:60:9c:3b:5b:d9:f8:aa:8c:a8:3a:51:a4:d1:75:1a:d4:
fa:be:d9:d5:13:d2:76:e7:eb:b8:e4:0b:06:60:fe:17:98:2b:
15:9c:b7:f9:42:a5:85:ef:36:5e:77:3e:9a:fb:a4:ba:23:52:
b9:0a:ec:31:d9:f1:b6:61:f1:35:82:e6:2c:3b:b6:42:35:23:
35:69:61:6a:b0:08:f5:87:7e:40:18:53:de:11:5d:05:8b:9e:
f3:67:48:f7:5a:c1:9e:71:56:60:7c:b0:68:69:39:ec:e7:99:
ea:eb:c9:df
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAVVacTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ZWU0ZWI5ZWY4ZGQzNTg5ZTIzMmRmOGZlODc2ZjI1Y2U5NzA3YTE0MB4XDTIyMDEw
MTEzNTU0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2FkZTY5NjAzYjYw
MDg2MDE4NmUxYTNkMmM5YmU0ZTA5Y2Y3ZGQ1ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ6TE0DTD+6B8Bc2zK12XtL9sA9qrh+WaJYRW4mUoOsp/La7
8Ho5gvlVa5/dPY3R37d69gfPjjK5VDiPXEUOmqLvWFOYilnLYAPngkMN2okBuAX8
3TklxTy2itgylUVkHsBFCWBHJsXUDSQWPMoNYszY050MJ+Jrc3LMhVqQv8tE30n4
ytI7eWMfpA/oLZgaQ8B0elqaJkSdxHrUEU+iGm+XN5eq0FW55rFCQ5u86WNKTZpV
hgRilCS9mU2i1eAitAY75GEHh09QW9vWeXOpoeeIXP2F7YFyzHCyXMdCazYNZdMA
x5oo1FwWz4pDq1wdraDnQIy+K+sU/G3zt8tXCA8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTK3mlgO2AIYBhuGj0sm+TgnPfdXjAfBgNVHSMEGDAWgBRe5Oue+N01ieIy
34/odvJc6XB6FDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1h1VHJudmpkTlluaU10LVA2SGJ5WE9sd2VoUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmUvYjJmODkzLTkxMWQtNDBjMC04YWMyLWZkM2ZmMzVmMzRhOS8x
L3l0NXBZRHRnQ0dBWWJobzlMSnZrNEp6MzNWNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmUv
YjJmODkzLTkxMWQtNDBjMC04YWMyLWZkM2ZmMzVmMzRhOS8xL1h1VHJudmpkTllu
aU10LVA2SGJ5WE9sd2VoUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMHdczANBgkqhkiG9w0BAQsFAAOC
AQEAsH6XdyrQ3c+MtZTDTZgUSfZ1L9VYClbiSJ/rMjHMBinpmZ+6lakUMpzbuh9k
31lDKq5TfkJYr6T6lE2NJaR7BSKUTzYGWOjpmKCNTOOFCpfnGPTQKPH7V36SuyA4
8+FT868XgaecxxFXq6xm6eD37MNJWV7TNQVsuI+EKJah0q0q3Xw5aSodiz3GKZ86
18tf2fNgnDtb2fiqjKg6UaTRdRrU+r7Z1RPSdufruOQLBmD+F5grFZy3+UKlhe82
Xnc+mvukuiNSuQrsMdnxtmHxNYLmLDu2QjUjNWlharAI9Yd+QBhT3hFdBYue82dI
91rBnnFWYHywaGk57OeZ6uvJ3w==
-----END CERTIFICATE-----
Generated at Wed Apr 23 00:58:38 2025 by rpki-client