Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/umymONH9pHmFDSBm1tjoTPNv-rM.roa
File: umymONH9pHmFDSBm1tjoTPNv-rM.roa (raw, json)
Hash identifier: o/4m2f9AS9rA6GEg+vIrWKJoeiMTUrj85IgCPdDqqNA=
Subject key identifier: BA:6C:A6:38:D1:FD:A4:79:85:0D:20:66:D6:D8:E8:4C:F3:6F:FA:B3
Certificate issuer: /CN=c755702467770ed69b367b77bbe640bc6db4153e
Certificate serial: 0185720C5C9C809ED8DE19E78D0CD9220142
Authority key identifier: C7:55:70:24:67:77:0E:D6:9B:36:7B:77:BB:E6:40:BC:6D:B4:15:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x1VwJGd3DtabNnt3u-ZAvG20FT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/umymONH9pHmFDSBm1tjoTPNv-rM.roa
Signing time: Mon 02 Jan 2023 10:34:50 +0000
ROA not before: Mon 02 Jan 2023 10:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 265515
IP address blocks: 95.210.95.0/24 maxlen: 24
176.227.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:5c:9c:80:9e:d8:de:19:e7:8d:0c:d9:22:01:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c755702467770ed69b367b77bbe640bc6db4153e
Validity
Not Before: Jan 2 10:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba6ca638d1fda479850d2066d6d8e84cf36ffab3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:fe:65:ec:d2:5f:5c:77:6d:fe:d4:05:65:69:
0b:a1:c2:06:fa:07:5b:1b:31:90:00:20:1d:7e:bb:
c6:37:61:6b:61:a8:50:73:60:c2:25:eb:ce:d2:f7:
6c:e8:9d:c7:d7:b3:31:90:9f:cb:6c:e7:b1:90:78:
11:d6:b1:b7:dc:4a:09:22:9e:1e:af:7d:4d:4b:d0:
85:90:b3:06:4e:be:38:f0:b1:dd:b1:67:2f:6f:47:
2a:8f:6e:52:4b:5e:c3:a5:5e:dd:b1:87:7b:b5:06:
83:69:f7:15:c9:25:62:1c:46:82:e4:1b:da:cf:08:
18:e5:de:4d:ee:f7:f1:2a:15:61:da:bf:a8:db:13:
f7:e7:91:88:57:2c:a1:41:d9:6f:91:b7:e8:31:36:
e7:45:5d:86:3d:92:3e:d3:28:b7:07:b4:a5:4d:18:
e0:60:72:94:fe:d9:2b:f9:50:f7:c2:73:95:08:9c:
b6:e1:b9:cd:f8:fe:c6:3b:f9:a3:6f:f0:5b:8c:ae:
96:e4:82:3f:7c:12:7e:3d:3c:06:26:71:de:c9:b5:
8f:92:ac:a5:d0:c0:6f:cc:ee:56:83:ed:55:bd:c1:
78:c6:ed:49:89:3a:ca:c4:ae:c4:32:8f:90:74:00:
92:fe:d2:2e:27:89:e9:17:5d:10:d6:d5:0b:43:2c:
53:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:6C:A6:38:D1:FD:A4:79:85:0D:20:66:D6:D8:E8:4C:F3:6F:FA:B3
X509v3 Authority Key Identifier:
keyid:C7:55:70:24:67:77:0E:D6:9B:36:7B:77:BB:E6:40:BC:6D:B4:15:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x1VwJGd3DtabNnt3u-ZAvG20FT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/umymONH9pHmFDSBm1tjoTPNv-rM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/x1VwJGd3DtabNnt3u-ZAvG20FT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.210.95.0/24
176.227.129.0/24
Signature Algorithm: sha256WithRSAEncryption
23:d2:6e:84:09:69:2b:e6:85:82:b8:35:63:93:97:70:e7:ea:
08:06:65:e7:e3:5b:d4:d6:ce:5c:bf:93:d4:46:60:d8:e3:7c:
30:6d:d3:b6:73:3a:68:2d:3e:2f:1f:96:4b:f0:74:6f:9e:fe:
3a:cf:cf:cc:ef:ed:9a:1e:bf:ef:f2:b4:95:68:82:4f:88:8b:
e7:24:5a:c8:89:2f:02:88:3f:24:f8:f8:4c:6e:03:64:d8:85:
4b:73:7b:20:39:ae:a2:9e:12:f4:b1:dd:9b:0e:91:30:47:2d:
a6:bb:3c:0b:db:e9:e4:a5:1b:95:3a:b4:a5:f1:7a:64:94:8d:
f1:42:85:ab:d8:96:f1:76:4d:68:dd:46:29:e1:7c:30:37:69:
b5:cd:2b:c8:e3:5c:71:1d:d1:73:67:e4:8c:a2:a2:79:c9:3e:
5e:e8:2e:e8:c7:e3:14:ed:fa:23:3d:4b:84:dd:7c:16:64:0d:
cc:0e:52:b1:31:51:10:89:c4:5b:26:ff:3a:f6:56:98:51:5d:
ff:87:b5:c8:01:c5:38:8e:44:f9:54:a0:17:8b:d7:23:40:47:
da:29:2b:b4:d0:b7:b7:6d:f7:8d:1d:2f:9a:96:44:aa:12:e4:
1a:28:6f:51:1c:f3:b4:87:bb:a3:57:b0:e0:97:9d:94:a4:1d:
a7:4d:22:85
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVyDFycgJ7Y3hnnjQzZIgFCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM3NTU3MDI0Njc3NzBlZDY5YjM2N2I3N2JiZTY0MGJjNmRi
NDE1M2UwHhcNMjMwMTAyMTAzNDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYTZjYTYzOGQxZmRhNDc5ODUwZDIwNjZkNmQ4ZTg0Y2YzNmZmYWIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvf5l7NJfXHdt/tQFZWkLocIG+gdb
GzGQACAdfrvGN2FrYahQc2DCJevO0vds6J3H17MxkJ/LbOexkHgR1rG33EoJIp4e
r31NS9CFkLMGTr448LHdsWcvb0cqj25SS17DpV7dsYd7tQaDafcVySViHEaC5Bva
zwgY5d5N7vfxKhVh2r+o2xP355GIVyyhQdlvkbfoMTbnRV2GPZI+0yi3B7SlTRjg
YHKU/tkr+VD3wnOVCJy24bnN+P7GO/mjb/BbjK6W5II/fBJ+PTwGJnHeybWPkqyl
0MBvzO5Wg+1VvcF4xu1JiTrKxK7EMo+QdACS/tIuJ4npF10Q1tULQyxTkQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFLpspjjR/aR5hQ0gZtbY6Ezzb/qzMB8GA1UdIwQY
MBaAFMdVcCRndw7WmzZ7d7vmQLxttBU+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveDFWd0pHZDNEdGFiTm50M3UtWkF2RzIwRlQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy8yNDNmOTEtODc0Ny00OTgxLTljYmYt
MWQzNzM0OTk5MjRlLzEvdW15bU9OSDlwSG1GRFNCbTF0am9UUE52LXJNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy8yNDNmOTEtODc0Ny00OTgxLTljYmYtMWQzNzM0OTk5MjRl
LzEveDFWd0pHZDNEdGFiTm50M3UtWkF2RzIwRlQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAX9JfAwQA
sOOBMA0GCSqGSIb3DQEBCwUAA4IBAQAj0m6ECWkr5oWCuDVjk5dw5+oIBmXn41vU
1s5cv5PURmDY43wwbdO2czpoLT4vH5ZL8HRvnv46z8/M7+2aHr/v8rSVaIJPiIvn
JFrIiS8CiD8k+PhMbgNk2IVLc3sgOa6inhL0sd2bDpEwRy2muzwL2+nkpRuVOrSl
8XpklI3xQoWr2Jbxdk1o3UYp4XwwN2m1zSvI41xxHdFzZ+SMoqJ5yT5e6C7ox+MU
7fojPUuE3XwWZA3MDlKxMVEQicRbJv869laYUV3/h7XIAcU4jkT5VKAXi9cjQEfa
KSu00Le3bfeNHS+alkSqEuQaKG9RHPO0h7ujV7Dgl52UpB2nTSKF
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:24:43 2025 by rpki-client