Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/ce4822-c991-40f0-b154-b8bbca8636cc/1/pQJU6wggZSYF2MAqWAMSQmWRZ3w.roa
File: pQJU6wggZSYF2MAqWAMSQmWRZ3w.roa (raw, json)
Hash identifier: YefAyCqyljvGDLSzMNpmhz1A7EvQoxSHV9kRhazh3zM=
Subject key identifier: A5:02:54:EB:08:20:65:26:05:D8:C0:2A:58:03:12:42:65:91:67:7C
Certificate issuer: /CN=c0cb3ab4392eaa0b38f1965d54fcbeeb5067ad1c
Certificate serial: 01856D0182C921015952A26F91754A978DC6
Authority key identifier: C0:CB:3A:B4:39:2E:AA:0B:38:F1:96:5D:54:FC:BE:EB:50:67:AD:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wMs6tDkuqgs48ZZdVPy-61BnrRw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/ce4822-c991-40f0-b154-b8bbca8636cc/1/pQJU6wggZSYF2MAqWAMSQmWRZ3w.roa
Signing time: Sun 01 Jan 2023 11:04:53 +0000
ROA not before: Sun 01 Jan 2023 11:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47957
IP address blocks: 91.208.214.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:01:82:c9:21:01:59:52:a2:6f:91:75:4a:97:8d:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0cb3ab4392eaa0b38f1965d54fcbeeb5067ad1c
Validity
Not Before: Jan 1 11:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a50254eb0820652605d8c02a580312426591677c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d1:bc:7d:0a:29:7a:6c:4a:09:14:bb:af:26:
19:81:44:f5:7f:1d:a3:01:70:f8:6e:2f:75:9c:7c:
2e:dd:83:ab:85:50:06:fa:99:87:c4:c6:9c:86:5c:
8a:61:9b:8e:62:38:09:fe:88:a9:c7:00:be:a8:4b:
5e:c6:e1:98:67:14:c6:f0:40:db:36:8f:60:6f:8a:
a9:12:d1:94:7d:ee:32:78:95:fc:f5:a9:f5:b6:85:
26:69:7b:80:60:84:b3:81:f1:cc:af:e3:f3:a8:05:
8a:e6:08:b0:17:18:97:67:6f:c5:f6:57:82:05:f7:
02:e0:9f:70:60:e9:e4:46:69:2a:2b:1b:ad:d3:2c:
32:b2:82:8b:32:8b:bb:4c:90:15:d9:55:e0:ba:2c:
20:c3:ee:66:fe:20:18:fd:99:54:d9:3d:76:df:78:
a9:72:83:84:b9:c9:95:aa:e8:32:13:26:75:e2:94:
37:c1:c3:53:05:ec:4c:e0:76:9d:39:42:b2:dc:6e:
fd:30:4e:90:ac:95:8e:d5:73:ba:a7:57:9e:d9:26:
d5:72:92:23:2e:f3:3f:60:d4:9c:af:22:f4:64:77:
d1:4f:b9:5c:c0:b3:3a:46:1e:4b:62:c8:53:e2:00:
0f:03:d8:90:f1:36:70:2f:b1:00:80:d2:ce:d4:97:
31:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:02:54:EB:08:20:65:26:05:D8:C0:2A:58:03:12:42:65:91:67:7C
X509v3 Authority Key Identifier:
keyid:C0:CB:3A:B4:39:2E:AA:0B:38:F1:96:5D:54:FC:BE:EB:50:67:AD:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wMs6tDkuqgs48ZZdVPy-61BnrRw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ce4822-c991-40f0-b154-b8bbca8636cc/1/pQJU6wggZSYF2MAqWAMSQmWRZ3w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ce4822-c991-40f0-b154-b8bbca8636cc/1/wMs6tDkuqgs48ZZdVPy-61BnrRw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.214.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:ce:95:bb:60:b7:d4:32:06:16:1b:de:c5:37:5f:b9:40:c7:
38:91:06:8a:f0:78:01:d4:a7:3d:2c:a7:c5:b1:24:29:45:7b:
6c:2f:aa:b0:db:53:e9:bd:aa:0a:b3:30:c0:c7:01:3d:22:1e:
ad:cd:57:5a:3e:62:9d:24:79:01:6e:ab:4a:27:af:55:d3:88:
1d:98:45:7d:f8:49:b3:12:ef:70:5e:74:40:26:69:c2:3e:d4:
12:36:de:24:cb:5d:32:c7:26:99:57:61:f9:b1:50:4a:0f:71:
fd:15:d1:5c:37:0e:e2:01:4d:12:63:cf:5d:bc:f3:57:fd:1a:
0b:f3:8f:60:b6:2a:66:9e:97:d8:a4:48:97:16:cf:5a:bd:10:
b4:21:c7:9e:65:6e:fb:2d:a3:ab:6b:bc:49:dc:63:4d:eb:c2:
1e:f8:c7:7b:60:48:ff:71:b9:82:13:65:3f:2b:7e:82:f7:94:
65:5c:32:dc:fa:72:7e:04:ee:6d:30:c0:d1:06:81:aa:3c:4a:
77:fb:f1:48:52:4f:af:bb:e4:cd:3c:37:05:7a:82:95:0e:c5:
2d:57:0e:4b:49:e1:66:98:fb:31:6c:ef:f1:7d:01:e2:da:c6:
c7:ad:e8:ec:ca:c0:ff:0a:3f:ad:ab:84:92:3b:5c:64:56:97:
a0:a4:83:32
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtAYLJIQFZUqJvkXVKl43GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMwY2IzYWI0MzkyZWFhMGIzOGYxOTY1ZDU0ZmNiZWViNTA2
N2FkMWMwHhcNMjMwMTAxMTEwNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNTAyNTRlYjA4MjA2NTI2MDVkOGMwMmE1ODAzMTI0MjY1OTE2NzdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqtG8fQopemxKCRS7ryYZgUT1fx2j
AXD4bi91nHwu3YOrhVAG+pmHxMachlyKYZuOYjgJ/oipxwC+qEtexuGYZxTG8EDb
No9gb4qpEtGUfe4yeJX89an1toUmaXuAYISzgfHMr+PzqAWK5giwFxiXZ2/F9leC
BfcC4J9wYOnkRmkqKxut0ywysoKLMou7TJAV2VXguiwgw+5m/iAY/ZlU2T1233ip
coOEucmVqugyEyZ14pQ3wcNTBexM4HadOUKy3G79ME6QrJWO1XO6p1ee2SbVcpIj
LvM/YNScryL0ZHfRT7lcwLM6Rh5LYshT4gAPA9iQ8TZwL7EAgNLO1JcxiQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKUCVOsIIGUmBdjAKlgDEkJlkWd8MB8GA1UdIwQY
MBaAFMDLOrQ5LqoLOPGWXVT8vutQZ60cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd01zNnREa3VxZ3M0OFpaZFZQeS02MUJuclJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi9jZTQ4MjItYzk5MS00MGYwLWIxNTQt
YjhiYmNhODYzNmNjLzEvcFFKVTZ3Z2daU1lGMk1BcVdBTVNRbVdSWjN3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi9jZTQ4MjItYzk5MS00MGYwLWIxNTQtYjhiYmNhODYzNmNj
LzEvd01zNnREa3VxZ3M0OFpaZFZQeS02MUJuclJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9DWMA0G
CSqGSIb3DQEBCwUAA4IBAQCgzpW7YLfUMgYWG97FN1+5QMc4kQaK8HgB1Kc9LKfF
sSQpRXtsL6qw21PpvaoKszDAxwE9Ih6tzVdaPmKdJHkBbqtKJ69V04gdmEV9+Emz
Eu9wXnRAJmnCPtQSNt4ky10yxyaZV2H5sVBKD3H9FdFcNw7iAU0SY89dvPNX/RoL
849gtipmnpfYpEiXFs9avRC0IceeZW77LaOra7xJ3GNN68Ie+Md7YEj/cbmCE2U/
K36C95RlXDLc+nJ+BO5tMMDRBoGqPEp3+/FIUk+vu+TNPDcFeoKVDsUtVw5LSeFm
mPsxbO/xfQHi2sbHrejsysD/Cj+tq4SSO1xkVpegpIMy
-----END CERTIFICATE-----
Generated at Fri Apr 18 01:35:22 2025 by rpki-client