Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/lWFitd0Oxz5u1UQ8HItocXv_hr4.roa
File: lWFitd0Oxz5u1UQ8HItocXv_hr4.roa (raw, json)
Hash identifier: lG/XUm3rPaVmc7AMZeJ+dfZ/WwYItaSblHxkjw43WGg=
Subject key identifier: 95:61:62:B5:DD:0E:C7:3E:6E:D5:44:3C:1C:8B:68:71:7B:FF:86:BE
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 42636CFA
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/lWFitd0Oxz5u1UQ8HItocXv_hr4.roa
Signing time: Sat 01 Jan 2022 14:03:06 +0000
ROA not before: Sat 01 Jan 2022 14:03:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34385
IP address blocks: 193.183.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1113812218 (0x42636cfa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 14:03:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=956162b5dd0ec73e6ed5443c1c8b68717bff86be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b9:dc:fd:bd:80:f3:44:b3:99:a4:29:e1:50:
a8:17:70:0d:9a:92:d2:a6:83:43:4e:a6:44:48:d0:
e2:6b:77:b4:23:1f:e5:66:d9:e2:82:1e:69:b7:f3:
de:0c:dd:fa:37:8e:6a:fc:a7:95:74:5a:49:f0:16:
0d:53:6b:ec:4e:b4:17:e4:cd:16:71:2e:36:14:0b:
b5:11:f3:ef:ca:d0:7a:85:ed:51:4d:2f:8e:61:f2:
10:b6:25:cb:ee:02:d7:1d:97:f7:7d:6c:81:47:94:
39:d9:06:21:34:c4:2f:c8:cf:24:e6:af:28:dc:7d:
0b:6f:79:d2:45:1b:11:2d:a4:25:39:c2:f5:f6:35:
c3:d8:26:df:60:c0:16:e5:de:62:29:64:21:26:5a:
94:7d:de:93:3a:e1:30:1c:90:08:9d:40:b5:40:54:
c7:9b:ba:7f:ad:da:9e:5d:48:2e:a1:17:f0:b2:a2:
69:e1:61:c8:a4:64:a3:59:e1:03:c0:c4:b3:b8:fd:
4b:08:00:c9:ce:46:4a:59:58:04:1a:22:02:ff:80:
d0:00:96:08:5c:02:71:e6:36:a8:e4:18:db:f2:93:
11:6a:3b:6b:f1:3e:71:08:cd:f5:04:b8:d7:fd:1d:
23:8d:01:6b:2a:8d:38:45:fb:d6:e2:c3:6a:c0:11:
a8:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:61:62:B5:DD:0E:C7:3E:6E:D5:44:3C:1C:8B:68:71:7B:FF:86:BE
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/lWFitd0Oxz5u1UQ8HItocXv_hr4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.183.119.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:90:f9:7b:1b:b8:8e:8d:3b:68:7f:f3:8d:46:e7:84:64:4b:
9d:7c:72:39:0b:ab:7f:9f:e9:32:38:9c:d2:91:0d:62:2b:81:
90:0d:d7:86:a5:1e:11:bc:5c:0c:2e:ba:a3:47:72:a0:ba:70:
0b:c1:79:45:fe:81:28:d2:96:e2:30:67:8d:76:94:d5:4a:bb:
07:5a:50:8a:d7:15:dc:51:77:86:e7:14:2b:9b:72:bf:25:05:
66:14:2e:60:9f:54:d7:60:c0:f3:70:68:63:3a:e3:ab:29:18:
40:e7:20:39:d1:e5:da:e2:00:76:97:c3:55:93:f5:e6:be:99:
75:2e:cd:f0:d7:ef:e0:86:8e:1a:62:c3:56:cd:88:6e:5b:14:
cd:54:1d:fe:97:10:60:19:c0:e8:40:39:65:26:b7:86:3c:e5:
bb:77:2b:2b:6a:30:e6:54:27:86:e6:7d:68:a9:e8:99:43:89:
ea:c9:7f:c6:9f:b5:b3:02:be:ac:6f:62:81:b0:79:18:a2:37:
3e:7c:40:88:ad:fc:4e:f0:98:2f:74:f6:30:c4:a4:fb:24:7f:
70:53:48:da:e2:93:9a:5b:1a:8f:f5:96:27:80:81:c6:cb:c4:
b4:db:23:b6:0c:a1:49:d5:a4:1a:ab:c9:cc:14:dd:fc:90:5e:
33:d7:fa:02
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEQmNs+jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MTM1YzdmNTcxZWVmZWI2NzQwNGFiNmM0NWZkNDc1NTUxYWRhZjFiMB4XDTIyMDEw
MTE0MDMwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTU2MTYyYjVkZDBl
YzczZTZlZDU0NDNjMWM4YjY4NzE3YmZmODZiZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALi53P29gPNEs5mkKeFQqBdwDZqS0qaDQ06mREjQ4mt3tCMf
5WbZ4oIeabfz3gzd+jeOavynlXRaSfAWDVNr7E60F+TNFnEuNhQLtRHz78rQeoXt
UU0vjmHyELYly+4C1x2X931sgUeUOdkGITTEL8jPJOavKNx9C2950kUbES2kJTnC
9fY1w9gm32DAFuXeYilkISZalH3ekzrhMByQCJ1AtUBUx5u6f63anl1ILqEX8LKi
aeFhyKRko1nhA8DEs7j9SwgAyc5GSllYBBoiAv+A0ACWCFwCceY2qOQY2/KTEWo7
a/E+cQjN9QS41/0dI40BayqNOEX71uLDasARqIkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSVYWK13Q7HPm7VRDwci2hxe/+GvjAfBgNVHSMEGDAWgBQhNcf1ce7+tnQE
q2xF/UdVUa2vGzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0lUWEg5WEh1X3JaMEJLdHNSZjFIVlZHdHJ4cy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDkvNjgwYjc4LTk2YWYtNGE4NS1hYzAyLTk0M2QwMzMyMTMyNi8x
L2xXRml0ZDBPeHo1dTFVUThISXRvY1h2X2hyNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDkv
NjgwYjc4LTk2YWYtNGE4NS1hYzAyLTk0M2QwMzMyMTMyNi8xL0lUWEg5WEh1X3Ja
MEJLdHNSZjFIVlZHdHJ4cy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMG3dzANBgkqhkiG9w0BAQsFAAOC
AQEAmpD5exu4jo07aH/zjUbnhGRLnXxyOQurf5/pMjic0pENYiuBkA3XhqUeEbxc
DC66o0dyoLpwC8F5Rf6BKNKW4jBnjXaU1Uq7B1pQitcV3FF3hucUK5tyvyUFZhQu
YJ9U12DA83BoYzrjqykYQOcgOdHl2uIAdpfDVZP15r6ZdS7N8Nfv4IaOGmLDVs2I
blsUzVQd/pcQYBnA6EA5ZSa3hjzlu3crK2ow5lQnhuZ9aKnomUOJ6sl/xp+1swK+
rG9igbB5GKI3PnxAiK38TvCYL3T2MMSk+yR/cFNI2uKTmlsaj/WWJ4CBxsvEtNsj
tgyhSdWkGqvJzBTd/JBeM9f6Ag==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:08:15 2025 by rpki-client