Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/_HXj__FlhofSpBCGdlgAMRxhiFQ.roa
File: _HXj__FlhofSpBCGdlgAMRxhiFQ.roa (raw, json)
Hash identifier: TLCNeXQgeaKKGrQWQwuT8g9qV06i9D2LpxjvLjmKOT0=
Subject key identifier: FC:75:E3:FF:F1:65:86:87:D2:A4:10:86:76:58:00:31:1C:61:88:54
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 4292F2B4
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/_HXj__FlhofSpBCGdlgAMRxhiFQ.roa
Signing time: Sat 01 Jan 2022 14:03:30 +0000
ROA not before: Sat 01 Jan 2022 14:03:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208822
IP address blocks: 194.68.172.0/24 maxlen: 24
194.103.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1116926644 (0x4292f2b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 14:03:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fc75e3fff1658687d2a41086765800311c618854
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:a7:13:9f:6c:fc:71:49:f2:d8:5c:3a:08:30:
21:78:75:c3:b1:2b:38:b2:10:69:00:96:4f:8c:fd:
bf:e0:7f:04:00:eb:6c:da:1b:bd:73:1f:e4:84:6e:
f8:ee:fe:58:8d:2b:3a:4b:13:d3:a8:4c:4c:26:8c:
a6:84:fc:39:95:fc:4d:cb:a6:de:97:47:8c:08:67:
fc:1e:f4:10:ff:eb:4d:92:26:88:56:bd:13:26:72:
5f:33:36:d5:6d:15:2e:e2:e5:e7:79:73:cd:eb:87:
97:99:34:85:15:0f:2e:2d:ba:23:e7:b1:a1:7d:12:
fb:96:3c:81:d0:42:88:ec:f4:10:42:c7:41:9b:ee:
60:56:a6:0b:ad:f2:3e:a8:6a:5c:82:cb:2f:8c:6c:
0c:7e:a1:f0:45:82:cb:62:1b:5d:73:52:0b:75:c5:
a4:43:0a:88:f1:07:19:be:b5:57:f5:9e:b4:ae:a6:
0e:0c:cb:03:71:d0:6a:4b:14:13:ae:2b:1f:6e:1b:
76:71:b0:a9:e9:96:a6:a3:90:5a:0c:42:a4:92:08:
ab:fe:e8:17:61:12:3b:98:a6:02:1f:e6:e6:92:25:
75:cb:b3:49:1a:16:84:f7:d7:b3:b9:a9:6e:53:f7:
59:6a:a5:00:c5:fb:ee:58:50:77:5f:8f:aa:d5:12:
3e:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:75:E3:FF:F1:65:86:87:D2:A4:10:86:76:58:00:31:1C:61:88:54
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/_HXj__FlhofSpBCGdlgAMRxhiFQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.68.172.0/24
194.103.196.0/24
Signature Algorithm: sha256WithRSAEncryption
13:e6:ea:48:64:86:92:39:49:d8:bc:b3:42:48:d8:19:97:0f:
0f:a3:d9:2e:b5:a9:6a:8d:b1:84:b8:4e:0d:74:9a:72:22:40:
e5:73:f8:48:6f:a3:37:81:61:af:06:ac:64:e9:4b:56:3e:66:
89:4f:13:98:80:64:25:26:9d:43:7f:88:2d:e9:04:a0:f7:93:
d4:0c:9a:f2:f3:b6:91:6d:92:ac:25:08:ee:56:81:08:d6:a3:
bb:b4:cb:5d:bd:ee:ac:1a:31:62:3d:eb:57:7f:e7:d0:0f:da:
4c:dc:99:9d:a4:54:29:d8:fa:55:6f:9e:6b:bf:80:b0:ef:f6:
c2:36:3a:92:e3:09:58:57:bc:01:ac:e3:4f:6a:28:e6:2f:a6:
61:6f:99:5e:ce:d3:70:3b:f3:7c:a3:bc:f2:d9:9e:cd:cc:69:
70:86:5b:b2:7e:50:6e:3a:00:77:ef:11:69:84:3a:6b:66:00:
c7:69:2b:43:d7:9a:8a:44:45:31:7a:d5:c5:f9:99:09:b1:c3:
84:56:af:61:53:13:4d:bd:5a:af:83:5b:dd:3c:83:05:ca:24:
ba:8a:38:7e:25:c8:6e:1c:6c:cd:3e:8b:6f:f3:bd:b4:6f:41:
37:4b:a1:77:28:9a:15:02:cc:a9:6a:78:17:8c:bb:af:3a:f9:
d3:b3:77:f5
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEQpLytDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MTM1YzdmNTcxZWVmZWI2NzQwNGFiNmM0NWZkNDc1NTUxYWRhZjFiMB4XDTIyMDEw
MTE0MDMzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmM3NWUzZmZmMTY1
ODY4N2QyYTQxMDg2NzY1ODAwMzExYzYxODg1NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOWnE59s/HFJ8thcOggwIXh1w7ErOLIQaQCWT4z9v+B/BADr
bNobvXMf5IRu+O7+WI0rOksT06hMTCaMpoT8OZX8Tcum3pdHjAhn/B70EP/rTZIm
iFa9EyZyXzM21W0VLuLl53lzzeuHl5k0hRUPLi26I+exoX0S+5Y8gdBCiOz0EELH
QZvuYFamC63yPqhqXILLL4xsDH6h8EWCy2IbXXNSC3XFpEMKiPEHGb61V/WetK6m
DgzLA3HQaksUE64rH24bdnGwqemWpqOQWgxCpJIIq/7oF2ESO5imAh/m5pIldcuz
SRoWhPfXs7mpblP3WWqlAMX77lhQd1+PqtUSPr8CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBT8deP/8WWGh9KkEIZ2WAAxHGGIVDAfBgNVHSMEGDAWgBQhNcf1ce7+tnQE
q2xF/UdVUa2vGzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0lUWEg5WEh1X3JaMEJLdHNSZjFIVlZHdHJ4cy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDkvNjgwYjc4LTk2YWYtNGE4NS1hYzAyLTk0M2QwMzMyMTMyNi8x
L19IWGpfX0ZsaG9mU3BCQ0dkbGdBTVJ4aGlGUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDkv
NjgwYjc4LTk2YWYtNGE4NS1hYzAyLTk0M2QwMzMyMTMyNi8xL0lUWEg5WEh1X3Ja
MEJLdHNSZjFIVlZHdHJ4cy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAMJErAMEAMJnxDANBgkqhkiG9w0B
AQsFAAOCAQEAE+bqSGSGkjlJ2LyzQkjYGZcPD6PZLrWpao2xhLhODXSaciJA5XP4
SG+jN4FhrwasZOlLVj5miU8TmIBkJSadQ3+ILekEoPeT1Aya8vO2kW2SrCUI7laB
CNaju7TLXb3urBoxYj3rV3/n0A/aTNyZnaRUKdj6VW+ea7+AsO/2wjY6kuMJWFe8
AazjT2oo5i+mYW+ZXs7TcDvzfKO88tmezcxpcIZbsn5QbjoAd+8RaYQ6a2YAx2kr
Q9eaikRFMXrVxfmZCbHDhFavYVMTTb1ar4Nb3TyDBcokuoo4fiXIbhxszT6Lb/O9
tG9BN0uhdyiaFQLMqWp4F4y7rzr507N39Q==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:03:35 2025 by rpki-client