Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/9VqHqTsFOHs0kgACj33hK4j-knQ.roa
File: 9VqHqTsFOHs0kgACj33hK4j-knQ.roa (raw, json)
Hash identifier: gmYzN5Oyji7+20M3J2XwWhMkTLT+ja8FAA4UBnc+RnM=
Subject key identifier: F5:5A:87:A9:3B:05:38:7B:34:92:00:02:8F:7D:E1:2B:88:FE:92:74
Certificate issuer: /CN=4986c73994d02d91fc97d916e9809a6d981e6b17
Certificate serial: 0184092CBD47A3BB069669ED3B9B179A3092
Authority key identifier: 49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/9VqHqTsFOHs0kgACj33hK4j-knQ.roa
Signing time: Mon 24 Oct 2022 08:47:17 +0000
ROA not before: Mon 24 Oct 2022 08:47:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 397373
IP address blocks: 193.135.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:09:2c:bd:47:a3:bb:06:96:69:ed:3b:9b:17:9a:30:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4986c73994d02d91fc97d916e9809a6d981e6b17
Validity
Not Before: Oct 24 08:47:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f55a87a93b05387b349200028f7de12b88fe9274
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:02:20:a8:3f:8d:27:66:7a:a1:83:7e:0d:b6:
2f:7b:33:20:e6:b0:23:8a:70:2e:7e:36:30:bd:5d:
9a:80:f5:c5:02:d6:b6:f3:0f:ff:09:70:08:3f:48:
6d:20:c0:97:69:17:1b:2b:d8:34:ff:d4:2f:3c:92:
79:9b:9e:87:1c:10:76:2d:cd:33:5c:c7:75:8d:a4:
72:a7:42:fe:d8:1f:8e:3e:72:ac:f1:aa:e5:80:3c:
52:3f:14:41:d7:10:11:4f:b8:6d:89:5d:0e:a3:b3:
27:38:12:ff:52:b3:51:41:e8:0d:af:52:55:f8:c9:
5f:a7:1e:6f:5d:b3:5d:4c:71:ec:51:c5:e6:e3:64:
2b:4a:e1:e5:41:85:6d:1b:89:db:df:9d:11:f9:0e:
f1:2d:0d:b3:cb:bc:aa:71:b1:6f:bb:78:67:89:f6:
dc:29:3d:5a:17:80:9c:9e:d4:77:0e:09:f0:38:af:
ef:87:52:48:e5:7b:4b:c7:26:4a:8b:e2:fa:74:cc:
46:11:f4:a5:af:f3:1c:40:12:6f:b3:5d:21:9f:66:
69:a7:2c:4a:77:76:ec:50:c9:17:55:4f:72:47:cd:
98:cf:53:5c:32:cd:f4:c9:42:77:73:ba:d6:64:61:
1d:09:12:aa:64:dc:bb:5a:04:03:b3:57:3b:95:a0:
d9:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:5A:87:A9:3B:05:38:7B:34:92:00:02:8F:7D:E1:2B:88:FE:92:74
X509v3 Authority Key Identifier:
keyid:49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/9VqHqTsFOHs0kgACj33hK4j-knQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.135.174.0/24
Signature Algorithm: sha256WithRSAEncryption
76:63:50:36:91:70:7e:59:1e:46:eb:6b:cc:60:71:c8:0f:58:
a4:97:d4:b3:f4:e0:fb:17:eb:81:21:2f:4b:eb:8d:a6:fc:69:
20:68:a1:0a:66:39:27:20:66:44:4e:c6:e3:88:8b:89:68:dc:
51:10:21:6a:00:d7:91:44:f0:07:dd:e3:86:6b:91:95:d0:93:
3c:d0:ef:c3:a6:69:af:e0:a8:0b:d8:37:86:98:6c:b1:d6:c0:
0c:e1:65:ce:61:99:61:5b:cf:b7:e8:a6:c4:fc:01:62:74:e9:
81:ec:1a:b5:58:a0:88:67:cd:78:06:5f:e1:16:8b:7f:10:eb:
3f:8a:4e:38:29:24:e5:16:2c:5b:a5:3b:df:c1:cd:dd:4c:47:
38:d4:22:22:18:c7:8a:d3:28:7e:b2:17:93:5f:a3:47:ac:1c:
e1:23:39:1b:80:56:aa:35:1f:27:7c:ee:26:f7:b4:3c:21:52:
30:1f:2a:ec:58:63:f8:c0:8d:99:13:90:49:5c:9f:8b:76:1b:
a1:bc:ef:16:18:51:5f:f6:2d:50:56:54:7b:e6:4f:4e:5c:ab:
2b:d1:2f:e2:27:b0:33:7f:f1:e4:a1:71:d1:0b:38:e7:96:4d:
f6:f7:a5:e1:a0:e6:52:a1:e1:d8:c8:5c:8e:7d:3c:f9:1d:0d:
23:9a:73:b3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYQJLL1Ho7sGlmntO5sXmjCSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ODZjNzM5OTRkMDJkOTFmYzk3ZDkxNmU5ODA5YTZkOTgx
ZTZiMTcwHhcNMjIxMDI0MDg0NzE3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNTVhODdhOTNiMDUzODdiMzQ5MjAwMDI4ZjdkZTEyYjg4ZmU5Mjc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjwIgqD+NJ2Z6oYN+DbYvezMg5rAj
inAufjYwvV2agPXFAta28w//CXAIP0htIMCXaRcbK9g0/9QvPJJ5m56HHBB2Lc0z
XMd1jaRyp0L+2B+OPnKs8arlgDxSPxRB1xART7htiV0Oo7MnOBL/UrNRQegNr1JV
+Mlfpx5vXbNdTHHsUcXm42QrSuHlQYVtG4nb350R+Q7xLQ2zy7yqcbFvu3hnifbc
KT1aF4CcntR3DgnwOK/vh1JI5XtLxyZKi+L6dMxGEfSlr/McQBJvs10hn2ZppyxK
d3bsUMkXVU9yR82Yz1NcMs30yUJ3c7rWZGEdCRKqZNy7WgQDs1c7laDZ6QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPVah6k7BTh7NJIAAo994SuI/pJ0MB8GA1UdIwQY
MBaAFEmGxzmU0C2R/JfZFumAmm2YHmsXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU1liSE9aVFFMWkg4bDlrVzZZQ2FiWmdlYXhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS80NTdlMTMtNDFkMy00MGVmLWI1NzIt
OWU4OTVkMGVmOGQyLzEvOVZxSHFUc0ZPSHMwa2dBQ2ozM2hLNGota25RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS80NTdlMTMtNDFkMy00MGVmLWI1NzItOWU4OTVkMGVmOGQy
LzEvU1liSE9aVFFMWkg4bDlrVzZZQ2FiWmdlYXhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwYeuMA0G
CSqGSIb3DQEBCwUAA4IBAQB2Y1A2kXB+WR5G62vMYHHID1ikl9Sz9OD7F+uBIS9L
642m/GkgaKEKZjknIGZETsbjiIuJaNxRECFqANeRRPAH3eOGa5GV0JM80O/Dpmmv
4KgL2DeGmGyx1sAM4WXOYZlhW8+36KbE/AFidOmB7Bq1WKCIZ814Bl/hFot/EOs/
ik44KSTlFixbpTvfwc3dTEc41CIiGMeK0yh+sheTX6NHrBzhIzkbgFaqNR8nfO4m
97Q8IVIwHyrsWGP4wI2ZE5BJXJ+LdhuhvO8WGFFf9i1QVlR75k9OXKsr0S/iJ7Az
f/HkoXHRCzjnlk3296XhoOZSoeHYyFyOfTz5HQ0jmnOz
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:00:37 2025 by rpki-client