Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/5b4e13-b3dd-4d8a-8e71-cae6c725d92f/1/00xUg9wnYVG6E7U0MAh0zDvt7Sw.roa
File: 00xUg9wnYVG6E7U0MAh0zDvt7Sw.roa (raw, json)
Hash identifier: CWMWUvSmJS7palNF/K3lWG0HHXvrf8Z2/L7W32PRbT4=
Subject key identifier: D3:4C:54:83:DC:27:61:51:BA:13:B5:34:30:08:74:CC:3B:ED:ED:2C
Certificate issuer: /CN=bde6ac28f954e13dcb7db69bc222b785b4d75f2c
Certificate serial: 017DE8
Authority key identifier: BD:E6:AC:28:F9:54:E1:3D:CB:7D:B6:9B:C2:22:B7:85:B4:D7:5F:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/veasKPlU4T3LfbabwiK3hbTXXyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/5b4e13-b3dd-4d8a-8e71-cae6c725d92f/1/00xUg9wnYVG6E7U0MAh0zDvt7Sw.roa
Signing time: Tue 26 Apr 2022 15:12:44 +0000
ROA not before: Tue 26 Apr 2022 15:12:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25275
IP address blocks: 195.234.224.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97768 (0x17de8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bde6ac28f954e13dcb7db69bc222b785b4d75f2c
Validity
Not Before: Apr 26 15:12:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d34c5483dc276151ba13b534300874cc3beded2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:09:eb:2b:f7:47:a6:fa:b4:ba:f1:d9:68:9f:
d3:11:5d:39:c2:e7:78:17:8e:0a:fe:68:61:70:ae:
45:be:b7:38:2b:08:17:1e:72:a4:1b:2b:58:c3:f9:
93:66:c6:ce:33:de:30:2f:07:33:a4:d7:fe:64:28:
77:6e:9f:16:b6:6f:a9:01:b8:9d:94:e8:25:9c:9f:
f4:3b:3b:ec:9d:cd:41:2b:e9:89:a1:61:5f:df:05:
e7:00:a9:ec:43:c9:9f:8f:d1:76:0a:02:27:41:27:
4d:1f:dc:59:37:4f:70:b3:78:bc:75:62:a4:00:a0:
8e:34:44:3b:fa:de:59:07:49:c8:16:86:6b:c3:6c:
d7:49:d6:2d:56:9a:6d:e0:e9:77:5b:f4:98:59:aa:
56:48:b0:79:dc:78:78:e0:4c:0b:01:71:c5:4b:bd:
9b:cd:62:fd:c6:57:86:c6:48:22:ee:49:4e:6f:30:
ef:14:e2:6c:df:1c:52:a2:dc:f3:ee:c0:d4:a8:11:
d4:13:92:38:1c:8c:a1:19:ed:20:d6:85:04:bc:00:
95:b8:a9:bf:dd:0a:16:86:af:8e:51:70:ba:f1:c0:
41:5c:83:c0:13:b0:59:57:c7:12:04:fc:eb:f9:79:
4d:15:41:2e:71:52:5b:9f:38:c2:26:ff:0a:9c:6d:
da:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:4C:54:83:DC:27:61:51:BA:13:B5:34:30:08:74:CC:3B:ED:ED:2C
X509v3 Authority Key Identifier:
keyid:BD:E6:AC:28:F9:54:E1:3D:CB:7D:B6:9B:C2:22:B7:85:B4:D7:5F:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/veasKPlU4T3LfbabwiK3hbTXXyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/5b4e13-b3dd-4d8a-8e71-cae6c725d92f/1/00xUg9wnYVG6E7U0MAh0zDvt7Sw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/5b4e13-b3dd-4d8a-8e71-cae6c725d92f/1/veasKPlU4T3LfbabwiK3hbTXXyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.234.224.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:7b:81:30:c7:38:8a:e6:5c:04:3f:48:b1:eb:3e:11:b0:66:
f4:3d:f2:98:ca:78:16:3f:62:72:a6:1f:08:a8:9d:07:57:bd:
9c:f3:29:6c:a1:a3:1e:0c:c7:6c:31:25:25:d0:8f:34:a7:f1:
a5:d9:ce:bd:e9:0e:ea:61:e9:79:e2:4b:e5:b3:19:3a:ce:41:
d2:06:22:f5:d5:13:e1:88:b6:73:1c:9a:f2:a9:db:10:ee:ae:
6f:0b:f2:16:fb:f5:56:5b:34:b1:0c:cb:b6:17:55:b3:dd:a5:
92:e5:99:96:36:6a:b9:00:c8:35:7f:9b:a2:9c:f8:4b:9e:66:
d0:35:b0:03:49:84:4e:36:19:dc:73:83:bb:97:15:ec:de:c5:
74:e9:72:31:33:53:83:80:86:77:60:bb:43:77:57:34:4d:25:
b7:58:24:6b:82:e7:33:15:5f:80:ba:59:46:21:ee:05:cf:98:
43:59:57:93:c4:25:c8:83:24:11:23:ff:bc:c4:66:21:7a:b0:
7d:98:06:b9:62:63:b1:02:51:22:16:c8:fc:4c:96:87:8d:c5:
49:7e:73:7e:cc:39:7d:27:df:e0:50:cc:bd:1c:4a:a8:ab:8e:
d7:11:e3:a4:a6:a8:f8:e8:bb:ef:db:0d:4c:66:aa:d7:89:2e:
20:75:59:e7
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAX3oMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGJk
ZTZhYzI4Zjk1NGUxM2RjYjdkYjY5YmMyMjJiNzg1YjRkNzVmMmMwHhcNMjIwNDI2
MTUxMjQ0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhkMzRjNTQ4M2RjMjc2
MTUxYmExM2I1MzQzMDA4NzRjYzNiZWRlZDJjMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAtwnrK/dHpvq0uvHZaJ/TEV05wud4F44K/mhhcK5Fvrc4KwgX
HnKkGytYw/mTZsbOM94wLwczpNf+ZCh3bp8Wtm+pAbidlOglnJ/0Ozvsnc1BK+mJ
oWFf3wXnAKnsQ8mfj9F2CgInQSdNH9xZN09ws3i8dWKkAKCONEQ7+t5ZB0nIFoZr
w2zXSdYtVppt4Ol3W/SYWapWSLB53Hh44EwLAXHFS72bzWL9xleGxkgi7klObzDv
FOJs3xxSotzz7sDUqBHUE5I4HIyhGe0g1oUEvACVuKm/3QoWhq+OUXC68cBBXIPA
E7BZV8cSBPzr+XlNFUEucVJbnzjCJv8KnG3aVwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFNNMVIPcJ2FRuhO1NDAIdMw77e0sMB8GA1UdIwQYMBaAFL3mrCj5VOE9y322
m8Iit4W0118sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
dmVhc0tQbFU0VDNMZmJhYndpSzNoYlRYWHl3LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9lMy81YjRlMTMtYjNkZC00ZDhhLThlNzEtY2FlNmM3MjVkOTJmLzEv
MDB4VWc5d25ZVkc2RTdVME1BaDB6RHZ0N1N3LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy81
YjRlMTMtYjNkZC00ZDhhLThlNzEtY2FlNmM3MjVkOTJmLzEvdmVhc0tQbFU0VDNM
ZmJhYndpSzNoYlRYWHl3LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCw+rgMA0GCSqGSIb3DQEBCwUAA4IB
AQCce4EwxziK5lwEP0ix6z4RsGb0PfKYyngWP2Jyph8IqJ0HV72c8ylsoaMeDMds
MSUl0I80p/Gl2c696Q7qYel54kvlsxk6zkHSBiL11RPhiLZzHJryqdsQ7q5vC/IW
+/VWWzSxDMu2F1Wz3aWS5ZmWNmq5AMg1f5uinPhLnmbQNbADSYRONhncc4O7lxXs
3sV06XIxM1ODgIZ3YLtDd1c0TSW3WCRrguczFV+AullGIe4Fz5hDWVeTxCXIgyQR
I/+8xGYherB9mAa5YmOxAlEiFsj8TJaHjcVJfnN+zDl9J9/gUMy9HEqoq47XEeOk
pqj46Lvv2w1MZqrXiS4gdVnn
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:19:42 2025 by rpki-client