Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/V7SQVrhgUlld61i3NICTjYdWB0c.roa
File: V7SQVrhgUlld61i3NICTjYdWB0c.roa (raw, json)
Hash identifier: BJLayocgRPjB95+CcaoArwqQdUKQeBH3ojfIkHbKJpc=
Subject key identifier: 57:B4:90:56:B8:60:52:59:5D:EB:58:B7:34:80:93:8D:87:56:07:47
Certificate issuer: /CN=a2900e4655ab349a4632b140719dc97230431725
Certificate serial: 0D56B66B
Authority key identifier: A2:90:0E:46:55:AB:34:9A:46:32:B1:40:71:9D:C9:72:30:43:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/opAORlWrNJpGMrFAcZ3JcjBDFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/V7SQVrhgUlld61i3NICTjYdWB0c.roa
Signing time: Sat 01 Jan 2022 05:55:23 +0000
ROA not before: Sat 01 Jan 2022 05:55:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205216
IP address blocks: 185.221.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 223786603 (0xd56b66b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2900e4655ab349a4632b140719dc97230431725
Validity
Not Before: Jan 1 05:55:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=57b49056b86052595deb58b73480938d87560747
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:83:d9:87:e7:47:70:40:9c:33:d0:2c:d7:bd:
8e:be:3f:d7:c0:63:eb:ef:67:6b:57:44:30:4b:8a:
b9:6e:c0:57:5f:03:f8:21:24:d1:a0:c6:7d:d7:0e:
ef:12:3a:64:e3:21:81:87:85:15:6e:37:ca:3e:14:
b2:63:ae:a7:db:e4:39:ac:34:83:26:d7:ee:c0:4c:
00:eb:55:9e:17:43:2e:19:36:a0:2a:3e:fb:34:0b:
e5:52:5e:66:ba:0b:c7:b8:c8:59:25:cc:53:ba:1e:
98:24:92:46:7d:6e:5b:0e:ed:e4:7a:53:dd:05:c8:
52:dd:5d:10:e9:d3:fe:47:48:ad:99:ce:d6:de:2b:
92:dd:02:9e:8a:93:db:02:3e:0a:89:3c:12:89:00:
9f:e7:50:ba:b8:f8:7a:62:99:86:17:5e:77:33:e1:
6b:27:d0:b6:30:8d:a1:b0:57:9d:13:3e:89:f2:8a:
e0:fd:f7:2d:82:07:9c:07:d2:94:40:fa:81:7d:af:
0c:12:2d:ec:df:5a:ec:c5:f4:d1:40:bb:00:c5:29:
db:a1:9f:a8:1d:75:71:8f:8b:7d:49:97:da:06:cd:
05:1a:3c:49:b4:a3:8f:fe:24:11:cb:6c:a7:86:72:
54:29:d0:ff:da:40:50:d6:89:c9:00:b2:59:6f:59:
61:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:B4:90:56:B8:60:52:59:5D:EB:58:B7:34:80:93:8D:87:56:07:47
X509v3 Authority Key Identifier:
keyid:A2:90:0E:46:55:AB:34:9A:46:32:B1:40:71:9D:C9:72:30:43:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/opAORlWrNJpGMrFAcZ3JcjBDFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/V7SQVrhgUlld61i3NICTjYdWB0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/opAORlWrNJpGMrFAcZ3JcjBDFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.47.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:3c:3f:61:ac:69:43:b2:49:96:ca:6d:61:88:88:1a:97:a2:
29:44:54:57:62:87:1f:9d:55:5f:05:52:37:75:a1:ac:17:de:
35:10:82:2b:fd:38:3a:d0:85:d8:47:ae:40:09:91:3a:e6:bf:
21:47:83:31:e4:c1:1f:74:ea:f5:67:3d:0f:b0:83:42:33:14:
df:7d:cc:18:49:08:56:0e:d3:05:28:0d:9f:49:54:a1:7c:9d:
88:b1:36:01:66:4c:da:66:d8:03:77:aa:e7:82:55:56:50:a0:
b3:36:dc:ce:db:b7:f5:72:4f:c3:34:46:25:1c:d9:ab:d6:e2:
74:04:ee:b7:b3:25:4f:86:4d:5d:55:5b:4f:3e:4c:3a:0b:f0:
e3:a2:56:39:fc:e9:ca:6e:78:a5:56:08:85:76:68:07:2b:c1:
74:9f:0a:37:39:4e:33:1c:c0:6d:3b:9c:55:a4:c0:ce:da:92:
cd:eb:80:77:fb:68:83:2c:6a:50:5d:1b:78:84:f2:ce:67:01:
84:3e:ea:78:8e:3a:65:97:ff:dc:56:28:fc:97:21:9d:8a:68:
e8:c7:2f:5c:9e:7b:28:1c:aa:38:05:3d:36:ef:45:28:8b:1c:
ec:aa:27:0e:9f:07:8b:4c:75:98:c9:d6:bb:fc:bf:4c:9d:3a:
b4:7f:56:ad
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDVa2azANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
MjkwMGU0NjU1YWIzNDlhNDYzMmIxNDA3MTlkYzk3MjMwNDMxNzI1MB4XDTIyMDEw
MTA1NTUyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTdiNDkwNTZiODYw
NTI1OTVkZWI1OGI3MzQ4MDkzOGQ4NzU2MDc0NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMKD2YfnR3BAnDPQLNe9jr4/18Bj6+9na1dEMEuKuW7AV18D
+CEk0aDGfdcO7xI6ZOMhgYeFFW43yj4UsmOup9vkOaw0gybX7sBMAOtVnhdDLhk2
oCo++zQL5VJeZroLx7jIWSXMU7oemCSSRn1uWw7t5HpT3QXIUt1dEOnT/kdIrZnO
1t4rkt0CnoqT2wI+Cok8EokAn+dQurj4emKZhhdedzPhayfQtjCNobBXnRM+ifKK
4P33LYIHnAfSlED6gX2vDBIt7N9a7MX00UC7AMUp26GfqB11cY+LfUmX2gbNBRo8
SbSjj/4kEctsp4ZyVCnQ/9pAUNaJyQCyWW9ZYcECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRXtJBWuGBSWV3rWLc0gJONh1YHRzAfBgNVHSMEGDAWgBSikA5GVas0mkYy
sUBxnclyMEMXJTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L29wQU9SbFdyTkpwR01yRkFjWjNKY2pCREZ5VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzQvNGY3MDFhLWVkNmYtNDdjOC1iZjczLWY0YzVmYzNjYTJjNC8x
L1Y3U1FWcmhnVWxsZDYxaTNOSUNUallkV0IwYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzQv
NGY3MDFhLWVkNmYtNDdjOC1iZjczLWY0YzVmYzNjYTJjNC8xL29wQU9SbFdyTkpw
R01yRkFjWjNKY2pCREZ5VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALndLzANBgkqhkiG9w0BAQsFAAOC
AQEAoDw/YaxpQ7JJlsptYYiIGpeiKURUV2KHH51VXwVSN3WhrBfeNRCCK/04OtCF
2EeuQAmROua/IUeDMeTBH3Tq9Wc9D7CDQjMU333MGEkIVg7TBSgNn0lUoXydiLE2
AWZM2mbYA3eq54JVVlCgszbcztu39XJPwzRGJRzZq9bidATut7MlT4ZNXVVbTz5M
Ogvw46JWOfzpym54pVYIhXZoByvBdJ8KNzlOMxzAbTucVaTAztqSzeuAd/togyxq
UF0beITyzmcBhD7qeI46ZZf/3FYo/JchnYpo6McvXJ57KByqOAU9Nu9FKIsc7Kon
Dp8Hi0x1mMnWu/y/TJ06tH9WrQ==
-----END CERTIFICATE-----
Generated at Mon Apr 14 07:01:52 2025 by rpki-client