Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/7570e1-ae3d-4901-9c85-dcdc5cee276f/1/vWvGTOulknmOtUQn1l3f4WDpVT0.roa
File: vWvGTOulknmOtUQn1l3f4WDpVT0.roa (raw, json)
Hash identifier: YbD4r2OE2DnsyZ/FdMDcH9I168++1Db7hRB2mg+yGy0=
Subject key identifier: BD:6B:C6:4C:EB:A5:92:79:8E:B5:44:27:D6:5D:DF:E1:60:E9:55:3D
Certificate issuer: /CN=295a92b778eddfa8dcd917cbb87cde31ba2c732f
Certificate serial: 0FD231A8
Authority key identifier: 29:5A:92:B7:78:ED:DF:A8:DC:D9:17:CB:B8:7C:DE:31:BA:2C:73:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KVqSt3jt36jc2RfLuHzeMboscy8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/7570e1-ae3d-4901-9c85-dcdc5cee276f/1/vWvGTOulknmOtUQn1l3f4WDpVT0.roa
Signing time: Sat 01 Jan 2022 15:59:24 +0000
ROA not before: Sat 01 Jan 2022 15:59:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12306
IP address blocks: 194.56.221.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 265433512 (0xfd231a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=295a92b778eddfa8dcd917cbb87cde31ba2c732f
Validity
Not Before: Jan 1 15:59:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd6bc64ceba592798eb54427d65ddfe160e9553d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:3e:51:83:dc:ee:1c:9b:a3:22:96:91:7f:8b:
14:1e:22:a7:4c:dd:a0:30:79:19:4a:5a:fb:5d:d4:
54:78:ce:ed:e3:85:a4:3e:6d:40:97:c4:6c:5f:ee:
bc:79:4d:43:9b:b2:39:2f:98:99:72:66:25:ad:5f:
cb:d2:92:35:c1:52:63:31:7a:c1:ef:f3:72:3c:b6:
18:33:02:37:53:8f:b2:a5:a2:87:b6:2c:05:b0:4d:
03:02:32:91:f4:0c:2f:5b:53:ad:bd:da:f7:90:3e:
1f:37:32:9a:61:7f:91:68:ae:ae:df:05:29:c2:7b:
19:f0:27:e6:65:1d:c2:0c:a3:71:8b:a7:54:3a:9d:
51:21:b5:ac:ff:78:24:b8:e9:e8:27:11:c3:71:ff:
9d:e4:94:f9:38:48:90:aa:64:aa:f1:65:ec:c6:57:
9e:cf:4f:ba:8f:85:04:7c:fb:81:3c:69:0a:1f:f1:
e8:87:56:ea:c2:e3:20:0e:13:1e:a6:c1:97:33:be:
56:74:83:55:9d:c7:8e:3e:7a:1d:fe:2b:cd:dd:e3:
09:e6:e5:d9:42:dc:41:11:ab:42:5a:78:4a:6c:ea:
5a:ef:61:c4:47:37:fb:88:9a:ce:ac:30:31:34:85:
7d:9d:3c:ec:45:bd:22:e6:ea:f0:c0:91:b7:fb:99:
68:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:6B:C6:4C:EB:A5:92:79:8E:B5:44:27:D6:5D:DF:E1:60:E9:55:3D
X509v3 Authority Key Identifier:
keyid:29:5A:92:B7:78:ED:DF:A8:DC:D9:17:CB:B8:7C:DE:31:BA:2C:73:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KVqSt3jt36jc2RfLuHzeMboscy8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/7570e1-ae3d-4901-9c85-dcdc5cee276f/1/vWvGTOulknmOtUQn1l3f4WDpVT0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/7570e1-ae3d-4901-9c85-dcdc5cee276f/1/KVqSt3jt36jc2RfLuHzeMboscy8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.56.221.0/24
Signature Algorithm: sha256WithRSAEncryption
31:d9:74:82:9b:c0:2d:de:03:cc:90:7c:93:9c:46:20:6a:2c:
96:77:fb:c5:cd:f4:bc:2d:46:a6:53:c8:95:02:df:c4:89:16:
ed:3c:d0:04:b9:1a:2f:77:8f:01:b0:41:58:28:c2:ad:ca:09:
50:ae:2d:d8:dd:21:16:8c:5a:f3:9c:52:2e:09:f1:70:a5:1b:
65:c8:31:fd:75:f6:35:8a:91:1b:f0:a3:99:59:37:5b:00:b6:
23:a0:79:58:a4:4b:64:0e:f2:7f:1d:0b:2a:f9:b7:db:f0:c8:
b7:53:32:4d:94:56:d0:ea:2f:14:da:00:36:d3:5f:66:b3:71:
ff:20:ad:0e:90:4e:a1:62:e4:f8:8d:1b:5f:25:d2:d7:a8:89:
61:48:ef:5d:3c:58:cb:69:2a:5d:d7:12:33:3a:df:83:5e:fa:
63:18:09:62:46:8b:94:c1:09:79:c8:43:c5:c0:d6:5d:ee:02:
20:7a:96:81:b8:5f:5a:c2:d0:8e:e0:d7:0f:62:0a:7c:c2:0c:
40:36:bf:46:9f:f6:b9:ad:f9:b4:5c:d2:4d:7c:c7:a6:20:d8:
48:42:08:68:e2:b0:aa:02:c6:ca:42:4e:85:eb:ac:fc:6f:f2:
bf:27:5e:84:3d:74:9d:1e:6f:f4:30:49:ec:52:af:5a:e7:10:
7f:50:e4:6e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIED9IxqDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
OTVhOTJiNzc4ZWRkZmE4ZGNkOTE3Y2JiODdjZGUzMWJhMmM3MzJmMB4XDTIyMDEw
MTE1NTkyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmQ2YmM2NGNlYmE1
OTI3OThlYjU0NDI3ZDY1ZGRmZTE2MGU5NTUzZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJU+UYPc7hyboyKWkX+LFB4ip0zdoDB5GUpa+13UVHjO7eOF
pD5tQJfEbF/uvHlNQ5uyOS+YmXJmJa1fy9KSNcFSYzF6we/zcjy2GDMCN1OPsqWi
h7YsBbBNAwIykfQML1tTrb3a95A+HzcymmF/kWiurt8FKcJ7GfAn5mUdwgyjcYun
VDqdUSG1rP94JLjp6CcRw3H/neSU+ThIkKpkqvFl7MZXns9Puo+FBHz7gTxpCh/x
6IdW6sLjIA4THqbBlzO+VnSDVZ3Hjj56Hf4rzd3jCebl2ULcQRGrQlp4SmzqWu9h
xEc3+4iazqwwMTSFfZ087EW9Iubq8MCRt/uZaLcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS9a8ZM66WSeY61RCfWXd/hYOlVPTAfBgNVHSMEGDAWgBQpWpK3eO3fqNzZ
F8u4fN4xuixzLzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tWcVN0M2p0MzZqYzJSZkx1SHplTWJvc2N5OC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzcvNzU3MGUxLWFlM2QtNDkwMS05Yzg1LWRjZGM1Y2VlMjc2Zi8x
L3ZXdkdUT3Vsa25tT3RVUW4xbDNmNFdEcFZUMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzcv
NzU3MGUxLWFlM2QtNDkwMS05Yzg1LWRjZGM1Y2VlMjc2Zi8xL0tWcVN0M2p0MzZq
YzJSZkx1SHplTWJvc2N5OC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMI43TANBgkqhkiG9w0BAQsFAAOC
AQEAMdl0gpvALd4DzJB8k5xGIGoslnf7xc30vC1GplPIlQLfxIkW7TzQBLkaL3eP
AbBBWCjCrcoJUK4t2N0hFoxa85xSLgnxcKUbZcgx/XX2NYqRG/CjmVk3WwC2I6B5
WKRLZA7yfx0LKvm32/DIt1MyTZRW0OovFNoANtNfZrNx/yCtDpBOoWLk+I0bXyXS
16iJYUjvXTxYy2kqXdcSMzrfg176YxgJYkaLlMEJechDxcDWXe4CIHqWgbhfWsLQ
juDXD2IKfMIMQDa/Rp/2ua35tFzSTXzHpiDYSEIIaOKwqgLGykJOheus/G/yvyde
hD10nR5v9DBJ7FKvWucQf1Dkbg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:46 2025 by rpki-client