Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/646438-6da2-4c05-9fcd-12c4bd8058aa/1/D1uA5hnCxKS5y2kVB8lYRoc86GI.roa
File: D1uA5hnCxKS5y2kVB8lYRoc86GI.roa (raw, json)
Hash identifier: V5so8t/zYdK63jxWwvBAbmgMoaHna4GtureeK1ZtZQU=
Subject key identifier: 0F:5B:80:E6:19:C2:C4:A4:B9:CB:69:15:07:C9:58:46:87:3C:E8:62
Certificate issuer: /CN=02611b4eaa2e0b37f72cc08ac92961981eabb21f
Certificate serial: 090C1927
Authority key identifier: 02:61:1B:4E:AA:2E:0B:37:F7:2C:C0:8A:C9:29:61:98:1E:AB:B2:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AmEbTqouCzf3LMCKySlhmB6rsh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/646438-6da2-4c05-9fcd-12c4bd8058aa/1/D1uA5hnCxKS5y2kVB8lYRoc86GI.roa
Signing time: Sat 01 Jan 2022 08:58:22 +0000
ROA not before: Sat 01 Jan 2022 08:58:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137
IP address blocks: 193.43.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151787815 (0x90c1927)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02611b4eaa2e0b37f72cc08ac92961981eabb21f
Validity
Not Before: Jan 1 08:58:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f5b80e619c2c4a4b9cb691507c95846873ce862
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:a5:50:45:98:98:9e:70:82:a6:a9:95:3d:30:
a3:42:3a:bb:93:0c:f4:b5:41:0e:a9:b5:3e:0f:d1:
9b:b1:c2:46:b9:c8:fe:3d:5a:d7:a8:1c:79:40:71:
9b:53:39:a6:94:ad:0f:86:13:61:0d:7e:70:9d:a1:
a9:3f:22:6f:80:48:21:4c:4f:e9:f7:ec:5b:d9:d3:
ab:44:90:73:06:ef:56:39:40:ff:23:9d:95:2f:b2:
4d:99:f9:b0:9d:8d:93:66:20:1a:0d:a6:ca:12:5f:
54:2c:a4:fa:4f:1a:2d:9c:05:ad:13:3d:f5:cd:e6:
71:9c:bc:44:70:74:95:87:c0:15:d3:71:8c:12:1f:
b1:25:fd:53:9b:da:19:ff:c8:20:29:74:25:9e:1b:
6d:9f:57:26:de:81:dd:42:19:91:89:c9:84:d6:1c:
69:d1:16:ab:66:10:34:32:18:12:0c:26:7a:a4:c6:
12:31:32:3f:02:c5:b5:a8:da:bd:8b:7c:52:4f:44:
58:e7:6d:82:c0:72:3d:f4:ef:0e:92:25:16:df:89:
a7:9b:14:ec:a9:4c:af:4b:04:3c:1d:55:5e:21:7d:
c6:6c:30:a2:66:e5:76:9e:a4:6a:18:0e:0c:72:d0:
12:a4:4a:5d:8d:29:5e:32:c4:24:dd:76:56:46:f3:
88:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:5B:80:E6:19:C2:C4:A4:B9:CB:69:15:07:C9:58:46:87:3C:E8:62
X509v3 Authority Key Identifier:
keyid:02:61:1B:4E:AA:2E:0B:37:F7:2C:C0:8A:C9:29:61:98:1E:AB:B2:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AmEbTqouCzf3LMCKySlhmB6rsh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/646438-6da2-4c05-9fcd-12c4bd8058aa/1/D1uA5hnCxKS5y2kVB8lYRoc86GI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/646438-6da2-4c05-9fcd-12c4bd8058aa/1/AmEbTqouCzf3LMCKySlhmB6rsh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.109.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:87:42:c2:a9:83:1b:95:95:e7:53:77:d6:2e:58:53:5c:08:
9a:b3:49:01:b5:35:f1:a0:14:57:ed:e3:fa:d8:85:bd:61:19:
61:2e:36:3d:dc:87:35:09:a9:d7:19:07:d0:6d:57:e2:c5:5a:
fb:e4:45:53:e4:35:9f:8e:b1:65:41:1e:0a:85:52:83:ef:4b:
53:4f:4c:99:0a:5c:64:73:f5:1f:6c:f5:25:01:4d:19:3f:5f:
8f:46:18:d6:bb:0f:21:54:8c:6d:6e:66:99:9a:2f:f3:df:19:
d5:e3:3d:2e:fa:6f:32:c2:15:68:d6:e7:59:46:40:7d:44:ba:
4b:0c:6f:45:59:d9:37:30:69:69:39:89:be:39:1f:15:4b:ff:
0c:1c:ad:34:a2:03:4c:2f:2f:6a:58:2a:2d:7f:17:fa:05:fe:
69:56:b8:48:6e:5b:64:af:c7:27:11:75:53:2f:b4:a2:4f:9d:
c6:a9:af:b4:0e:36:a1:a7:00:b8:73:e6:b2:c4:0e:e5:01:44:
65:ec:87:66:68:ed:ee:06:dc:95:cd:9e:bd:f5:66:ca:6c:ef:
9b:d1:ea:be:ee:10:0f:6f:f9:df:5e:cb:f0:bc:c5:db:de:f4:
47:47:1e:f0:62:f8:0c:e3:f2:37:8a:1a:8a:fd:14:9d:b9:12:
93:20:8f:53
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECQwZJzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
MjYxMWI0ZWFhMmUwYjM3ZjcyY2MwOGFjOTI5NjE5ODFlYWJiMjFmMB4XDTIyMDEw
MTA4NTgyMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGY1YjgwZTYxOWMy
YzRhNGI5Y2I2OTE1MDdjOTU4NDY4NzNjZTg2MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPGlUEWYmJ5wgqaplT0wo0I6u5MM9LVBDqm1Pg/Rm7HCRrnI
/j1a16gceUBxm1M5ppStD4YTYQ1+cJ2hqT8ib4BIIUxP6ffsW9nTq0SQcwbvVjlA
/yOdlS+yTZn5sJ2Nk2YgGg2myhJfVCyk+k8aLZwFrRM99c3mcZy8RHB0lYfAFdNx
jBIfsSX9U5vaGf/IICl0JZ4bbZ9XJt6B3UIZkYnJhNYcadEWq2YQNDIYEgwmeqTG
EjEyPwLFtajavYt8Uk9EWOdtgsByPfTvDpIlFt+Jp5sU7KlMr0sEPB1VXiF9xmww
ombldp6kahgODHLQEqRKXY0pXjLEJN12VkbziCcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQPW4DmGcLEpLnLaRUHyVhGhzzoYjAfBgNVHSMEGDAWgBQCYRtOqi4LN/cs
wIrJKWGYHquyHzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0FtRWJUcW91Q3pmM0xNQ0t5U2xobUI2cnNoOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGQvNjQ2NDM4LTZkYTItNGMwNS05ZmNkLTEyYzRiZDgwNThhYS8x
L0QxdUE1aG5DeEtTNXkya1ZCOGxZUm9jODZHSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGQv
NjQ2NDM4LTZkYTItNGMwNS05ZmNkLTEyYzRiZDgwNThhYS8xL0FtRWJUcW91Q3pm
M0xNQ0t5U2xobUI2cnNoOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMErbTANBgkqhkiG9w0BAQsFAAOC
AQEAHYdCwqmDG5WV51N31i5YU1wImrNJAbU18aAUV+3j+tiFvWEZYS42PdyHNQmp
1xkH0G1X4sVa++RFU+Q1n46xZUEeCoVSg+9LU09MmQpcZHP1H2z1JQFNGT9fj0YY
1rsPIVSMbW5mmZov898Z1eM9LvpvMsIVaNbnWUZAfUS6SwxvRVnZNzBpaTmJvjkf
FUv/DBytNKIDTC8valgqLX8X+gX+aVa4SG5bZK/HJxF1Uy+0ok+dxqmvtA42oacA
uHPmssQO5QFEZeyHZmjt7gbclc2evfVmymzvm9Hqvu4QD2/5317L8LzF2970R0ce
8GL4DOPyN4oaiv0UnbkSkyCPUw==
-----END CERTIFICATE-----
Generated at Fri Mar 14 12:03:46 2025 by rpki-client