Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/3eecf8-eb04-41ce-a9f6-3a91a613a407/1/UQcAVHgGRr7hIAEr1fY7eyNVz1I.roa
File: UQcAVHgGRr7hIAEr1fY7eyNVz1I.roa (raw, json)
Hash identifier: PRrzWdkOzcEb0ZlHLztlHCn+dhMONSxKpiUZq0qFbhw=
Subject key identifier: 51:07:00:54:78:06:46:BE:E1:20:01:2B:D5:F6:3B:7B:23:55:CF:52
Certificate issuer: /CN=004718e7a263ebe45e7706739241ec6d6ae58e74
Certificate serial: 0185707085B8FC4307500630667D5DD36C96
Authority key identifier: 00:47:18:E7:A2:63:EB:E4:5E:77:06:73:92:41:EC:6D:6A:E5:8E:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AEcY56Jj6-RedwZzkkHsbWrljnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/3eecf8-eb04-41ce-a9f6-3a91a613a407/1/UQcAVHgGRr7hIAEr1fY7eyNVz1I.roa
Signing time: Mon 02 Jan 2023 03:05:00 +0000
ROA not before: Mon 02 Jan 2023 03:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30860
IP address blocks: 193.107.201.0/24 maxlen: 24
193.107.202.0/24 maxlen: 24
193.107.200.0/23 maxlen: 23
193.107.200.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:85:b8:fc:43:07:50:06:30:66:7d:5d:d3:6c:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=004718e7a263ebe45e7706739241ec6d6ae58e74
Validity
Not Before: Jan 2 03:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=51070054780646bee120012bd5f63b7b2355cf52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:4f:62:27:0e:d2:e1:c6:f0:a2:16:a8:d3:47:
35:4f:70:af:e2:de:24:44:04:b9:ca:35:2b:d9:cd:
bf:c6:af:e4:5b:bc:4d:c1:af:2c:1a:40:5b:7f:f5:
38:56:f3:00:23:c8:b2:bc:39:a6:db:98:9b:97:2f:
25:74:4c:72:61:e5:a6:8a:df:8a:ae:63:0d:6f:4d:
35:90:00:58:a3:fa:1d:54:6e:4b:2f:e4:d1:b4:92:
f5:e8:79:a9:26:3c:49:6b:de:8c:e9:db:2e:c8:96:
92:29:4c:65:9a:0e:d8:fb:59:cd:db:65:1b:c2:bd:
6a:3c:d5:79:78:1a:4a:6a:55:00:b0:dd:f3:b4:03:
a2:b1:e3:e7:5d:16:bf:29:9b:30:40:8a:58:e5:d4:
02:3a:3a:8d:26:e9:ca:4e:13:b6:9f:28:bf:77:5f:
ec:8e:a6:b3:52:00:7f:6a:75:46:d9:3c:b9:48:02:
2a:20:24:de:d9:ba:e5:d3:ee:12:47:49:34:4c:a1:
1f:ae:d5:02:4c:2f:34:d2:6b:cc:63:e4:de:9d:31:
0e:ce:6d:a7:a3:1e:1a:33:ea:7e:fd:15:23:a0:c6:
45:30:c5:e0:79:3b:f3:80:d3:1d:13:e9:4d:a9:e2:
ae:e2:a5:4e:13:c3:57:74:74:3d:84:16:a6:5b:3e:
33:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:07:00:54:78:06:46:BE:E1:20:01:2B:D5:F6:3B:7B:23:55:CF:52
X509v3 Authority Key Identifier:
keyid:00:47:18:E7:A2:63:EB:E4:5E:77:06:73:92:41:EC:6D:6A:E5:8E:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AEcY56Jj6-RedwZzkkHsbWrljnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/3eecf8-eb04-41ce-a9f6-3a91a613a407/1/UQcAVHgGRr7hIAEr1fY7eyNVz1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/3eecf8-eb04-41ce-a9f6-3a91a613a407/1/AEcY56Jj6-RedwZzkkHsbWrljnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.107.200.0-193.107.202.255
Signature Algorithm: sha256WithRSAEncryption
1a:58:e5:da:9e:e1:55:3b:97:c3:ba:93:7f:63:17:df:f0:e3:
41:90:5f:ad:1f:82:b2:21:33:9c:08:93:2b:a6:c0:47:97:62:
97:58:c6:e3:fd:c7:e8:2a:65:22:60:9f:7a:7f:a9:1b:0c:45:
a0:d1:0a:82:86:bb:d9:90:3e:5e:03:7b:2c:79:35:22:ee:b5:
04:8d:c2:8d:3a:b0:f1:95:44:a6:d3:ab:81:7c:e0:b0:a1:cc:
f4:56:ec:85:bd:ac:ce:5f:27:1b:95:51:e7:bb:6f:21:74:f9:
a7:f4:d8:a4:5a:3b:a0:58:99:83:32:08:26:64:3e:51:8e:98:
74:fd:6c:71:7b:d2:1e:d1:32:ec:d0:e9:db:3a:31:13:ad:80:
86:e9:c8:a9:de:ca:b6:2b:c7:f0:e3:53:ec:04:c6:c2:93:9d:
b3:81:3e:6d:e2:4a:e3:eb:b2:cc:b0:03:f8:50:99:0b:9c:1e:
81:dd:13:e2:f3:ed:55:67:5a:b2:33:28:6e:6c:a3:d2:71:99:
cc:e9:2b:63:46:48:cb:87:50:fb:56:8e:30:8d:58:ab:27:73:
3c:c3:4d:4e:f5:bc:b6:5c:ae:94:7f:8a:f7:2c:76:79:a5:26:
4f:6f:31:52:8a:c5:09:e5:63:04:56:dc:d8:1b:bf:e8:dc:b5:
d5:f6:ec:e1
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYVwcIW4/EMHUAYwZn1d02yWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwNDcxOGU3YTI2M2ViZTQ1ZTc3MDY3MzkyNDFlYzZkNmFl
NThlNzQwHhcNMjMwMTAyMDMwNTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MTA3MDA1NDc4MDY0NmJlZTEyMDAxMmJkNWY2M2I3YjIzNTVjZjUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgE9iJw7S4cbwohao00c1T3Cv4t4k
RAS5yjUr2c2/xq/kW7xNwa8sGkBbf/U4VvMAI8iyvDmm25ibly8ldExyYeWmit+K
rmMNb001kABYo/odVG5LL+TRtJL16HmpJjxJa96M6dsuyJaSKUxlmg7Y+1nN22Ub
wr1qPNV5eBpKalUAsN3ztAOisePnXRa/KZswQIpY5dQCOjqNJunKThO2nyi/d1/s
jqazUgB/anVG2Ty5SAIqICTe2brl0+4SR0k0TKEfrtUCTC800mvMY+TenTEOzm2n
ox4aM+p+/RUjoMZFMMXgeTvzgNMdE+lNqeKu4qVOE8NXdHQ9hBamWz4zlQIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFFEHAFR4Bka+4SABK9X2O3sjVc9SMB8GA1UdIwQY
MBaAFABHGOeiY+vkXncGc5JB7G1q5Y50MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUVjWTU2Smo2LVJlZHdaemtrSHNiV3Jsam5RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC8zZWVjZjgtZWIwNC00MWNlLWE5ZjYt
M2E5MWE2MTNhNDA3LzEvVVFjQVZIZ0dScjdoSUFFcjFmWTdleU5WejFJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC8zZWVjZjgtZWIwNC00MWNlLWE5ZjYtM2E5MWE2MTNhNDA3
LzEvQUVjWTU2Smo2LVJlZHdaemtrSHNiV3Jsam5RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAPBa8gD
BADBa8owDQYJKoZIhvcNAQELBQADggEBABpY5dqe4VU7l8O6k39jF9/w40GQX60f
grIhM5wIkyumwEeXYpdYxuP9x+gqZSJgn3p/qRsMRaDRCoKGu9mQPl4Deyx5NSLu
tQSNwo06sPGVRKbTq4F84LChzPRW7IW9rM5fJxuVUee7byF0+af02KRaO6BYmYMy
CCZkPlGOmHT9bHF70h7RMuzQ6ds6MROtgIbpyKneyrYrx/DjU+wExsKTnbOBPm3i
SuPrssywA/hQmQucHoHdE+Lz7VVnWrIzKG5so9JxmczpK2NGSMuHUPtWjjCNWKsn
czzDTU71vLZcrpR/ivcsdnmlJk9vMVKKxQnlYwRW3Ngbv+jctdX27OE=
-----END CERTIFICATE-----
Generated at Sat Apr 19 15:25:15 2025 by rpki-client