Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/I2KNs7oVhdaZQwwIVUMkqnfj2I8.roa
File: I2KNs7oVhdaZQwwIVUMkqnfj2I8.roa (raw, json)
Hash identifier: L49hO4tmNq1aAIsnBRdgZa6IWJZixVDXivmBdafIz+M=
Subject key identifier: 23:62:8D:B3:BA:15:85:D6:99:43:0C:08:55:43:24:AA:77:E3:D8:8F
Certificate issuer: /CN=f5c371f3a34abf1957d1895df8063f4d6207ec02
Certificate serial: 0D12F3EC
Authority key identifier: F5:C3:71:F3:A3:4A:BF:19:57:D1:89:5D:F8:06:3F:4D:62:07:EC:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9cNx86NKvxlX0Yld-AY_TWIH7AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/I2KNs7oVhdaZQwwIVUMkqnfj2I8.roa
Signing time: Wed 11 May 2022 15:55:02 +0000
ROA not before: Wed 11 May 2022 15:55:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202588
IP address blocks: 185.143.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 219345900 (0xd12f3ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5c371f3a34abf1957d1895df8063f4d6207ec02
Validity
Not Before: May 11 15:55:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23628db3ba1585d699430c08554324aa77e3d88f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:17:e2:0a:b4:2a:12:c5:dc:3b:42:d8:40:6a:
4c:83:34:7b:88:98:b2:92:6d:29:b9:e3:4f:9d:38:
91:bc:b6:c6:70:b6:69:80:d8:34:00:d8:db:c5:23:
dc:7e:cd:e6:91:ac:54:86:06:e5:48:9f:71:0b:03:
0f:1a:37:3b:bc:ae:3a:f6:aa:84:02:94:d2:92:3b:
4e:05:32:31:12:a0:6a:69:72:47:3c:70:7e:46:00:
91:75:ea:c9:3d:6d:25:88:3e:85:41:f2:24:62:cb:
21:00:70:59:ad:0b:92:96:8b:ae:77:f0:5f:f9:03:
84:a3:50:29:d8:f1:db:22:0f:c0:84:8e:f7:9a:21:
0a:5f:dd:3d:b8:c2:d8:e7:0f:4e:5c:1c:40:d8:08:
4c:05:10:31:25:61:ba:0f:b8:cc:79:69:4b:c5:c8:
aa:7f:07:f6:27:cf:20:35:ba:81:bc:70:48:05:1b:
ea:8c:20:86:36:60:7a:da:9c:0d:43:5d:2a:ea:06:
b5:42:2b:e7:f2:d5:6c:21:13:d4:fc:28:6d:5f:b6:
4f:a2:62:c7:d5:58:b1:31:86:d1:6f:cc:35:73:c4:
76:6c:da:7d:d5:2d:2d:c1:11:d1:88:29:92:b9:40:
84:38:c9:ce:f5:2e:25:6e:1a:d8:59:b6:bb:1f:8c:
e6:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:62:8D:B3:BA:15:85:D6:99:43:0C:08:55:43:24:AA:77:E3:D8:8F
X509v3 Authority Key Identifier:
keyid:F5:C3:71:F3:A3:4A:BF:19:57:D1:89:5D:F8:06:3F:4D:62:07:EC:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9cNx86NKvxlX0Yld-AY_TWIH7AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/I2KNs7oVhdaZQwwIVUMkqnfj2I8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/9cNx86NKvxlX0Yld-AY_TWIH7AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.234.0/24
Signature Algorithm: sha256WithRSAEncryption
42:15:b9:c3:fb:07:0d:1f:37:17:79:7e:d5:11:80:fe:6c:a3:
cd:b7:f4:2f:b4:dc:2b:5e:51:7e:9c:b8:87:cf:25:cf:3d:e5:
c6:76:7d:8a:63:00:a6:50:d9:24:2a:b3:71:ff:cc:08:5a:e6:
00:db:a5:4f:c9:6f:f4:a1:fe:02:65:5b:00:4c:cd:3c:f6:39:
3c:2e:6a:19:9c:be:fe:09:0f:1a:fd:c8:36:7f:ba:fe:37:76:
c8:60:c2:e2:a0:38:51:4b:e5:bc:22:42:7a:b9:3c:a9:e2:3d:
bb:3a:f1:37:77:d0:c4:65:fc:b2:ca:3b:6c:b4:a6:97:06:f7:
e5:c8:7a:80:a6:cf:f6:e3:f2:aa:65:66:ea:33:21:d1:dd:dc:
76:a7:94:9a:50:86:29:05:44:6d:8d:f9:72:8e:9e:ed:e7:01:
1a:b7:30:8b:f5:84:81:3b:f2:6f:56:17:dc:23:a9:bd:58:8e:
3f:ed:6b:1e:0e:42:f6:53:6b:ab:90:61:76:08:bb:df:ca:19:
f1:18:a6:7d:79:a1:de:46:c7:c8:7d:46:68:57:c8:32:a4:63:
5a:a5:fe:3c:f3:ff:2d:c8:36:77:ce:04:29:08:40:bf:83:a9:
37:c0:7d:1e:1d:fb:84:09:9d:36:ea:d2:f0:78:88:eb:9b:cd:
a7:90:e4:4e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDRLz7DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
NWMzNzFmM2EzNGFiZjE5NTdkMTg5NWRmODA2M2Y0ZDYyMDdlYzAyMB4XDTIyMDUx
MTE1NTUwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjM2MjhkYjNiYTE1
ODVkNjk5NDMwYzA4NTU0MzI0YWE3N2UzZDg4ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ0X4gq0KhLF3DtC2EBqTIM0e4iYspJtKbnjT504kby2xnC2
aYDYNADY28Uj3H7N5pGsVIYG5UifcQsDDxo3O7yuOvaqhAKU0pI7TgUyMRKgamly
RzxwfkYAkXXqyT1tJYg+hUHyJGLLIQBwWa0LkpaLrnfwX/kDhKNQKdjx2yIPwISO
95ohCl/dPbjC2OcPTlwcQNgITAUQMSVhug+4zHlpS8XIqn8H9ifPIDW6gbxwSAUb
6owghjZgetqcDUNdKuoGtUIr5/LVbCET1PwobV+2T6Jix9VYsTGG0W/MNXPEdmza
fdUtLcER0YgpkrlAhDjJzvUuJW4a2Fm2ux+M5osCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQjYo2zuhWF1plDDAhVQySqd+PYjzAfBgNVHSMEGDAWgBT1w3Hzo0q/GVfR
iV34Bj9NYgfsAjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzljTng4Nk5LdnhsWDBZbGQtQVlfVFdJSDdBSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTUvNWIwY2Q5LWUyNzktNDZhYS04MWRhLTFiYjE3YThiMjZmZS8x
L0kyS05zN29WaGRhWlF3d0lWVU1rcW5majJJOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTUv
NWIwY2Q5LWUyNzktNDZhYS04MWRhLTFiYjE3YThiMjZmZS8xLzljTng4Nk5Ldnhs
WDBZbGQtQVlfVFdJSDdBSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALmP6jANBgkqhkiG9w0BAQsFAAOC
AQEAQhW5w/sHDR83F3l+1RGA/myjzbf0L7TcK15Rfpy4h88lzz3lxnZ9imMAplDZ
JCqzcf/MCFrmANulT8lv9KH+AmVbAEzNPPY5PC5qGZy+/gkPGv3INn+6/jd2yGDC
4qA4UUvlvCJCerk8qeI9uzrxN3fQxGX8sso7bLSmlwb35ch6gKbP9uPyqmVm6jMh
0d3cdqeUmlCGKQVEbY35co6e7ecBGrcwi/WEgTvyb1YX3COpvViOP+1rHg5C9lNr
q5Bhdgi738oZ8RimfXmh3kbHyH1GaFfIMqRjWqX+PPP/Lcg2d84EKQhAv4OpN8B9
Hh37hAmdNurS8HiI65vNp5DkTg==
-----END CERTIFICATE-----
Generated at Fri Apr 18 20:22:22 2025 by rpki-client