Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/o4MJWiQ3p9f1sVMOtdP0kIrny0U.roa
File: o4MJWiQ3p9f1sVMOtdP0kIrny0U.roa (raw, json)
Hash identifier: Iv1d40Acm34P7fsqgTUWtHlVu9iSUkOkTr8zoQek5T4=
Subject key identifier: A3:83:09:5A:24:37:A7:D7:F5:B1:53:0E:B5:D3:F4:90:8A:E7:CB:45
Certificate issuer: /CN=691242c33bc2e2e9e45850a0fc64ab2c7506a4b8
Certificate serial: 018B5D99182E0EAAB40D75EFADEE8E1A28F6
Authority key identifier: 69:12:42:C3:3B:C2:E2:E9:E4:58:50:A0:FC:64:AB:2C:75:06:A4:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aRJCwzvC4unkWFCg_GSrLHUGpLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/o4MJWiQ3p9f1sVMOtdP0kIrny0U.roa
Signing time: Mon 23 Oct 2023 17:33:16 +0000
ROA not before: Mon 23 Oct 2023 17:33:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57814
IP address blocks: 185.104.192.0/24 maxlen: 24
2a01:8640:10::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5d:99:18:2e:0e:aa:b4:0d:75:ef:ad:ee:8e:1a:28:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=691242c33bc2e2e9e45850a0fc64ab2c7506a4b8
Validity
Not Before: Oct 23 17:33:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a383095a2437a7d7f5b1530eb5d3f4908ae7cb45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:9f:27:34:3e:8c:00:c8:d0:30:23:bf:79:38:
41:83:1e:c7:6f:70:0d:1c:19:5f:e5:c6:80:42:2b:
d7:91:dc:4a:34:8f:c6:f3:71:ca:ba:08:ca:75:98:
4c:9a:eb:11:37:1b:10:90:0d:a1:f8:f2:ae:f0:84:
37:31:08:95:dd:b0:49:08:7c:74:df:0d:91:fe:13:
ad:a9:74:e0:c3:00:90:7b:40:78:c3:db:56:dc:94:
fc:e7:c8:3a:f7:05:a9:f8:1f:86:d3:95:f0:be:ae:
49:74:7a:a5:8f:e5:ba:bc:04:1a:bd:79:0a:73:78:
5c:c0:c1:17:a0:47:11:1e:b8:bb:4f:a0:62:80:82:
d4:3f:25:60:4a:2f:a4:a8:e0:c0:14:2d:0f:d0:6f:
e4:3b:bd:fa:75:99:99:5e:9a:4b:8b:4a:3d:28:9a:
bd:cc:31:69:7f:42:58:4c:16:18:3d:0b:1d:c6:28:
de:08:a7:19:d2:c8:ae:66:99:b6:01:77:6b:e4:7e:
b4:43:6f:8c:33:ff:ed:4c:e0:b8:a6:d4:5b:db:a2:
57:89:e6:10:e3:a8:a6:66:59:51:b3:9c:c4:0a:af:
89:f0:16:87:00:0f:8c:41:71:15:0f:a3:21:cf:a5:
1f:0d:01:81:22:e3:b8:98:ba:26:41:3a:73:ed:19:
ea:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:83:09:5A:24:37:A7:D7:F5:B1:53:0E:B5:D3:F4:90:8A:E7:CB:45
X509v3 Authority Key Identifier:
keyid:69:12:42:C3:3B:C2:E2:E9:E4:58:50:A0:FC:64:AB:2C:75:06:A4:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aRJCwzvC4unkWFCg_GSrLHUGpLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/o4MJWiQ3p9f1sVMOtdP0kIrny0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/aRJCwzvC4unkWFCg_GSrLHUGpLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.104.192.0/24
IPv6:
2a01:8640:10::/48
Signature Algorithm: sha256WithRSAEncryption
40:7c:ed:b4:26:f9:fa:09:85:ce:f1:54:f4:63:9e:55:bc:9f:
82:db:c9:4d:f9:42:15:3b:08:21:73:ca:6b:17:3f:1b:4b:e3:
db:54:f3:cf:a9:14:15:95:4e:20:9b:b9:ca:4b:52:a6:d6:29:
30:cb:ae:f4:29:8b:50:ec:ca:71:a6:10:36:f6:ae:f5:c8:00:
a6:dc:57:d2:2f:3e:a5:7e:9a:7c:ba:c2:55:fd:04:eb:83:df:
4a:12:12:cd:f6:16:99:c7:97:56:91:35:0d:6b:60:f8:20:46:
df:70:c0:ad:dc:46:de:3d:66:de:96:47:c2:22:6d:65:16:d1:
4d:16:ad:62:74:7f:16:7d:52:e6:b3:ae:ef:dd:30:ec:3e:ba:
8d:48:15:34:f0:7d:8b:2d:df:59:36:4a:81:34:be:1c:ce:72:
a9:c6:1a:9e:f3:a6:08:5f:cd:f0:41:24:c8:87:10:33:ce:10:
67:48:d8:40:7b:2c:d4:f9:ac:14:b1:c3:da:ed:96:45:03:0f:
8e:ff:ba:8a:6f:52:c5:df:6e:be:3d:fd:5a:22:a6:83:98:8e:
34:2a:4b:86:f5:da:63:38:60:f0:16:7c:3f:f4:68:b0:42:17:
68:78:68:8d:ca:44:5d:b3:bf:91:9a:ea:12:df:cc:14:f0:97:
6f:6b:a1:2b
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYtdmRguDqq0DXXvre6OGij2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5MTI0MmMzM2JjMmUyZTllNDU4NTBhMGZjNjRhYjJjNzUw
NmE0YjgwHhcNMjMxMDIzMTczMzE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMzgzMDk1YTI0MzdhN2Q3ZjViMTUzMGViNWQzZjQ5MDhhZTdjYjQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmJ8nND6MAMjQMCO/eThBgx7Hb3AN
HBlf5caAQivXkdxKNI/G83HKugjKdZhMmusRNxsQkA2h+PKu8IQ3MQiV3bBJCHx0
3w2R/hOtqXTgwwCQe0B4w9tW3JT858g69wWp+B+G05Xwvq5JdHqlj+W6vAQavXkK
c3hcwMEXoEcRHri7T6BigILUPyVgSi+kqODAFC0P0G/kO736dZmZXppLi0o9KJq9
zDFpf0JYTBYYPQsdxijeCKcZ0siuZpm2AXdr5H60Q2+MM//tTOC4ptRb26JXieYQ
46imZllRs5zECq+J8BaHAA+MQXEVD6Mhz6UfDQGBIuO4mLomQTpz7RnqdQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFKODCVokN6fX9bFTDrXT9JCK58tFMB8GA1UdIwQY
MBaAFGkSQsM7wuLp5FhQoPxkqyx1BqS4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVJKQ3d6dkM0dW5rV0ZDZ19HU3JMSFVHcExnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy82MzU2YjktYzQ5Zi00YjRkLThlMjkt
MzYyZmZlOGVlMjcwLzEvbzRNSldpUTNwOWYxc1ZNT3RkUDBrSXJueTBVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy82MzU2YjktYzQ5Zi00YjRkLThlMjktMzYyZmZlOGVlMjcw
LzEvYVJKQ3d6dkM0dW5rV0ZDZ19HU3JMSFVHcExnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAuWjAMA8E
AgACMAkDBwAqAYZAABAwDQYJKoZIhvcNAQELBQADggEBAEB87bQm+foJhc7xVPRj
nlW8n4LbyU35QhU7CCFzymsXPxtL49tU88+pFBWVTiCbucpLUqbWKTDLrvQpi1Ds
ynGmEDb2rvXIAKbcV9IvPqV+mny6wlX9BOuD30oSEs32FpnHl1aRNQ1rYPggRt9w
wK3cRt49Zt6WR8IibWUW0U0WrWJ0fxZ9Uuazru/dMOw+uo1IFTTwfYst31k2SoE0
vhzOcqnGGp7zpghfzfBBJMiHEDPOEGdI2EB7LNT5rBSxw9rtlkUDD47/uopvUsXf
br49/VoipoOYjjQqS4b12mM4YPAWfD/0aLBCF2h4aI3KRF2zv5Ga6hLfzBTwl29r
oSs=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:49 2025 by rpki-client