Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/96ab95-c2fe-4b93-9a2e-5689ee06e14c/1/LWid0pDeidRzFiNTRpUWP7Ym97U.roa
File: LWid0pDeidRzFiNTRpUWP7Ym97U.roa (raw, json)
Hash identifier: +UlZL3PquGHND7HWhcaAdijjKU0Gt8EzyjjPHHG5DWw=
Subject key identifier: 2D:68:9D:D2:90:DE:89:D4:73:16:23:53:46:95:16:3F:B6:26:F7:B5
Certificate issuer: /CN=258623ecc8dcb913d10228a9460a86e660cb8fb2
Certificate serial: 0186923CE97A1C35BC43CFB2C0508CC4C54C
Authority key identifier: 25:86:23:EC:C8:DC:B9:13:D1:02:28:A9:46:0A:86:E6:60:CB:8F:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JYYj7MjcuRPRAiipRgqG5mDLj7I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/96ab95-c2fe-4b93-9a2e-5689ee06e14c/1/LWid0pDeidRzFiNTRpUWP7Ym97U.roa
Signing time: Mon 27 Feb 2023 09:38:30 +0000
ROA not before: Mon 27 Feb 2023 09:38:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201854
IP address blocks: 185.57.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:92:3c:e9:7a:1c:35:bc:43:cf:b2:c0:50:8c:c4:c5:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258623ecc8dcb913d10228a9460a86e660cb8fb2
Validity
Not Before: Feb 27 09:38:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2d689dd290de89d4731623534695163fb626f7b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e6:20:37:b9:dc:d9:b7:a5:3f:47:06:d6:0d:
61:66:72:54:f0:de:33:7e:66:a6:00:84:c2:10:99:
55:5d:de:9a:39:ee:7c:3a:8a:99:02:6e:06:f0:8d:
4b:42:b1:c5:1f:db:90:a6:db:3d:08:0c:00:6c:d0:
23:a1:2d:aa:8e:c1:a0:4e:e4:fe:58:04:ca:ba:31:
a8:b3:9a:e5:4c:86:45:00:54:4c:67:17:38:e8:40:
bc:68:77:54:f9:15:39:cb:b6:da:c4:78:52:b9:cd:
f1:08:aa:28:9f:eb:37:f0:27:77:c0:5c:e0:57:19:
b3:4d:53:fe:60:61:84:2e:9e:79:20:6d:e3:0b:76:
e1:0f:7b:63:7e:2c:4c:8d:97:94:26:29:61:f9:10:
b4:33:c8:2b:cf:86:98:0d:36:33:4f:eb:2f:41:b4:
83:fe:de:18:05:0b:1f:8c:ec:f4:42:9d:79:c1:c0:
b2:23:3c:32:6f:eb:8a:93:12:a1:08:86:f6:98:52:
f4:87:ac:b6:8d:d8:b7:e4:97:df:82:38:75:0c:be:
a4:cb:58:1e:74:d9:fb:6f:36:0a:19:4e:e3:a6:7a:
36:c5:88:aa:c5:98:10:25:f6:fc:99:4f:89:29:2f:
ef:a6:7c:ab:62:d8:97:42:54:e6:d7:6a:68:f4:bd:
7a:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:68:9D:D2:90:DE:89:D4:73:16:23:53:46:95:16:3F:B6:26:F7:B5
X509v3 Authority Key Identifier:
keyid:25:86:23:EC:C8:DC:B9:13:D1:02:28:A9:46:0A:86:E6:60:CB:8F:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JYYj7MjcuRPRAiipRgqG5mDLj7I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/96ab95-c2fe-4b93-9a2e-5689ee06e14c/1/LWid0pDeidRzFiNTRpUWP7Ym97U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/96ab95-c2fe-4b93-9a2e-5689ee06e14c/1/JYYj7MjcuRPRAiipRgqG5mDLj7I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.57.78.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:5e:10:47:b3:8a:09:b4:25:aa:b5:a0:6b:2b:69:8e:9c:71:
74:5c:44:ff:42:e7:d1:a9:bb:3d:ee:55:93:ea:a9:3e:31:41:
6e:98:84:27:4a:37:30:52:d0:14:e4:82:5e:c9:95:f7:15:82:
d4:4d:48:b0:63:49:e7:2a:58:01:ff:3b:68:5c:88:7a:f5:c6:
35:34:c8:a6:3b:df:12:70:3f:7c:42:ba:02:c6:35:40:df:01:
db:a7:1b:96:41:b9:f1:bc:78:9a:78:89:5b:58:83:da:32:5e:
cf:2e:a7:80:d9:fb:74:50:8b:bc:0e:f1:66:11:3a:f8:12:70:
3c:c4:3b:db:8b:e8:d9:7b:76:46:e3:93:f4:30:eb:2f:7c:62:
e6:fd:2f:e9:fd:0d:6d:32:55:c0:ae:4e:73:22:b4:4b:aa:2d:
1e:46:79:39:72:95:37:83:b7:76:d5:f7:c7:b0:fa:28:85:64:
f1:39:fe:49:c2:d7:34:b1:c0:ad:22:bc:f4:40:d8:b1:6c:9c:
64:46:18:c7:b4:a6:f8:4c:e6:53:28:2b:c7:c0:55:b2:7b:20:
56:b1:c4:8a:88:fa:4b:30:d2:5d:a5:17:be:63:6a:50:6e:39:
8c:d2:77:74:b9:da:93:f2:ef:e2:7a:c2:4c:e1:f6:3e:65:f2:
8f:6d:b2:4a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYaSPOl6HDW8Q8+ywFCMxMVMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1ODYyM2VjYzhkY2I5MTNkMTAyMjhhOTQ2MGE4NmU2NjBj
YjhmYjIwHhcNMjMwMjI3MDkzODMwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZDY4OWRkMjkwZGU4OWQ0NzMxNjIzNTM0Njk1MTYzZmI2MjZmN2I1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp+YgN7nc2belP0cG1g1hZnJU8N4z
fmamAITCEJlVXd6aOe58OoqZAm4G8I1LQrHFH9uQpts9CAwAbNAjoS2qjsGgTuT+
WATKujGos5rlTIZFAFRMZxc46EC8aHdU+RU5y7baxHhSuc3xCKoon+s38Cd3wFzg
VxmzTVP+YGGELp55IG3jC3bhD3tjfixMjZeUJilh+RC0M8grz4aYDTYzT+svQbSD
/t4YBQsfjOz0Qp15wcCyIzwyb+uKkxKhCIb2mFL0h6y2jdi35Jffgjh1DL6ky1ge
dNn7bzYKGU7jpno2xYiqxZgQJfb8mU+JKS/vpnyrYtiXQlTm12po9L16jwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC1ondKQ3onUcxYjU0aVFj+2Jve1MB8GA1UdIwQY
MBaAFCWGI+zI3LkT0QIoqUYKhuZgy4+yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSllZajdNamN1UlBSQWlpcFJncUc1bURMajdJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC85NmFiOTUtYzJmZS00YjkzLTlhMmUt
NTY4OWVlMDZlMTRjLzEvTFdpZDBwRGVpZFJ6RmlOVFJwVVdQN1ltOTdVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNC85NmFiOTUtYzJmZS00YjkzLTlhMmUtNTY4OWVlMDZlMTRj
LzEvSllZajdNamN1UlBSQWlpcFJncUc1bURMajdJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuTlOMA0G
CSqGSIb3DQEBCwUAA4IBAQCaXhBHs4oJtCWqtaBrK2mOnHF0XET/QufRqbs97lWT
6qk+MUFumIQnSjcwUtAU5IJeyZX3FYLUTUiwY0nnKlgB/ztoXIh69cY1NMimO98S
cD98QroCxjVA3wHbpxuWQbnxvHiaeIlbWIPaMl7PLqeA2ft0UIu8DvFmETr4EnA8
xDvbi+jZe3ZG45P0MOsvfGLm/S/p/Q1tMlXArk5zIrRLqi0eRnk5cpU3g7d21ffH
sPoohWTxOf5Jwtc0scCtIrz0QNixbJxkRhjHtKb4TOZTKCvHwFWyeyBWscSKiPpL
MNJdpRe+Y2pQbjmM0nd0udqT8u/iesJM4fY+ZfKPbbJK
-----END CERTIFICATE-----
Generated at Thu Apr 17 20:11:18 2025 by rpki-client