Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/f3891f-4dc7-4f4c-b519-6107eb7c48d2/1/SDQj-J5WCDdhyIoQNsOowf8lBUA.roa
File: SDQj-J5WCDdhyIoQNsOowf8lBUA.roa (raw, json)
Hash identifier: KCiWjjbNIUkxsAru7dEbCWSKv/ing5UK+kxTTe83uPo=
Subject key identifier: 48:34:23:F8:9E:56:08:37:61:C8:8A:10:36:C3:A8:C1:FF:25:05:40
Certificate issuer: /CN=bc36b4cae090d0f49c5483f7b2f93fb92fd0ff87
Certificate serial: 02D0141C
Authority key identifier: BC:36:B4:CA:E0:90:D0:F4:9C:54:83:F7:B2:F9:3F:B9:2F:D0:FF:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vDa0yuCQ0PScVIP3svk_uS_Q_4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/f3891f-4dc7-4f4c-b519-6107eb7c48d2/1/SDQj-J5WCDdhyIoQNsOowf8lBUA.roa
Signing time: Sat 01 Jan 2022 11:02:09 +0000
ROA not before: Sat 01 Jan 2022 11:02:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60631
IP address blocks: 185.204.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47191068 (0x2d0141c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc36b4cae090d0f49c5483f7b2f93fb92fd0ff87
Validity
Not Before: Jan 1 11:02:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=483423f89e56083761c88a1036c3a8c1ff250540
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:79:e5:06:fe:a1:98:fc:3c:e8:dd:38:ad:96:
9d:67:df:09:78:5b:09:6b:6b:7d:c5:b7:5a:36:ae:
f1:9b:76:e4:13:4f:5f:88:50:64:2e:73:54:1f:00:
40:1f:e5:85:7d:7e:2b:b8:d8:45:cd:d7:d6:ec:0f:
56:2a:23:94:28:b0:d0:9a:9e:ac:59:bb:b5:07:89:
07:77:0f:82:8c:de:54:05:ef:a3:fe:5c:79:fb:75:
4f:41:10:6d:16:44:59:38:6e:89:02:30:41:a9:6d:
3b:92:9c:96:0a:17:dd:4c:84:9c:92:cf:a3:6e:23:
1f:82:a5:0e:34:14:cd:41:4c:69:e5:ab:bd:b5:51:
52:3e:d6:41:ce:78:90:3e:6e:93:d0:83:de:dc:25:
7d:e0:03:33:15:37:db:04:64:10:71:85:63:1b:ba:
51:31:97:5a:90:75:46:63:f6:60:14:25:e3:58:2e:
dc:9f:c2:9f:b3:52:b8:f3:69:31:1f:61:5d:f4:34:
51:9a:3b:74:ba:3b:c7:89:5d:56:96:8e:08:9f:9e:
23:ad:d7:46:ff:0a:31:7e:86:fd:17:79:58:b4:41:
a4:52:93:45:ed:69:e3:7e:b8:8a:a5:8b:d6:45:05:
50:bc:56:94:53:13:da:8d:c7:42:c7:b5:20:5a:7e:
3f:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:34:23:F8:9E:56:08:37:61:C8:8A:10:36:C3:A8:C1:FF:25:05:40
X509v3 Authority Key Identifier:
keyid:BC:36:B4:CA:E0:90:D0:F4:9C:54:83:F7:B2:F9:3F:B9:2F:D0:FF:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vDa0yuCQ0PScVIP3svk_uS_Q_4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/f3891f-4dc7-4f4c-b519-6107eb7c48d2/1/SDQj-J5WCDdhyIoQNsOowf8lBUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/f3891f-4dc7-4f4c-b519-6107eb7c48d2/1/vDa0yuCQ0PScVIP3svk_uS_Q_4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.197.0/24
Signature Algorithm: sha256WithRSAEncryption
91:0a:c3:7f:42:78:ef:90:9c:7d:86:6f:fb:ed:41:fd:d7:2b:
36:98:d2:0f:42:5c:a8:0a:a2:c8:7f:c1:50:e8:c1:10:57:1f:
4d:82:be:bb:da:dc:82:59:7d:18:eb:62:b6:21:e4:5c:3a:2b:
88:0a:5b:46:11:80:c8:d8:5a:48:68:6d:8a:7e:41:16:1a:2b:
d2:10:84:17:9f:af:20:0d:60:99:67:3e:3f:1a:69:2f:13:a2:
9b:88:1c:65:15:18:bb:03:1b:91:91:99:ee:10:e1:a9:1e:7f:
01:95:cf:17:2a:48:d0:df:21:47:73:67:66:ee:35:cd:8e:c2:
ec:0e:96:7e:4c:70:4e:d8:f2:aa:3e:9b:dd:95:af:c9:f4:90:
b1:4d:85:de:7f:ea:41:2a:a4:d0:42:44:ee:5b:41:e5:ea:4e:
3f:69:a6:71:74:86:08:22:4b:ba:70:f4:31:98:f6:72:c2:75:
04:ec:c4:dc:04:6d:2d:db:81:26:91:38:57:f3:e6:cf:bc:e2:
3e:61:ab:d3:40:88:f6:df:ff:8d:e8:8b:98:a6:38:24:9a:cc:
17:f9:44:d0:b5:07:84:27:f5:4c:0c:21:25:75:43:70:df:f2:
1e:cc:67:01:3d:60:b4:3a:a7:fc:75:0c:a1:d1:8b:87:38:cb:
1a:69:a7:d9
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAtAUHDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
YzM2YjRjYWUwOTBkMGY0OWM1NDgzZjdiMmY5M2ZiOTJmZDBmZjg3MB4XDTIyMDEw
MTExMDIwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDgzNDIzZjg5ZTU2
MDgzNzYxYzg4YTEwMzZjM2E4YzFmZjI1MDU0MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIZ55Qb+oZj8POjdOK2WnWffCXhbCWtrfcW3Wjau8Zt25BNP
X4hQZC5zVB8AQB/lhX1+K7jYRc3X1uwPViojlCiw0JqerFm7tQeJB3cPgozeVAXv
o/5ceft1T0EQbRZEWThuiQIwQaltO5KclgoX3UyEnJLPo24jH4KlDjQUzUFMaeWr
vbVRUj7WQc54kD5uk9CD3twlfeADMxU32wRkEHGFYxu6UTGXWpB1RmP2YBQl41gu
3J/Cn7NSuPNpMR9hXfQ0UZo7dLo7x4ldVpaOCJ+eI63XRv8KMX6G/Rd5WLRBpFKT
Re1p4364iqWL1kUFULxWlFMT2o3HQse1IFp+PzMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRINCP4nlYIN2HIihA2w6jB/yUFQDAfBgNVHSMEGDAWgBS8NrTK4JDQ9JxU
g/ey+T+5L9D/hzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ZEYTB5dUNRMFBTY1ZJUDNzdmtfdVNfUV80Yy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTkvZjM4OTFmLTRkYzctNGY0Yy1iNTE5LTYxMDdlYjdjNDhkMi8x
L1NEUWotSjVXQ0RkaHlJb1FOc09vd2Y4bEJVQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTkv
ZjM4OTFmLTRkYzctNGY0Yy1iNTE5LTYxMDdlYjdjNDhkMi8xL3ZEYTB5dUNRMFBT
Y1ZJUDNzdmtfdVNfUV80Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnMxTANBgkqhkiG9w0BAQsFAAOC
AQEAkQrDf0J475CcfYZv++1B/dcrNpjSD0JcqAqiyH/BUOjBEFcfTYK+u9rcgll9
GOtitiHkXDoriApbRhGAyNhaSGhtin5BFhor0hCEF5+vIA1gmWc+PxppLxOim4gc
ZRUYuwMbkZGZ7hDhqR5/AZXPFypI0N8hR3NnZu41zY7C7A6WfkxwTtjyqj6b3ZWv
yfSQsU2F3n/qQSqk0EJE7ltB5epOP2mmcXSGCCJLunD0MZj2csJ1BOzE3ARtLduB
JpE4V/Pmz7ziPmGr00CI9t//jeiLmKY4JJrMF/lE0LUHhCf1TAwhJXVDcN/yHsxn
AT1gtDqn/HUModGLhzjLGmmn2Q==
-----END CERTIFICATE-----
Generated at Sun Apr 20 00:19:24 2025 by rpki-client