Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/a34a16-f880-4873-868b-5ecafda471f7/1/1-Ouvy7N-Y1JYPzrxzMT73OUHUNs.roa
File: 1-Ouvy7N-Y1JYPzrxzMT73OUHUNs.roa (raw, json)
Hash identifier: h9wXKBlvF4YZ0/9zurz8Owv8Vwa1mhI2VN30dMqt32w=
Subject key identifier: F8:EB:AF:CB:B3:7E:63:52:58:3F:3A:F1:CC:C4:FB:DC:E5:07:50:DB
Certificate issuer: /CN=c2eafaa30b340ecf810a4cb9af3b51c702566598
Certificate serial: 0188819CBA339EB33523115FA06A5FC740E3
Authority key identifier: C2:EA:FA:A3:0B:34:0E:CF:81:0A:4C:B9:AF:3B:51:C7:02:56:65:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wur6ows0Ds-BCky5rztRxwJWZZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/a34a16-f880-4873-868b-5ecafda471f7/1/1-Ouvy7N-Y1JYPzrxzMT73OUHUNs.roa
Signing time: Sat 03 Jun 2023 14:15:12 +0000
ROA not before: Sat 03 Jun 2023 14:15:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8410
IP address blocks: 212.15.41.0/24 maxlen: 24
212.15.42.0/24 maxlen: 24
212.15.40.0/24 maxlen: 24
212.15.43.0/24 maxlen: 24
212.15.44.0/24 maxlen: 24
212.15.48.0/24 maxlen: 24
212.15.49.0/24 maxlen: 24
212.15.46.0/24 maxlen: 24
212.15.47.0/24 maxlen: 24
212.15.50.0/24 maxlen: 24
212.15.51.0/24 maxlen: 24
212.15.45.0/24 maxlen: 24
212.15.52.0/24 maxlen: 24
212.15.55.0/24 maxlen: 24
194.55.163.0/24 maxlen: 24
194.55.161.0/24 maxlen: 24
212.15.53.0/24 maxlen: 24
212.15.54.0/24 maxlen: 24
194.55.171.0/24 maxlen: 24
194.55.168.0/24 maxlen: 24
195.140.180.0/22 maxlen: 22
212.15.32.0/21 maxlen: 21
194.0.120.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:81:9c:ba:33:9e:b3:35:23:11:5f:a0:6a:5f:c7:40:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2eafaa30b340ecf810a4cb9af3b51c702566598
Validity
Not Before: Jun 3 14:15:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f8ebafcbb37e6352583f3af1ccc4fbdce50750db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d6:e8:a8:bd:d9:70:c9:98:55:8d:a8:f4:30:
4e:dc:c2:06:11:a9:95:20:11:4b:ad:21:99:45:1f:
57:2c:56:0c:9d:f0:08:1d:67:96:fe:1b:7f:1d:4f:
25:31:b8:f5:f4:02:26:9b:e1:f5:2d:96:e9:2b:31:
f5:d3:05:e5:57:4b:2c:99:a5:49:eb:f0:02:f9:a5:
31:bf:41:c2:7c:4c:f2:7c:f4:81:46:e8:8b:c3:f8:
1e:2f:9f:a7:25:c6:90:05:f0:8f:c9:93:fa:2c:71:
34:04:be:0f:34:ea:bf:c1:cf:f8:bf:97:d2:f7:1d:
89:1d:b9:ac:32:00:cb:0d:86:0c:a5:97:23:f8:69:
b5:82:72:94:9d:2e:50:30:99:e0:31:43:75:15:2f:
ed:4f:f2:58:4d:65:08:bd:cd:db:08:64:25:bf:06:
a5:34:07:c4:30:9e:85:90:f6:35:e5:aa:4d:95:7f:
a4:fd:8e:d3:4e:ed:db:b6:89:a5:fb:d0:76:66:56:
a7:7c:c5:19:55:06:e2:f8:ba:3c:87:d0:11:e9:68:
11:ab:17:ea:94:88:4a:1f:a4:8a:63:ad:a5:0b:38:
17:69:3d:96:20:7a:2e:e0:3e:50:9a:35:70:72:e2:
65:6d:f8:68:1e:e0:11:88:c3:22:e8:4e:f8:8f:d8:
72:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:EB:AF:CB:B3:7E:63:52:58:3F:3A:F1:CC:C4:FB:DC:E5:07:50:DB
X509v3 Authority Key Identifier:
keyid:C2:EA:FA:A3:0B:34:0E:CF:81:0A:4C:B9:AF:3B:51:C7:02:56:65:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wur6ows0Ds-BCky5rztRxwJWZZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/a34a16-f880-4873-868b-5ecafda471f7/1/1-Ouvy7N-Y1JYPzrxzMT73OUHUNs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/a34a16-f880-4873-868b-5ecafda471f7/1/wur6ows0Ds-BCky5rztRxwJWZZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.120.0/22
194.55.161.0/24
194.55.163.0/24
194.55.168.0/24
194.55.171.0/24
195.140.180.0/22
212.15.32.0-212.15.55.255
Signature Algorithm: sha256WithRSAEncryption
27:1e:c8:8a:8f:cc:cc:db:35:6d:12:c5:a1:3c:c7:85:f8:c7:
7a:40:6b:0b:2c:a2:7f:8c:ad:04:e3:98:17:66:0c:71:bc:fe:
0f:bf:27:69:04:4e:f4:54:d9:99:92:6d:96:2f:0c:eb:af:5d:
c2:e7:47:da:36:dd:10:ab:03:56:59:ae:41:08:1e:c6:a1:90:
81:4b:10:8e:3e:84:e2:b1:38:6b:0a:fb:ad:8d:9d:60:50:c7:
08:42:3e:83:2f:3e:92:e5:dd:5a:be:de:ab:59:e2:e5:8e:7f:
e3:7f:69:d2:f2:af:c9:eb:c8:30:34:79:63:bd:ae:bd:e1:16:
8b:09:a8:b2:a5:2b:57:43:e0:e4:3e:1d:b6:d8:d6:03:90:70:
0a:93:6f:65:be:1b:ee:59:33:ad:f7:63:2a:50:ff:7c:5b:f6:
d5:a7:0c:97:dc:b5:19:c7:95:0f:45:f0:c7:c8:3e:84:db:9d:
28:59:59:bc:8e:22:60:f6:83:ae:13:d4:81:02:56:a4:9c:92:
45:8c:2c:2d:1b:6c:b7:20:14:9a:86:33:60:9f:21:fd:fe:0b:
d8:41:6a:27:ed:e2:b4:c2:e8:30:98:0d:f5:49:36:f2:0e:5b:
2c:05:4e:73:26:1a:4a:9e:69:5c:1e:16:8b:93:35:f8:da:2f:
b7:19:63:9c
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgISAYiBnLoznrM1IxFfoGpfx0DjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyZWFmYWEzMGIzNDBlY2Y4MTBhNGNiOWFmM2I1MWM3MDI1
NjY1OTgwHhcNMjMwNjAzMTQxNTEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOGViYWZjYmIzN2U2MzUyNTgzZjNhZjFjY2M0ZmJkY2U1MDc1MGRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyNboqL3ZcMmYVY2o9DBO3MIGEamV
IBFLrSGZRR9XLFYMnfAIHWeW/ht/HU8lMbj19AImm+H1LZbpKzH10wXlV0ssmaVJ
6/AC+aUxv0HCfEzyfPSBRuiLw/geL5+nJcaQBfCPyZP6LHE0BL4PNOq/wc/4v5fS
9x2JHbmsMgDLDYYMpZcj+Gm1gnKUnS5QMJngMUN1FS/tT/JYTWUIvc3bCGQlvwal
NAfEMJ6FkPY15apNlX+k/Y7TTu3btoml+9B2ZlanfMUZVQbi+Lo8h9AR6WgRqxfq
lIhKH6SKY62lCzgXaT2WIHou4D5QmjVwcuJlbfhoHuARiMMi6E74j9hyCwIDAQAB
o4ICNjCCAjIwHQYDVR0OBBYEFPjrr8uzfmNSWD868czE+9zlB1DbMB8GA1UdIwQY
MBaAFMLq+qMLNA7PgQpMua87UccCVmWYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd3VyNm93czBEcy1CQ2t5NXJ6dFJ4d0pXWlpnLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS9hMzRhMTYtZjg4MC00ODczLTg2OGIt
NWVjYWZkYTQ3MWY3LzEvMS1PdXZ5N04tWTFKWVB6cnh6TVQ3M09VSFVOcy5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvZGEvYTM0YTE2LWY4ODAtNDg3My04NjhiLTVlY2FmZGE0NzFm
Ny8xL3d1cjZvd3MwRHMtQkNreTVyenRSeHdKV1paZy5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjBLBggrBgEFBQcBBwEB/wQ8MDowOAQCAAEwMgMEAsIAeAME
AMI3oQMEAMI3owMEAMI3qAMEAMI3qwMEAsOMtDAMAwQF1A8gAwQD1A8wMA0GCSqG
SIb3DQEBCwUAA4IBAQAnHsiKj8zM2zVtEsWhPMeF+Md6QGsLLKJ/jK0E45gXZgxx
vP4PvydpBE70VNmZkm2WLwzrr13C50faNt0QqwNWWa5BCB7GoZCBSxCOPoTisThr
CvutjZ1gUMcIQj6DLz6S5d1avt6rWeLljn/jf2nS8q/J68gwNHljva694RaLCaiy
pStXQ+DkPh222NYDkHAKk29lvhvuWTOt92MqUP98W/bVpwyX3LUZx5UPRfDHyD6E
250oWVm8jiJg9oOuE9SBAlaknJJFjCwtG2y3IBSahjNgnyH9/gvYQWon7eK0wugw
mA31STbyDlssBU5zJhpKnmlcHhaLkzX42i+3GWOc
-----END CERTIFICATE-----
Generated at Fri Apr 18 07:07:07 2025 by rpki-client