Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/2ebba5-7a0d-4333-b911-0f88d16e1afe/1/4YMbcdX5vQHH1vBMIQ9qyiJrGts.roa
File: 4YMbcdX5vQHH1vBMIQ9qyiJrGts.roa (raw, json)
Hash identifier: ns7xgaeeMBheJeUdotnO8THvo32Ypd1pwWLnDWdY2lU=
Subject key identifier: E1:83:1B:71:D5:F9:BD:01:C7:D6:F0:4C:21:0F:6A:CA:22:6B:1A:DB
Certificate issuer: /CN=e11aa92850ebfe648ad3d89add8e736ec3675a11
Certificate serial: 097F66
Authority key identifier: E1:1A:A9:28:50:EB:FE:64:8A:D3:D8:9A:DD:8E:73:6E:C3:67:5A:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4RqpKFDr_mSK09ia3Y5zbsNnWhE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/2ebba5-7a0d-4333-b911-0f88d16e1afe/1/4YMbcdX5vQHH1vBMIQ9qyiJrGts.roa
Signing time: Mon 04 Jul 2022 15:59:09 +0000
ROA not before: Mon 04 Jul 2022 15:59:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3209
IP address blocks: 194.180.130.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 622438 (0x97f66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e11aa92850ebfe648ad3d89add8e736ec3675a11
Validity
Not Before: Jul 4 15:59:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e1831b71d5f9bd01c7d6f04c210f6aca226b1adb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c2:0a:57:a7:31:3e:77:0d:02:16:c2:78:f7:
c3:7f:15:85:cb:aa:10:ef:c0:2b:ff:e8:b9:d4:19:
66:1d:9a:ee:93:a3:6c:3f:07:99:84:1c:c6:f4:65:
34:58:9b:fd:1f:f1:e8:ce:56:3c:09:3c:1d:92:dc:
3b:3b:46:b7:3f:89:d0:f7:d9:46:6e:62:2a:a6:7d:
fc:8a:82:6f:85:be:84:54:7d:9a:59:ec:99:6d:43:
b5:56:72:1e:d8:14:80:a2:1a:32:de:de:ed:7d:d1:
8d:aa:53:e2:19:b2:7f:1c:7a:69:5b:0f:32:11:f3:
ba:0b:50:c8:a5:2a:7e:d3:7a:35:00:75:47:dc:46:
28:66:eb:0e:3e:10:18:14:1a:07:7a:1f:d1:6d:70:
64:8b:04:3d:bc:df:3b:57:47:47:8d:e9:b9:d2:28:
26:bf:bf:4e:60:cf:82:98:60:f7:7e:8c:19:d8:36:
0f:92:57:5c:c2:31:d1:a2:3c:34:cf:16:32:5d:d4:
c6:e1:2c:c2:2c:11:cb:02:4e:68:42:98:cd:c4:0e:
8b:52:61:ee:6f:4e:c7:38:68:9d:c7:ef:14:e6:42:
0e:48:9e:7d:3a:e7:c2:e0:a6:6e:74:22:a1:ac:1a:
19:19:22:7c:b8:05:32:03:06:89:32:ee:2e:84:68:
8d:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:83:1B:71:D5:F9:BD:01:C7:D6:F0:4C:21:0F:6A:CA:22:6B:1A:DB
X509v3 Authority Key Identifier:
keyid:E1:1A:A9:28:50:EB:FE:64:8A:D3:D8:9A:DD:8E:73:6E:C3:67:5A:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4RqpKFDr_mSK09ia3Y5zbsNnWhE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/2ebba5-7a0d-4333-b911-0f88d16e1afe/1/4YMbcdX5vQHH1vBMIQ9qyiJrGts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/2ebba5-7a0d-4333-b911-0f88d16e1afe/1/4RqpKFDr_mSK09ia3Y5zbsNnWhE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.180.130.0/24
Signature Algorithm: sha256WithRSAEncryption
31:9b:0e:0d:30:b3:f9:a4:26:5f:91:73:03:8a:23:4c:c4:23:
7b:3e:ad:7a:8d:8d:a8:fb:38:79:cd:52:e4:58:3b:e0:93:3b:
87:c3:b7:a5:fe:bf:3f:df:c7:4c:9d:c2:da:0d:15:f5:ad:34:
46:1c:65:85:54:f0:43:97:b1:55:b3:80:ee:9e:2f:65:b1:b8:
78:74:14:06:39:d2:2a:88:04:23:2a:fa:d1:5d:f6:fa:11:37:
ca:61:f4:b1:31:9f:83:49:c0:5f:bc:9a:68:c1:19:58:fe:7a:
fe:2f:01:fe:80:9d:31:55:65:40:8a:46:81:be:80:af:ad:29:
df:c1:28:d6:3a:3c:83:6f:86:6a:ea:b2:f3:de:08:89:26:41:
9a:51:9a:c5:48:55:4d:d6:29:a0:cd:88:bf:60:59:71:e0:54:
ac:fd:d9:e1:06:3d:b5:3c:ee:c4:07:0e:11:45:29:d6:b3:f1:
89:5a:fd:eb:28:aa:55:33:eb:1d:f9:ea:0c:0b:70:34:83:cd:
d9:5d:ad:c1:42:f9:47:96:42:a7:48:02:34:7a:2b:36:98:07:
b9:ee:6a:bb:51:49:66:5b:08:c6:9b:33:b8:7a:10:c6:b2:ba:
dc:73:7e:61:d7:7d:99:67:9d:24:bf:d0:69:ea:5e:8a:43:84:
f1:d4:f1:53
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDCX9mMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGUx
MWFhOTI4NTBlYmZlNjQ4YWQzZDg5YWRkOGU3MzZlYzM2NzVhMTEwHhcNMjIwNzA0
MTU1OTA5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhlMTgzMWI3MWQ1Zjli
ZDAxYzdkNmYwNGMyMTBmNmFjYTIyNmIxYWRiMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAxsIKV6cxPncNAhbCePfDfxWFy6oQ78Ar/+i51BlmHZruk6Ns
PweZhBzG9GU0WJv9H/HozlY8CTwdktw7O0a3P4nQ99lGbmIqpn38ioJvhb6EVH2a
WeyZbUO1VnIe2BSAohoy3t7tfdGNqlPiGbJ/HHppWw8yEfO6C1DIpSp+03o1AHVH
3EYoZusOPhAYFBoHeh/RbXBkiwQ9vN87V0dHjem50igmv79OYM+CmGD3fowZ2DYP
kldcwjHRojw0zxYyXdTG4SzCLBHLAk5oQpjNxA6LUmHub07HOGidx+8U5kIOSJ59
OufC4KZudCKhrBoZGSJ8uAUyAwaJMu4uhGiNwwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFOGDG3HV+b0Bx9bwTCEPasoiaxrbMB8GA1UdIwQYMBaAFOEaqShQ6/5kitPY
mt2Oc27DZ1oRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
NFJxcEtGRHJfbVNLMDlpYTNZNXpic05uV2hFLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZS8yZWJiYTUtN2EwZC00MzMzLWI5MTEtMGY4OGQxNmUxYWZlLzEv
NFlNYmNkWDV2UUhIMXZCTUlROXF5aUpyR3RzLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS8y
ZWJiYTUtN2EwZC00MzMzLWI5MTEtMGY4OGQxNmUxYWZlLzEvNFJxcEtGRHJfbVNL
MDlpYTNZNXpic05uV2hFLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwrSCMA0GCSqGSIb3DQEBCwUAA4IB
AQAxmw4NMLP5pCZfkXMDiiNMxCN7Pq16jY2o+zh5zVLkWDvgkzuHw7el/r8/38dM
ncLaDRX1rTRGHGWFVPBDl7FVs4Duni9lsbh4dBQGOdIqiAQjKvrRXfb6ETfKYfSx
MZ+DScBfvJpowRlY/nr+LwH+gJ0xVWVAikaBvoCvrSnfwSjWOjyDb4Zq6rLz3giJ
JkGaUZrFSFVN1imgzYi/YFlx4FSs/dnhBj21PO7EBw4RRSnWs/GJWv3rKKpVM+sd
+eoMC3A0g83ZXa3BQvlHlkKnSAI0eis2mAe57mq7UUlmWwjGmzO4ehDGsrrcc35h
132ZZ50kv9Bp6l6KQ4Tx1PFT
-----END CERTIFICATE-----
Generated at Sun Apr 13 20:16:50 2025 by rpki-client