Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/9fK2R9o4_YkZBv39SL7whPZuaDA.roa
File: 9fK2R9o4_YkZBv39SL7whPZuaDA.roa (raw, json)
Hash identifier: NA4zmjHq2hF33p3YRSxFyZI9Wq6ccIstXU43jhsPFjc=
Subject key identifier: F5:F2:B6:47:DA:38:FD:89:19:06:FD:FD:48:BE:F0:84:F6:6E:68:30
Certificate issuer: /CN=4986c73994d02d91fc97d916e9809a6d981e6b17
Certificate serial: 0188D5257D76F51B50C3674BC3793A8EBB6A
Authority key identifier: 49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/9fK2R9o4_YkZBv39SL7whPZuaDA.roa
Signing time: Mon 19 Jun 2023 19:33:03 +0000
ROA not before: Mon 19 Jun 2023 19:33:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 193.135.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d5:25:7d:76:f5:1b:50:c3:67:4b:c3:79:3a:8e:bb:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4986c73994d02d91fc97d916e9809a6d981e6b17
Validity
Not Before: Jun 19 19:33:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f5f2b647da38fd891906fdfd48bef084f66e6830
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:e6:da:fe:1d:15:4b:c7:7a:f4:7b:72:59:73:
c9:27:1e:78:06:9a:cd:22:c2:ea:05:78:62:04:ed:
3b:51:1d:05:b2:3b:bc:a5:04:a0:e9:60:77:14:44:
f3:c0:0e:e1:d2:93:01:a1:f2:d2:bb:95:e9:71:73:
2a:a1:54:47:76:32:13:62:a1:8e:77:40:47:d2:a6:
d4:9c:97:02:a3:69:50:5c:ee:61:b2:1b:23:f9:d4:
0f:27:fd:42:96:57:fc:5f:85:41:e6:67:83:b7:a0:
9c:78:8d:cb:15:0a:03:8f:30:f1:de:7f:01:32:3b:
a4:4e:73:57:aa:e6:13:96:fe:ed:22:c3:38:0e:a3:
f7:06:41:1d:7f:8b:a4:a0:f0:dc:e0:5e:5e:f4:9c:
0f:2f:37:be:80:80:18:3d:c0:46:94:5a:77:30:0e:
72:1b:bb:ed:77:1f:20:d4:93:e8:8f:34:fc:06:1d:
ac:dd:93:ad:57:ef:45:13:f3:17:8d:59:43:5b:dc:
66:92:e1:4d:97:bc:f5:03:a1:16:41:47:b1:11:3a:
2d:57:de:41:4b:fb:96:6d:62:b6:84:af:e3:a2:91:
c9:cb:32:02:cd:3c:65:31:e7:e8:79:27:04:80:2f:
22:57:86:01:f8:02:59:3b:86:a6:ca:ad:38:8a:c8:
d3:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:F2:B6:47:DA:38:FD:89:19:06:FD:FD:48:BE:F0:84:F6:6E:68:30
X509v3 Authority Key Identifier:
keyid:49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/9fK2R9o4_YkZBv39SL7whPZuaDA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.135.174.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:b4:46:92:1c:3d:f6:6b:b2:41:a8:e4:b6:e1:8f:9e:a5:e0:
95:f9:57:5a:20:74:35:83:ec:b7:7b:0e:4f:1e:05:cd:56:9c:
32:05:a9:22:36:8d:01:0f:51:b8:f8:e9:5e:6f:f0:21:b6:82:
2b:47:25:83:e8:69:d6:a6:29:30:da:47:55:1b:86:8d:67:a5:
dd:29:ee:79:1f:1b:9e:72:94:1f:f3:2d:ce:71:66:a4:ff:80:
32:6a:c1:ad:e7:09:2a:88:35:c7:10:30:77:3c:22:29:49:21:
22:04:f7:45:84:88:ab:d9:16:43:6a:a0:e5:57:4b:3b:3a:e8:
21:b7:80:57:89:a0:c3:50:8a:7b:64:e0:29:35:94:d4:0f:ef:
ce:bd:f2:5c:37:b2:a3:8d:ed:61:9f:6c:6d:97:2b:57:02:17:
8f:e1:9c:b4:a7:32:ae:39:a6:07:0c:a4:44:5e:e8:49:0b:c6:
ce:1c:9c:28:bd:54:ae:af:91:fa:f8:ae:79:e5:2d:b9:e6:76:
87:d6:6a:e2:72:72:1b:da:d0:67:da:36:74:4f:32:24:bf:1f:
e8:bd:af:f9:da:37:89:af:33:f3:ff:f7:98:e0:01:64:1d:19:
d5:b9:a3:9e:d8:1f:5d:63:f9:d5:96:6f:9e:20:96:a0:3f:de:
98:33:a2:97
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYjVJX129RtQw2dLw3k6jrtqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ODZjNzM5OTRkMDJkOTFmYzk3ZDkxNmU5ODA5YTZkOTgx
ZTZiMTcwHhcNMjMwNjE5MTkzMzAzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNWYyYjY0N2RhMzhmZDg5MTkwNmZkZmQ0OGJlZjA4NGY2NmU2ODMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3uba/h0VS8d69HtyWXPJJx54BprN
IsLqBXhiBO07UR0Fsju8pQSg6WB3FETzwA7h0pMBofLSu5XpcXMqoVRHdjITYqGO
d0BH0qbUnJcCo2lQXO5hshsj+dQPJ/1Cllf8X4VB5meDt6CceI3LFQoDjzDx3n8B
MjukTnNXquYTlv7tIsM4DqP3BkEdf4ukoPDc4F5e9JwPLze+gIAYPcBGlFp3MA5y
G7vtdx8g1JPojzT8Bh2s3ZOtV+9FE/MXjVlDW9xmkuFNl7z1A6EWQUexETotV95B
S/uWbWK2hK/jopHJyzICzTxlMefoeScEgC8iV4YB+AJZO4amyq04isjTTQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPXytkfaOP2JGQb9/Ui+8IT2bmgwMB8GA1UdIwQY
MBaAFEmGxzmU0C2R/JfZFumAmm2YHmsXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU1liSE9aVFFMWkg4bDlrVzZZQ2FiWmdlYXhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS80NTdlMTMtNDFkMy00MGVmLWI1NzIt
OWU4OTVkMGVmOGQyLzEvOWZLMlI5bzRfWWtaQnYzOVNMN3doUFp1YURBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS80NTdlMTMtNDFkMy00MGVmLWI1NzItOWU4OTVkMGVmOGQy
LzEvU1liSE9aVFFMWkg4bDlrVzZZQ2FiWmdlYXhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwYeuMA0G
CSqGSIb3DQEBCwUAA4IBAQChtEaSHD32a7JBqOS24Y+epeCV+VdaIHQ1g+y3ew5P
HgXNVpwyBakiNo0BD1G4+Oleb/AhtoIrRyWD6GnWpikw2kdVG4aNZ6XdKe55Hxue
cpQf8y3OcWak/4AyasGt5wkqiDXHEDB3PCIpSSEiBPdFhIir2RZDaqDlV0s7Ough
t4BXiaDDUIp7ZOApNZTUD+/OvfJcN7Kjje1hn2xtlytXAheP4Zy0pzKuOaYHDKRE
XuhJC8bOHJwovVSur5H6+K555S255naH1mricnIb2tBn2jZ0TzIkvx/ova/52jeJ
rzPz//eY4AFkHRnVuaOe2B9dY/nVlm+eIJagP96YM6KX
-----END CERTIFICATE-----
Generated at Mon Apr 21 01:35:24 2025 by rpki-client