Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/73fe78-f00d-45f8-bfd3-f2a0e9c8c7f0/1/Y89d6Kt4b7IXb9RQXftCusJoRgI.roa
File: Y89d6Kt4b7IXb9RQXftCusJoRgI.roa (raw, json)
Hash identifier: 9/QzmHDBmlynJyi9PAhYYylgdQpO6dKb9F4Lp7NEwbI=
Subject key identifier: 63:CF:5D:E8:AB:78:6F:B2:17:6F:D4:50:5D:FB:42:BA:C2:68:46:02
Certificate issuer: /CN=7946c5601064101b1b54cf5c6efcd407f17911b9
Certificate serial: 960A
Authority key identifier: 79:46:C5:60:10:64:10:1B:1B:54:CF:5C:6E:FC:D4:07:F1:79:11:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eUbFYBBkEBsbVM9cbvzUB_F5Ebk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/73fe78-f00d-45f8-bfd3-f2a0e9c8c7f0/1/Y89d6Kt4b7IXb9RQXftCusJoRgI.roa
Signing time: Thu 28 Apr 2022 05:41:38 +0000
ROA not before: Thu 28 Apr 2022 05:41:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8708
IP address blocks: 194.102.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38410 (0x960a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7946c5601064101b1b54cf5c6efcd407f17911b9
Validity
Not Before: Apr 28 05:41:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63cf5de8ab786fb2176fd4505dfb42bac2684602
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a8:b9:36:f3:12:1b:74:82:5f:76:71:64:b9:
bf:11:e7:63:15:d5:76:a0:54:ba:e0:5d:52:fc:f6:
24:98:da:7f:f7:fc:fb:71:9c:56:d2:f5:52:28:e7:
d7:7b:d6:fd:94:61:e1:73:be:b8:41:6c:d8:cd:b8:
4e:68:b8:b0:ba:97:24:37:4a:e1:b5:f2:ea:78:e8:
b1:bc:ef:8e:f1:ee:94:41:00:3c:4e:a4:f8:f2:f3:
8e:41:5b:1a:c2:4d:d6:03:fe:27:72:5a:70:a1:1f:
54:5a:0a:90:61:f2:27:4f:e4:10:d4:06:69:18:df:
60:9a:bf:3d:a2:57:dc:41:46:b2:c6:4f:03:cf:dc:
72:e1:e0:71:9c:8b:a6:44:04:32:3f:0c:7e:6b:b0:
12:cb:0a:80:30:4f:4f:5f:7e:3a:e9:c0:79:a1:8c:
e8:90:3f:4e:61:8a:47:7d:a2:a5:25:f5:1f:b3:8b:
d7:63:a7:d3:7a:4c:46:d0:63:40:fe:54:c4:c4:65:
08:1c:37:88:86:94:5e:9b:ee:4d:43:a8:07:e9:b5:
e5:06:f9:19:11:a8:8d:c7:81:93:da:0c:b7:c0:c9:
ff:eb:b5:2c:ec:7b:dc:1c:cc:64:65:99:44:36:5e:
5c:5a:ff:7e:b7:51:53:c9:95:de:c3:5a:58:aa:3a:
56:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:CF:5D:E8:AB:78:6F:B2:17:6F:D4:50:5D:FB:42:BA:C2:68:46:02
X509v3 Authority Key Identifier:
keyid:79:46:C5:60:10:64:10:1B:1B:54:CF:5C:6E:FC:D4:07:F1:79:11:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eUbFYBBkEBsbVM9cbvzUB_F5Ebk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/73fe78-f00d-45f8-bfd3-f2a0e9c8c7f0/1/Y89d6Kt4b7IXb9RQXftCusJoRgI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/73fe78-f00d-45f8-bfd3-f2a0e9c8c7f0/1/eUbFYBBkEBsbVM9cbvzUB_F5Ebk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.102.128.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:d5:fd:31:3d:08:93:05:9f:f1:48:50:ea:0e:72:30:77:f1:
13:05:83:3d:1b:40:82:7f:a5:5f:44:1b:4f:0d:40:f5:78:68:
18:f5:e1:0f:79:0f:dc:6e:50:01:14:94:6d:cc:47:17:34:16:
a0:8f:98:5a:b3:8f:b0:32:05:1b:12:2a:76:2f:38:04:28:20:
02:88:dc:05:da:3a:1b:83:b8:78:ed:ff:50:fb:df:66:7c:a4:
96:78:fe:1a:74:e9:b8:45:00:63:a1:38:ae:d3:27:a2:f8:9e:
ba:fe:ff:13:c4:69:2a:16:5d:f0:fd:13:bd:0a:0f:82:7f:00:
62:97:17:e4:ae:80:41:cb:85:2c:ff:6c:a9:6c:23:ed:64:00:
86:88:38:d5:ad:55:76:fe:19:df:80:fb:a9:3f:dd:d5:36:8a:
fb:b8:05:0d:fe:44:2c:a2:21:62:e9:e4:24:22:4c:71:da:e4:
bc:f7:88:1a:22:73:cc:a9:cd:04:5a:06:3c:86:d1:6c:84:bb:
04:f3:ae:db:a2:63:b8:fc:84:10:08:c8:17:d3:41:f5:c9:bd:
e9:13:7f:47:c6:67:1a:ef:91:73:15:e1:ad:63:e6:cf:94:52:
ae:bf:95:33:aa:01:ac:f5:89:48:fb:df:48:a9:97:67:73:64:
dd:62:75:c3
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAJYKMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDc5
NDZjNTYwMTA2NDEwMWIxYjU0Y2Y1YzZlZmNkNDA3ZjE3OTExYjkwHhcNMjIwNDI4
MDU0MTM4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg2M2NmNWRlOGFiNzg2
ZmIyMTc2ZmQ0NTA1ZGZiNDJiYWMyNjg0NjAyMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAyqi5NvMSG3SCX3ZxZLm/EedjFdV2oFS64F1S/PYkmNp/9/z7
cZxW0vVSKOfXe9b9lGHhc764QWzYzbhOaLiwupckN0rhtfLqeOixvO+O8e6UQQA8
TqT48vOOQVsawk3WA/4nclpwoR9UWgqQYfInT+QQ1AZpGN9gmr89olfcQUayxk8D
z9xy4eBxnIumRAQyPwx+a7ASywqAME9PX3466cB5oYzokD9OYYpHfaKlJfUfs4vX
Y6fTekxG0GNA/lTExGUIHDeIhpRem+5NQ6gH6bXlBvkZEaiNx4GT2gy3wMn/67Us
7HvcHMxkZZlENl5cWv9+t1FTyZXew1pYqjpWJwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFGPPXeireG+yF2/UUF37QrrCaEYCMB8GA1UdIwQYMBaAFHlGxWAQZBAbG1TP
XG781AfxeRG5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
ZVViRllCQmtFQnNiVk05Y2J2elVCX0Y1RWJrLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9kNC83M2ZlNzgtZjAwZC00NWY4LWJmZDMtZjJhMGU5YzhjN2YwLzEv
WTg5ZDZLdDRiN0lYYjlSUVhmdEN1c0pvUmdJLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC83
M2ZlNzgtZjAwZC00NWY4LWJmZDMtZjJhMGU5YzhjN2YwLzEvZVViRllCQmtFQnNi
Vk05Y2J2elVCX0Y1RWJrLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwmaAMA0GCSqGSIb3DQEBCwUAA4IB
AQBd1f0xPQiTBZ/xSFDqDnIwd/ETBYM9G0CCf6VfRBtPDUD1eGgY9eEPeQ/cblAB
FJRtzEcXNBagj5has4+wMgUbEip2LzgEKCACiNwF2jobg7h47f9Q+99mfKSWeP4a
dOm4RQBjoTiu0yei+J66/v8TxGkqFl3w/RO9Cg+CfwBilxfkroBBy4Us/2ypbCPt
ZACGiDjVrVV2/hnfgPupP93VNor7uAUN/kQsoiFi6eQkIkxx2uS894gaInPMqc0E
WgY8htFshLsE867bomO4/IQQCMgX00H1yb3pE39Hxmca75FzFeGtY+bPlFKuv5Uz
qgGs9YlI+99IqZdnc2TdYnXD
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:49:20 2025 by rpki-client