Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/3Sr1EziBIuMJEN0D7JXwn9hLUkI.roa
File: 3Sr1EziBIuMJEN0D7JXwn9hLUkI.roa (raw, json)
Hash identifier: Xei8DqkntRJoWiX0T53IE/HhKtzmo2hjbSWVSu6Pgmo=
Subject key identifier: DD:2A:F5:13:38:81:22:E3:09:10:DD:03:EC:95:F0:9F:D8:4B:52:42
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 018413E2FAE5A0C7AE73D5E0D502539E4D56
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/3Sr1EziBIuMJEN0D7JXwn9hLUkI.roa
Signing time: Wed 26 Oct 2022 10:42:33 +0000
ROA not before: Wed 26 Oct 2022 10:42:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49778
IP address blocks: 62.89.198.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:13:e2:fa:e5:a0:c7:ae:73:d5:e0:d5:02:53:9e:4d:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Oct 26 10:42:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dd2af513388122e30910dd03ec95f09fd84b5242
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:28:5d:c3:93:a9:b6:80:e9:2b:80:17:8c:20:
e1:12:76:31:cb:bf:f8:72:f6:7a:a1:7f:b9:b7:fb:
15:89:3d:51:bb:27:3b:4a:c4:a1:2d:4c:b2:3c:58:
a8:46:13:d1:3a:18:de:96:17:c2:4e:b8:25:d5:e5:
ce:34:51:84:81:d3:b2:85:80:d8:bf:93:be:10:f3:
a7:4f:d4:a6:0d:4c:77:83:8e:cb:21:20:e6:ef:c2:
72:a1:56:e5:7d:b2:1a:6f:2f:d7:53:ac:fc:e4:1d:
2b:2a:ba:1c:e0:64:68:60:94:a7:d1:35:61:99:40:
fb:af:63:6b:03:75:ec:a8:ca:12:fd:d5:af:2b:be:
a5:89:5d:6e:42:ae:14:e1:27:ef:f1:50:78:11:81:
c6:38:8b:20:79:76:ce:e6:80:0b:de:09:34:9e:03:
51:e1:5a:3f:fb:40:f9:8a:df:b1:be:1d:f5:60:25:
21:d3:31:9d:ed:b7:d1:47:f3:ed:e7:a7:8f:1c:08:
00:22:09:02:91:9b:30:2a:6c:8a:6a:1c:af:01:8d:
b7:80:0c:0c:a5:90:c1:16:ca:28:f1:c7:d2:6b:f7:
bd:bf:f0:8e:92:b6:af:a0:bd:5c:87:8b:b2:9e:bf:
2b:8f:46:7d:90:07:2f:59:6d:0a:59:c4:43:48:7a:
44:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:2A:F5:13:38:81:22:E3:09:10:DD:03:EC:95:F0:9F:D8:4B:52:42
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/3Sr1EziBIuMJEN0D7JXwn9hLUkI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.89.198.0/23
Signature Algorithm: sha256WithRSAEncryption
74:93:d7:94:c8:94:f1:cf:5b:a4:2c:c0:ce:c3:e4:21:95:a4:
38:0e:e0:3e:10:c1:f9:49:8e:68:4b:18:27:7b:48:97:92:06:
8d:c7:61:f7:28:6a:8a:67:0e:6a:32:55:e4:ca:2d:ff:b3:db:
e5:c5:08:b8:e8:a2:6d:0c:72:fd:d3:77:f1:af:ae:6e:f4:0f:
d4:83:eb:92:c5:26:81:58:b2:4f:e1:f6:40:ab:04:0e:3d:70:
fb:d9:db:28:07:99:20:15:77:1b:0c:9e:07:52:16:ba:7a:e9:
0b:64:34:cc:2a:a7:80:84:37:fd:c2:04:cf:96:12:be:35:b6:
18:d8:fe:e3:84:7d:42:dd:a2:9e:85:80:56:c0:ce:cb:57:aa:
e3:df:fd:b8:42:ab:3c:18:8b:ff:d3:44:f5:36:22:b2:8a:0b:
f1:2b:de:e5:7d:49:a8:f4:73:1a:0d:44:da:dc:11:09:4e:f1:
c5:3a:2f:fc:db:69:5c:74:c0:9a:58:29:58:49:8a:c7:2a:8f:
bc:e1:0e:37:d1:19:d7:38:3c:1a:58:59:0b:cb:30:dc:39:33:
38:f1:7d:b0:0b:26:66:ec:8c:aa:89:fc:49:83:9c:22:2d:cc:
03:bf:8d:45:bb:12:ec:a6:e5:42:b0:91:09:26:36:b6:d5:63:
74:51:bd:8a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYQT4vrloMeuc9Xg1QJTnk1WMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyZDdjMmExMDcyZDczNTA3YWRiZjY1MDdkZTY4YWFhYzAx
Nzg1YzAwHhcNMjIxMDI2MTA0MjMzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZDJhZjUxMzM4ODEyMmUzMDkxMGRkMDNlYzk1ZjA5ZmQ4NGI1MjQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArChdw5OptoDpK4AXjCDhEnYxy7/4
cvZ6oX+5t/sViT1Ruyc7SsShLUyyPFioRhPROhjelhfCTrgl1eXONFGEgdOyhYDY
v5O+EPOnT9SmDUx3g47LISDm78JyoVblfbIaby/XU6z85B0rKroc4GRoYJSn0TVh
mUD7r2NrA3XsqMoS/dWvK76liV1uQq4U4Sfv8VB4EYHGOIsgeXbO5oAL3gk0ngNR
4Vo/+0D5it+xvh31YCUh0zGd7bfRR/Pt56ePHAgAIgkCkZswKmyKahyvAY23gAwM
pZDBFsoo8cfSa/e9v/COkravoL1ch4uynr8rj0Z9kAcvWW0KWcRDSHpEDwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN0q9RM4gSLjCRDdA+yV8J/YS1JCMB8GA1UdIwQY
MBaAFJLXwqEHLXNQetv2UH3miqrAF4XAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTct
ODllNTZjODBkMWQwLzEvM1NyMUV6aUJJdU1KRU4wRDdKWHduOWhMVWtJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTctODllNTZjODBkMWQw
LzEva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBPlnGMA0G
CSqGSIb3DQEBCwUAA4IBAQB0k9eUyJTxz1ukLMDOw+QhlaQ4DuA+EMH5SY5oSxgn
e0iXkgaNx2H3KGqKZw5qMlXkyi3/s9vlxQi46KJtDHL903fxr65u9A/Ug+uSxSaB
WLJP4fZAqwQOPXD72dsoB5kgFXcbDJ4HUha6eukLZDTMKqeAhDf9wgTPlhK+NbYY
2P7jhH1C3aKehYBWwM7LV6rj3/24Qqs8GIv/00T1NiKyigvxK97lfUmo9HMaDUTa
3BEJTvHFOi/822lcdMCaWClYSYrHKo+84Q430RnXODwaWFkLyzDcOTM48X2wCyZm
7IyqifxJg5wiLcwDv41FuxLspuVCsJEJJja21WN0Ub2K
-----END CERTIFICATE-----
Generated at Thu Mar 13 19:51:08 2025 by rpki-client