Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/N0lHQdnfrd_WqZT7cKP1SQXRD1o.roa
File: N0lHQdnfrd_WqZT7cKP1SQXRD1o.roa (raw, json)
Hash identifier: fj5YYKDOZ8Tyxu/0bwyQM9pqS3ljPnhXgvim8QgDvHw=
Subject key identifier: 37:49:47:41:D9:DF:AD:DF:D6:A9:94:FB:70:A3:F5:49:05:D1:0F:5A
Certificate issuer: /CN=500151e464b29791376c0c57beb40c584ef5a1cf
Certificate serial: 01880F18953DC028961D776FF2129BFD4D51
Authority key identifier: 50:01:51:E4:64:B2:97:91:37:6C:0C:57:BE:B4:0C:58:4E:F5:A1:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UAFR5GSyl5E3bAxXvrQMWE71oc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/N0lHQdnfrd_WqZT7cKP1SQXRD1o.roa
Signing time: Fri 12 May 2023 08:34:09 +0000
ROA not before: Fri 12 May 2023 08:34:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43824
IP address blocks: 185.222.49.0/24 maxlen: 24
185.222.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:0f:18:95:3d:c0:28:96:1d:77:6f:f2:12:9b:fd:4d:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=500151e464b29791376c0c57beb40c584ef5a1cf
Validity
Not Before: May 12 08:34:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37494741d9dfaddfd6a994fb70a3f54905d10f5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:74:d0:ce:28:d1:34:30:e0:bf:ab:b2:53:d3:
88:fc:fb:31:93:85:a1:f6:6b:e3:35:48:38:1b:a1:
fa:9a:18:ae:e8:32:84:e8:1f:cb:7c:49:d6:5c:c0:
e6:d5:56:00:9a:46:c6:fe:72:14:68:24:77:c2:f3:
b0:84:9f:b6:cc:10:f8:c0:21:f4:5a:3c:24:cc:0f:
04:25:8e:07:36:84:64:2f:6d:ae:d8:95:f2:0b:d7:
7d:ca:64:73:ae:f8:34:0c:c5:fa:11:29:66:64:3d:
04:76:c3:29:94:80:f7:de:fa:d6:09:43:fe:68:e4:
d0:41:41:00:fb:34:ed:24:5c:4b:dd:c8:b1:52:86:
c5:54:4e:50:fc:eb:cd:6f:fa:77:d3:97:0e:39:56:
e0:bc:da:d3:62:51:b5:c3:f6:82:bd:ea:b2:ef:fb:
91:9d:c8:9a:19:16:7f:d8:6d:a1:74:46:40:9b:4e:
38:62:60:cf:ed:6e:09:58:da:4d:9c:96:7a:07:a9:
ce:89:be:53:ac:0e:10:69:7c:a4:f6:8e:5c:f6:8f:
1e:53:62:6d:b2:85:8c:2a:86:1c:69:21:97:f4:62:
8c:7e:b9:c5:67:c5:88:a5:47:29:45:75:10:45:9f:
43:49:19:42:da:ea:44:46:06:83:12:b6:ee:8a:23:
24:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:49:47:41:D9:DF:AD:DF:D6:A9:94:FB:70:A3:F5:49:05:D1:0F:5A
X509v3 Authority Key Identifier:
keyid:50:01:51:E4:64:B2:97:91:37:6C:0C:57:BE:B4:0C:58:4E:F5:A1:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UAFR5GSyl5E3bAxXvrQMWE71oc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/N0lHQdnfrd_WqZT7cKP1SQXRD1o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.49.0-185.222.50.255
Signature Algorithm: sha256WithRSAEncryption
69:df:bc:36:87:c9:08:cc:a5:33:d1:e7:52:94:91:1a:fa:5a:
09:da:89:17:de:39:cf:c1:4b:d2:8a:95:ea:bc:25:80:a5:ca:
99:14:61:4b:bb:f1:08:b1:fa:fa:45:a8:6a:b2:a2:ce:62:9c:
37:be:f9:ea:a0:b3:1e:0f:64:39:26:10:ba:7e:a0:08:99:0c:
42:f6:41:17:42:0e:ed:7c:39:c9:f3:ad:b4:44:24:d9:1d:b4:
ed:7a:21:24:de:b7:b6:76:74:e1:a8:38:40:d8:ae:a5:12:6d:
9a:a1:07:32:31:09:e8:61:2a:0c:c6:1d:85:dc:19:9b:3a:c9:
76:61:e5:16:ff:a1:34:7e:c0:24:f0:7b:a3:e1:2b:62:69:73:
cb:96:d3:6d:24:9b:e3:be:c2:ab:7a:84:80:d7:94:b3:18:13:
71:f9:50:be:32:2a:aa:bc:d9:c2:98:63:d7:ec:fd:1e:95:b5:
10:75:1f:91:31:0b:9e:3b:eb:c5:53:5b:ed:06:6a:30:16:d7:
20:48:a7:a4:a0:ab:d9:b4:91:90:3d:5b:17:4f:ad:3a:b8:83:
af:c9:41:24:d1:c6:fa:ea:91:fd:e6:72:8a:b0:57:31:c4:54:
e0:d4:a6:24:a3:19:46:14:7c:23:8f:a2:77:91:e2:c1:17:bd:
94:e8:80:ca
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYgPGJU9wCiWHXdv8hKb/U1RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwMDE1MWU0NjRiMjk3OTEzNzZjMGM1N2JlYjQwYzU4NGVm
NWExY2YwHhcNMjMwNTEyMDgzNDA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNzQ5NDc0MWQ5ZGZhZGRmZDZhOTk0ZmI3MGEzZjU0OTA1ZDEwZjVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw3TQzijRNDDgv6uyU9OI/Psxk4Wh
9mvjNUg4G6H6mhiu6DKE6B/LfEnWXMDm1VYAmkbG/nIUaCR3wvOwhJ+2zBD4wCH0
WjwkzA8EJY4HNoRkL22u2JXyC9d9ymRzrvg0DMX6ESlmZD0EdsMplID33vrWCUP+
aOTQQUEA+zTtJFxL3cixUobFVE5Q/OvNb/p305cOOVbgvNrTYlG1w/aCveqy7/uR
nciaGRZ/2G2hdEZAm044YmDP7W4JWNpNnJZ6B6nOib5TrA4QaXyk9o5c9o8eU2Jt
soWMKoYcaSGX9GKMfrnFZ8WIpUcpRXUQRZ9DSRlC2upERgaDErbuiiMk1QIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFDdJR0HZ363f1qmU+3Cj9UkF0Q9aMB8GA1UdIwQY
MBaAFFABUeRkspeRN2wMV760DFhO9aHPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVUFGUjVHU3lsNUUzYkF4WHZyUU1XRTcxb2M4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi80YTEyYzItOWJlZC00NWRkLTg2M2Mt
MGI5ZmI5N2U1MjlkLzEvTjBsSFFkbmZyZF9XcVpUN2NLUDFTUVhSRDFvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi80YTEyYzItOWJlZC00NWRkLTg2M2MtMGI5ZmI5N2U1Mjlk
LzEvVUFGUjVHU3lsNUUzYkF4WHZyUU1XRTcxb2M4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAC53jED
BAC53jIwDQYJKoZIhvcNAQELBQADggEBAGnfvDaHyQjMpTPR51KUkRr6WgnaiRfe
Oc/BS9KKleq8JYClypkUYUu78Qix+vpFqGqyos5inDe++eqgsx4PZDkmELp+oAiZ
DEL2QRdCDu18OcnzrbREJNkdtO16ISTet7Z2dOGoOEDYrqUSbZqhBzIxCehhKgzG
HYXcGZs6yXZh5Rb/oTR+wCTwe6PhK2Jpc8uW020km+O+wqt6hIDXlLMYE3H5UL4y
Kqq82cKYY9fs/R6VtRB1H5ExC54768VTW+0GajAW1yBIp6Sgq9m0kZA9WxdPrTq4
g6/JQSTRxvrqkf3mcoqwVzHEVODUpiSjGUYUfCOPoneR4sEXvZTogMo=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:50 2025 by rpki-client