Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/9Do6PkZWRH4i2PzKPWosB2H65xI.roa
File: 9Do6PkZWRH4i2PzKPWosB2H65xI.roa (raw, json)
Hash identifier: wALsoym8inQO7WDW9+gbMo2/yBAaiPE8gCddvg0Wass=
Subject key identifier: F4:3A:3A:3E:46:56:44:7E:22:D8:FC:CA:3D:6A:2C:07:61:FA:E7:12
Certificate issuer: /CN=23d34dd3d211e5c2ea7bd2f527a13e1e996820ec
Certificate serial: 015AE407
Authority key identifier: 23:D3:4D:D3:D2:11:E5:C2:EA:7B:D2:F5:27:A1:3E:1E:99:68:20:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I9NN09IR5cLqe9L1J6E-HploIOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/9Do6PkZWRH4i2PzKPWosB2H65xI.roa
Signing time: Sat 01 Jan 2022 11:57:48 +0000
ROA not before: Sat 01 Jan 2022 11:57:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205509
IP address blocks: 194.9.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22733831 (0x15ae407)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23d34dd3d211e5c2ea7bd2f527a13e1e996820ec
Validity
Not Before: Jan 1 11:57:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f43a3a3e4656447e22d8fcca3d6a2c0761fae712
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ca:89:5b:51:a3:ed:99:89:b8:0d:f1:f2:bd:
70:2f:fd:be:47:2d:5d:bd:06:7a:a9:4a:56:fb:5f:
cc:46:57:af:cf:03:8e:6d:a7:75:85:66:2c:0c:b8:
b2:34:41:59:bd:97:47:a2:bd:c4:1b:d9:bb:d8:b8:
87:e1:a5:42:35:30:3e:7e:64:fe:18:f1:92:63:b4:
6a:68:a2:78:df:8e:4f:e1:52:4b:e4:58:16:15:31:
b6:b8:07:34:9e:ce:7e:65:91:89:0c:67:72:b8:97:
b3:eb:0d:da:90:5e:9a:bd:98:38:92:24:b3:38:45:
db:f1:9f:52:ea:48:80:3f:ce:7f:a3:1f:32:04:bd:
51:ed:92:0d:8f:42:f3:32:bd:33:c6:99:fd:0c:86:
fc:77:2f:af:39:2b:d5:52:87:d4:f3:1a:2b:0c:dd:
34:10:6b:36:19:e8:0b:cb:86:f4:25:9f:7e:e4:55:
5a:92:7b:c1:23:04:d2:28:43:a7:95:48:13:1f:d9:
93:4a:f4:5a:9a:ce:b1:f8:ea:b6:21:be:7f:4d:90:
26:7c:40:6d:03:46:cb:87:44:7b:5a:1b:24:2f:1d:
5d:18:64:f9:9f:e9:c1:9e:4d:37:32:a9:78:f0:1b:
c1:57:f5:8b:80:42:d5:12:e1:13:de:08:9e:4d:c8:
fd:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:3A:3A:3E:46:56:44:7E:22:D8:FC:CA:3D:6A:2C:07:61:FA:E7:12
X509v3 Authority Key Identifier:
keyid:23:D3:4D:D3:D2:11:E5:C2:EA:7B:D2:F5:27:A1:3E:1E:99:68:20:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I9NN09IR5cLqe9L1J6E-HploIOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/9Do6PkZWRH4i2PzKPWosB2H65xI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/I9NN09IR5cLqe9L1J6E-HploIOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.9.29.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:d1:44:86:e7:bf:12:07:92:e5:24:39:26:2d:fd:c0:73:94:
6c:eb:6e:e6:c1:42:27:c5:2c:b8:1a:c5:3d:15:20:6f:2a:a0:
bc:e8:9a:cf:27:37:98:26:35:78:d6:d0:85:3c:0d:73:3f:4b:
01:c4:94:da:e7:ee:29:f7:73:b6:26:92:85:e1:49:75:30:9d:
ae:0e:af:38:75:7f:f7:03:3e:94:21:4b:5d:6e:ce:7d:93:3e:
0e:de:be:fa:c7:37:3c:1d:83:6f:ae:58:4a:de:16:65:45:44:
34:61:eb:dd:37:dd:d3:3e:a1:7f:da:e0:e4:38:0d:7c:18:15:
47:ec:71:ae:51:a0:1f:76:b8:c9:b4:8d:6e:0d:d9:e6:bf:6c:
8d:c7:da:30:1d:01:12:62:2c:1a:a2:89:d3:2f:e4:02:f0:db:
8b:db:49:e0:82:b7:62:95:80:f6:4a:d3:b0:c4:d7:b2:b6:d7:
eb:2d:2a:42:a5:ab:9a:19:47:fe:27:c8:d0:01:b5:66:2b:20:
59:d9:8b:55:76:fb:55:05:c7:a1:d4:96:12:49:4b:86:75:0e:
e0:c2:80:6c:70:36:87:12:d4:97:9c:01:fa:43:3e:e6:21:04:
d7:28:44:a0:ac:a0:c9:be:34:9f:a4:ff:f1:45:cd:81:1c:d4:
82:7f:5c:4e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAVrkBzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
M2QzNGRkM2QyMTFlNWMyZWE3YmQyZjUyN2ExM2UxZTk5NjgyMGVjMB4XDTIyMDEw
MTExNTc0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjQzYTNhM2U0NjU2
NDQ3ZTIyZDhmY2NhM2Q2YTJjMDc2MWZhZTcxMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ7KiVtRo+2ZibgN8fK9cC/9vkctXb0GeqlKVvtfzEZXr88D
jm2ndYVmLAy4sjRBWb2XR6K9xBvZu9i4h+GlQjUwPn5k/hjxkmO0amiieN+OT+FS
S+RYFhUxtrgHNJ7OfmWRiQxncriXs+sN2pBemr2YOJIkszhF2/GfUupIgD/Of6Mf
MgS9Ue2SDY9C8zK9M8aZ/QyG/Hcvrzkr1VKH1PMaKwzdNBBrNhnoC8uG9CWffuRV
WpJ7wSME0ihDp5VIEx/Zk0r0WprOsfjqtiG+f02QJnxAbQNGy4dEe1obJC8dXRhk
+Z/pwZ5NNzKpePAbwVf1i4BC1RLhE94Ink3I/XkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT0Ojo+RlZEfiLY/Mo9aiwHYfrnEjAfBgNVHSMEGDAWgBQj003T0hHlwup7
0vUnoT4emWgg7DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0k5Tk4wOUlSNWNMcWU5TDFKNkUtSHBsb0lPdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjAvZGMyYzA0LTU5ZjYtNGYyMi1iN2JkLWZlNjcxYzFkNTE1MC8x
LzlEbzZQa1pXUkg0aTJQektQV29zQjJINjV4SS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjAv
ZGMyYzA0LTU5ZjYtNGYyMi1iN2JkLWZlNjcxYzFkNTE1MC8xL0k5Tk4wOUlSNWNM
cWU5TDFKNkUtSHBsb0lPdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMIJHTANBgkqhkiG9w0BAQsFAAOC
AQEAOtFEhue/EgeS5SQ5Ji39wHOUbOtu5sFCJ8UsuBrFPRUgbyqgvOiazyc3mCY1
eNbQhTwNcz9LAcSU2ufuKfdztiaSheFJdTCdrg6vOHV/9wM+lCFLXW7OfZM+Dt6+
+sc3PB2Db65YSt4WZUVENGHr3Tfd0z6hf9rg5DgNfBgVR+xxrlGgH3a4ybSNbg3Z
5r9sjcfaMB0BEmIsGqKJ0y/kAvDbi9tJ4IK3YpWA9krTsMTXsrbX6y0qQqWrmhlH
/ifI0AG1ZisgWdmLVXb7VQXHodSWEklLhnUO4MKAbHA2hxLUl5wB+kM+5iEE1yhE
oKygyb40n6T/8UXNgRzUgn9cTg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:52:53 2025 by rpki-client