Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/00e33e-fd74-4583-984e-c6b84cc58610/1/DJ13KJg8nAV6szduOtK11FGJdlI.roa
File: DJ13KJg8nAV6szduOtK11FGJdlI.roa (raw, json)
Hash identifier: VvqVkDw7xdh+8+BqnpJDRgxcSyFRpJEBI4cWqZ3Xt4E=
Subject key identifier: 0C:9D:77:28:98:3C:9C:05:7A:B3:37:6E:3A:D2:B5:D4:51:89:76:52
Certificate issuer: /CN=04a5ec5f52668be50b4518b687cf8bd95930ae39
Certificate serial: 184DC9B0
Authority key identifier: 04:A5:EC:5F:52:66:8B:E5:0B:45:18:B6:87:CF:8B:D9:59:30:AE:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BKXsX1Jmi-ULRRi2h8-L2Vkwrjk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/00e33e-fd74-4583-984e-c6b84cc58610/1/DJ13KJg8nAV6szduOtK11FGJdlI.roa
Signing time: Sat 01 Jan 2022 14:56:51 +0000
ROA not before: Sat 01 Jan 2022 14:56:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8375
IP address blocks: 185.60.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 407751088 (0x184dc9b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04a5ec5f52668be50b4518b687cf8bd95930ae39
Validity
Not Before: Jan 1 14:56:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c9d7728983c9c057ab3376e3ad2b5d451897652
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:71:df:f5:97:52:c9:4c:b8:53:d6:ba:d8:b0:
3f:86:26:16:8a:ca:eb:5e:df:e6:fb:24:4a:58:8c:
e7:18:76:28:ae:ec:da:5d:10:9d:4b:32:f3:27:36:
ae:b0:32:20:62:a1:b6:a9:75:d6:55:00:34:9d:d8:
99:e1:e3:09:54:7d:b0:bc:18:7e:77:7e:11:8b:aa:
6d:0e:88:57:c9:19:fb:1a:cd:a4:81:58:de:43:84:
57:a6:8d:1e:44:09:20:d3:d6:f1:ee:9f:75:fa:ba:
2f:58:cb:43:57:82:bd:70:2d:05:ab:38:05:66:1e:
17:47:45:b3:9d:07:9c:85:9f:3d:42:bc:94:75:9f:
c5:20:f8:d4:a4:09:40:bd:78:4a:25:cc:9d:28:25:
3e:73:54:94:aa:de:ce:57:3b:a6:41:14:d5:9e:ed:
8b:b0:a0:71:4b:80:42:a3:9a:c5:16:ce:c5:4a:ab:
04:9f:39:ff:4e:b1:db:02:11:0c:40:6e:eb:9c:43:
77:84:f5:f7:3f:93:ec:1c:72:a1:32:e3:fa:52:c9:
68:d8:d6:6d:8e:47:c6:26:cb:8d:a0:34:6b:1f:02:
0f:62:2c:ce:5a:d2:f1:4b:2f:8f:5a:78:33:ad:ff:
31:a9:48:f4:c6:1b:5b:f6:0a:1f:25:b1:99:a9:c0:
b7:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:9D:77:28:98:3C:9C:05:7A:B3:37:6E:3A:D2:B5:D4:51:89:76:52
X509v3 Authority Key Identifier:
keyid:04:A5:EC:5F:52:66:8B:E5:0B:45:18:B6:87:CF:8B:D9:59:30:AE:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BKXsX1Jmi-ULRRi2h8-L2Vkwrjk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/00e33e-fd74-4583-984e-c6b84cc58610/1/DJ13KJg8nAV6szduOtK11FGJdlI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/00e33e-fd74-4583-984e-c6b84cc58610/1/BKXsX1Jmi-ULRRi2h8-L2Vkwrjk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.60.20.0/24
Signature Algorithm: sha256WithRSAEncryption
27:05:f0:61:a5:b7:9c:53:f9:99:ae:50:88:91:ac:23:a3:03:
59:a8:12:80:5f:bc:11:02:5d:90:91:27:27:f3:79:57:ce:75:
7f:09:67:ce:eb:cc:ce:4d:c9:0a:78:61:11:08:1c:7f:0e:d3:
db:50:05:7e:f7:ab:09:22:cd:dc:65:ec:79:60:68:ef:d6:74:
1b:35:ff:0e:3e:8c:ea:eb:e4:1a:2c:9b:7e:de:93:c8:d7:c7:
24:01:42:b0:4e:03:30:9a:d9:4b:0a:e3:a2:81:10:83:c7:34:
47:52:12:81:74:cf:67:0a:33:41:97:a4:df:a1:95:eb:f9:9a:
5d:c5:6c:6d:45:be:31:16:81:92:21:0f:94:c9:56:48:9f:8e:
89:70:7e:cb:9b:4e:28:96:8c:68:cd:10:ec:f3:f5:83:1c:66:
0b:59:1b:f5:ba:dc:4d:96:13:4a:c1:d9:c5:e0:f6:32:33:30:
cd:22:7f:0c:d1:39:4e:1a:79:e4:00:6c:d0:8c:0c:fa:6c:48:
34:d9:d0:af:88:c5:6a:82:3c:73:9d:a1:cc:91:70:64:53:b0:
31:91:19:d2:98:9d:87:d6:23:b1:d9:16:9f:f5:d3:42:77:a2:
cd:34:d0:47:7a:5f:ac:84:93:8f:c6:6b:6c:98:5a:54:28:8e:
7b:6c:be:84
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGE3JsDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NGE1ZWM1ZjUyNjY4YmU1MGI0NTE4YjY4N2NmOGJkOTU5MzBhZTM5MB4XDTIyMDEw
MTE0NTY1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGM5ZDc3Mjg5ODNj
OWMwNTdhYjMzNzZlM2FkMmI1ZDQ1MTg5NzY1MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKBx3/WXUslMuFPWutiwP4YmForK617f5vskSliM5xh2KK7s
2l0QnUsy8yc2rrAyIGKhtql11lUANJ3YmeHjCVR9sLwYfnd+EYuqbQ6IV8kZ+xrN
pIFY3kOEV6aNHkQJINPW8e6fdfq6L1jLQ1eCvXAtBas4BWYeF0dFs50HnIWfPUK8
lHWfxSD41KQJQL14SiXMnSglPnNUlKrezlc7pkEU1Z7ti7CgcUuAQqOaxRbOxUqr
BJ85/06x2wIRDEBu65xDd4T19z+T7BxyoTLj+lLJaNjWbY5HxibLjaA0ax8CD2Is
zlrS8Usvj1p4M63/MalI9MYbW/YKHyWxmanAtxkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQMnXcomDycBXqzN2460rXUUYl2UjAfBgNVHSMEGDAWgBQEpexfUmaL5QtF
GLaHz4vZWTCuOTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JLWHNYMUptaS1VTFJSaTJoOC1MMlZrd3Jqay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzIvMDBlMzNlLWZkNzQtNDU4My05ODRlLWM2Yjg0Y2M1ODYxMC8x
L0RKMTNLSmc4bkFWNnN6ZHVPdEsxMUZHSmRsSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzIv
MDBlMzNlLWZkNzQtNDU4My05ODRlLWM2Yjg0Y2M1ODYxMC8xL0JLWHNYMUptaS1V
TFJSaTJoOC1MMlZrd3Jqay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALk8FDANBgkqhkiG9w0BAQsFAAOC
AQEAJwXwYaW3nFP5ma5QiJGsI6MDWagSgF+8EQJdkJEnJ/N5V851fwlnzuvMzk3J
CnhhEQgcfw7T21AFfverCSLN3GXseWBo79Z0GzX/Dj6M6uvkGiybft6TyNfHJAFC
sE4DMJrZSwrjooEQg8c0R1ISgXTPZwozQZek36GV6/maXcVsbUW+MRaBkiEPlMlW
SJ+OiXB+y5tOKJaMaM0Q7PP1gxxmC1kb9brcTZYTSsHZxeD2MjMwzSJ/DNE5Thp5
5ABs0IwM+mxINNnQr4jFaoI8c52hzJFwZFOwMZEZ0pidh9YjsdkWn/XTQneizTTQ
R3pfrISTj8ZrbJhaVCiOe2y+hA==
-----END CERTIFICATE-----
Generated at Sat Apr 19 00:53:48 2025 by rpki-client