Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/18e882-97d7-41dd-9efb-7d4fa4cdc7a2/1/o2PEB4c5M4WSXBmf8c3yM7B4kxo.roa
File: o2PEB4c5M4WSXBmf8c3yM7B4kxo.roa (raw, json)
Hash identifier: T3var8yc4PKbP96U/0/uowBBDTegRx1O4BRn33B9GMo=
Subject key identifier: A3:63:C4:07:87:39:33:85:92:5C:19:9F:F1:CD:F2:33:B0:78:93:1A
Certificate issuer: /CN=785ef4bd2976bf292ab73304907f510cd00cc8a2
Certificate serial: B0FC
Authority key identifier: 78:5E:F4:BD:29:76:BF:29:2A:B7:33:04:90:7F:51:0C:D0:0C:C8:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eF70vSl2vykqtzMEkH9RDNAMyKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/18e882-97d7-41dd-9efb-7d4fa4cdc7a2/1/o2PEB4c5M4WSXBmf8c3yM7B4kxo.roa
Signing time: Tue 26 Apr 2022 15:11:33 +0000
ROA not before: Tue 26 Apr 2022 15:11:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 27363
IP address blocks: 193.134.162.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45308 (0xb0fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=785ef4bd2976bf292ab73304907f510cd00cc8a2
Validity
Not Before: Apr 26 15:11:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a363c40787393385925c199ff1cdf233b078931a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:53:cb:a9:da:a1:1d:12:31:52:3e:72:ca:0d:
84:ba:39:79:6a:cd:36:d2:2c:d0:5e:8a:85:8a:3c:
18:12:9d:e9:7d:59:d6:f1:14:59:60:05:19:27:cd:
4f:d8:c2:c1:63:27:f6:67:bf:4f:ba:cd:53:2f:6a:
5c:5c:64:a2:d5:92:9a:d6:24:54:98:5e:f1:f7:b5:
8e:2e:96:ff:99:87:8f:1f:bc:46:af:58:d7:9d:a9:
3d:36:e0:1d:4e:df:16:98:73:fa:e8:00:eb:cd:3f:
f0:7b:1c:96:d5:7d:8e:1a:9a:72:ad:31:9e:e7:e7:
07:79:91:1b:2d:ce:e0:47:d5:92:d9:10:ea:ff:a8:
f7:b1:e2:9a:b0:83:19:71:ab:7d:4c:18:cd:8c:94:
cc:79:73:f6:2d:a6:24:8b:9f:ec:11:f5:25:a9:63:
01:12:8f:1a:b0:3d:41:dc:47:a8:8f:09:4f:a1:a8:
86:ba:69:1f:91:14:e6:d6:22:6a:b7:33:bc:8d:5f:
a0:c5:37:73:3d:df:32:fb:23:bc:18:c1:2e:4a:d6:
74:fe:06:b7:77:2e:9c:8a:76:db:21:82:1c:19:f4:
f5:8d:4f:2b:e5:fb:2c:c9:b8:b1:f0:03:b1:64:c0:
5a:08:5b:0f:03:4b:1b:38:14:89:84:0c:87:b2:f6:
49:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:63:C4:07:87:39:33:85:92:5C:19:9F:F1:CD:F2:33:B0:78:93:1A
X509v3 Authority Key Identifier:
keyid:78:5E:F4:BD:29:76:BF:29:2A:B7:33:04:90:7F:51:0C:D0:0C:C8:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eF70vSl2vykqtzMEkH9RDNAMyKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/18e882-97d7-41dd-9efb-7d4fa4cdc7a2/1/o2PEB4c5M4WSXBmf8c3yM7B4kxo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/18e882-97d7-41dd-9efb-7d4fa4cdc7a2/1/eF70vSl2vykqtzMEkH9RDNAMyKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.134.162.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:5e:a9:d5:df:ab:40:4b:6f:3e:99:a2:c6:5c:48:92:6d:fc:
10:dd:d4:81:e5:47:0e:76:02:6e:4b:8a:af:e7:a1:dc:f5:f9:
d2:6b:85:51:ab:30:c3:b1:49:a6:26:cd:3e:23:88:06:fc:6d:
b1:1b:36:93:9e:53:a7:21:85:c6:c3:a2:79:2c:74:56:38:62:
b2:02:8e:ae:3c:1a:4a:ad:65:40:a5:a9:da:3e:cb:fb:18:e6:
7d:6d:e9:de:ee:e3:e1:c9:d3:92:23:a1:00:e8:3d:f0:cb:89:
69:ad:53:08:d6:9e:f9:9e:dc:44:91:ef:74:3d:19:2b:1d:62:
85:76:37:ff:a7:7f:1a:26:fa:95:24:50:39:58:2f:54:cd:9f:
c1:e2:7b:b1:1c:ac:89:6a:e0:2c:df:6f:d3:38:e4:90:af:27:
5a:c6:45:84:85:79:53:3e:4d:6f:c2:ec:bd:e1:b8:d3:de:19:
21:71:f0:ec:b8:6d:74:29:42:48:97:61:db:e2:5a:6f:cc:28:
c7:eb:26:47:76:f3:1e:0b:54:4d:76:88:68:7e:3f:dd:a2:b2:
aa:0c:79:94:b9:00:63:11:58:c0:34:c6:90:c6:dd:99:f1:ae:
2e:5b:df:c8:97:b1:93:35:d0:58:51:56:45:a4:77:5d:b7:fd:
89:b7:50:51
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDALD8MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDc4
NWVmNGJkMjk3NmJmMjkyYWI3MzMwNDkwN2Y1MTBjZDAwY2M4YTIwHhcNMjIwNDI2
MTUxMTMzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhhMzYzYzQwNzg3Mzkz
Mzg1OTI1YzE5OWZmMWNkZjIzM2IwNzg5MzFhMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA6FPLqdqhHRIxUj5yyg2Eujl5as020izQXoqFijwYEp3pfVnW
8RRZYAUZJ81P2MLBYyf2Z79Pus1TL2pcXGSi1ZKa1iRUmF7x97WOLpb/mYePH7xG
r1jXnak9NuAdTt8WmHP66ADrzT/wexyW1X2OGppyrTGe5+cHeZEbLc7gR9WS2RDq
/6j3seKasIMZcat9TBjNjJTMeXP2LaYki5/sEfUlqWMBEo8asD1B3EeojwlPoaiG
umkfkRTm1iJqtzO8jV+gxTdzPd8y+yO8GMEuStZ0/ga3dy6cinbbIYIcGfT1jU8r
5fssybix8AOxZMBaCFsPA0sbOBSJhAyHsvZJ0wIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFKNjxAeHOTOFklwZn/HN8jOweJMaMB8GA1UdIwQYMBaAFHhe9L0pdr8pKrcz
BJB/UQzQDMiiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
ZUY3MHZTbDJ2eWtxdHpNRWtIOVJETkFNeUtJLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9lNC8xOGU4ODItOTdkNy00MWRkLTllZmItN2Q0ZmE0Y2RjN2EyLzEv
bzJQRUI0YzVNNFdTWEJtZjhjM3lNN0I0a3hvLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC8x
OGU4ODItOTdkNy00MWRkLTllZmItN2Q0ZmE0Y2RjN2EyLzEvZUY3MHZTbDJ2eWtx
dHpNRWtIOVJETkFNeUtJLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwYaiMA0GCSqGSIb3DQEBCwUAA4IB
AQBsXqnV36tAS28+maLGXEiSbfwQ3dSB5UcOdgJuS4qv56Hc9fnSa4VRqzDDsUmm
Js0+I4gG/G2xGzaTnlOnIYXGw6J5LHRWOGKyAo6uPBpKrWVApanaPsv7GOZ9bene
7uPhydOSI6EA6D3wy4lprVMI1p75ntxEke90PRkrHWKFdjf/p38aJvqVJFA5WC9U
zZ/B4nuxHKyJauAs32/TOOSQrydaxkWEhXlTPk1vwuy94bjT3hkhcfDsuG10KUJI
l2Hb4lpvzCjH6yZHdvMeC1RNdohofj/dorKqDHmUuQBjEVjANMaQxt2Z8a4uW9/I
l7GTNdBYUVZFpHddt/2Jt1BR
-----END CERTIFICATE-----
Generated at Sun Apr 20 12:11:02 2025 by rpki-client