Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/5aacf3-bbc9-43c4-86f0-54f6e52f547b/1/Ft4pGkb6UARTcgbG4FlSKUHYnLs.roa
File: Ft4pGkb6UARTcgbG4FlSKUHYnLs.roa (raw, json)
Hash identifier: lRPXfkm1+YCBURh/UB7HM1ZsDgLft9OFypQizv47bfc=
Subject key identifier: 16:DE:29:1A:46:FA:50:04:53:72:06:C6:E0:59:52:29:41:D8:9C:BB
Certificate issuer: /CN=4b23b06d60ec3e76b4920b2b64141fa3af6e5fbb
Certificate serial: 02CDE2
Authority key identifier: 4B:23:B0:6D:60:EC:3E:76:B4:92:0B:2B:64:14:1F:A3:AF:6E:5F:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SyOwbWDsPna0kgsrZBQfo69uX7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/5aacf3-bbc9-43c4-86f0-54f6e52f547b/1/Ft4pGkb6UARTcgbG4FlSKUHYnLs.roa
Signing time: Fri 11 Mar 2022 14:07:02 +0000
ROA not before: Fri 11 Mar 2022 14:07:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21495
IP address blocks: 195.242.183.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 183778 (0x2cde2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b23b06d60ec3e76b4920b2b64141fa3af6e5fbb
Validity
Not Before: Mar 11 14:07:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=16de291a46fa5004537206c6e059522941d89cbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:0a:5a:36:14:0f:43:df:8d:18:94:04:5a:39:
ff:5e:cf:f5:38:2f:bd:d7:c1:e3:de:66:ea:22:e2:
27:97:87:00:ff:ee:49:be:f6:e8:98:72:64:d8:e5:
8c:be:77:46:9d:8b:57:c9:80:14:c4:61:a1:57:d8:
5a:70:a7:fc:b9:67:f0:49:ab:7f:98:aa:76:60:81:
61:f6:af:94:4b:77:fb:57:20:1f:47:34:a7:9e:07:
99:63:12:21:b1:63:a4:20:21:29:65:89:64:78:47:
04:28:b3:59:f7:a5:0e:bb:70:ed:f2:00:d9:6b:f2:
11:ea:44:94:f0:0d:cd:bb:d7:fa:af:5c:28:60:96:
dc:19:d0:e9:f8:5d:0d:53:13:61:94:e1:89:d2:a6:
57:bd:e4:ad:ee:48:49:fa:2d:ac:15:bf:b6:40:72:
d4:47:fc:9e:b9:b5:83:04:31:e9:f8:e9:98:57:af:
d4:d5:ba:fd:73:d5:2f:58:47:fb:2e:b5:46:1d:09:
c6:4b:1e:24:b9:5f:1f:e1:57:f6:42:8b:28:8e:7d:
f2:f4:c6:eb:1e:11:f5:d8:d2:6c:e8:0a:dd:51:8b:
37:f1:9f:31:c5:96:89:23:9a:3a:0c:57:69:4e:ff:
e6:06:68:7c:50:bb:38:21:c8:7b:7d:1a:34:8b:aa:
c5:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:DE:29:1A:46:FA:50:04:53:72:06:C6:E0:59:52:29:41:D8:9C:BB
X509v3 Authority Key Identifier:
keyid:4B:23:B0:6D:60:EC:3E:76:B4:92:0B:2B:64:14:1F:A3:AF:6E:5F:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SyOwbWDsPna0kgsrZBQfo69uX7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/5aacf3-bbc9-43c4-86f0-54f6e52f547b/1/Ft4pGkb6UARTcgbG4FlSKUHYnLs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/5aacf3-bbc9-43c4-86f0-54f6e52f547b/1/SyOwbWDsPna0kgsrZBQfo69uX7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.242.183.0/24
Signature Algorithm: sha256WithRSAEncryption
89:0b:62:21:e8:d4:4d:a0:62:43:ed:75:94:73:e7:ca:18:c0:
cc:40:65:32:8f:24:5a:53:ca:0b:a1:83:6d:14:65:e2:14:3c:
6c:f7:ae:27:4b:f4:ef:59:24:44:a0:9a:28:ca:4c:37:75:99:
38:30:e6:d9:3d:9d:f4:1e:03:da:96:5e:90:f1:96:0b:91:f1:
e2:0f:72:82:30:c9:06:79:7c:49:c0:63:32:7e:50:dc:69:d6:
e6:08:ba:f6:5e:f9:c2:68:9c:fe:db:1c:40:81:ca:d1:41:6e:
37:47:2e:8e:ec:79:36:c2:ec:e7:41:2a:ba:d7:01:af:7d:96:
f0:35:b6:5f:1e:23:5e:cc:23:8c:d0:f6:f1:66:45:16:ec:86:
3b:55:3d:13:28:c6:60:ce:bb:69:04:8c:21:cf:88:68:65:35:
c7:59:6f:fc:8d:e4:a6:93:13:4e:c2:d0:de:f4:a3:d8:8d:00:
8f:ff:9c:04:d9:91:ae:c4:34:04:1a:b8:6e:52:25:28:ff:94:
14:f4:53:8f:fe:9a:6d:30:26:55:ee:62:71:2f:ae:ca:17:6e:
83:fb:43:6f:34:26:9e:39:66:6d:4f:e0:ab:7f:6d:ac:8e:a1:
4b:0e:5b:a6:68:ad:e3:98:95:57:59:14:09:6a:fc:c9:42:0f:
fc:33:92:5e
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAs3iMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDRi
MjNiMDZkNjBlYzNlNzZiNDkyMGIyYjY0MTQxZmEzYWY2ZTVmYmIwHhcNMjIwMzEx
MTQwNzAyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygxNmRlMjkxYTQ2ZmE1
MDA0NTM3MjA2YzZlMDU5NTIyOTQxZDg5Y2JiMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAoApaNhQPQ9+NGJQEWjn/Xs/1OC+918Hj3mbqIuInl4cA/+5J
vvbomHJk2OWMvndGnYtXyYAUxGGhV9hacKf8uWfwSat/mKp2YIFh9q+US3f7VyAf
RzSnngeZYxIhsWOkICEpZYlkeEcEKLNZ96UOu3Dt8gDZa/IR6kSU8A3Nu9f6r1wo
YJbcGdDp+F0NUxNhlOGJ0qZXveSt7khJ+i2sFb+2QHLUR/yeubWDBDHp+OmYV6/U
1br9c9UvWEf7LrVGHQnGSx4kuV8f4Vf2Qosojn3y9MbrHhH12NJs6ArdUYs38Z8x
xZaJI5o6DFdpTv/mBmh8ULs4Ich7fRo0i6rFnwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFBbeKRpG+lAEU3IGxuBZUilB2Jy7MB8GA1UdIwQYMBaAFEsjsG1g7D52tJIL
K2QUH6Ovbl+7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
U3lPd2JXRHNQbmEwa2dzclpCUWZvNjl1WDdzLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9mOS81YWFjZjMtYmJjOS00M2M0LTg2ZjAtNTRmNmU1MmY1NDdiLzEv
RnQ0cEdrYjZVQVJUY2diRzRGbFNLVUhZbkxzLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS81
YWFjZjMtYmJjOS00M2M0LTg2ZjAtNTRmNmU1MmY1NDdiLzEvU3lPd2JXRHNQbmEw
a2dzclpCUWZvNjl1WDdzLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw/K3MA0GCSqGSIb3DQEBCwUAA4IB
AQCJC2Ih6NRNoGJD7XWUc+fKGMDMQGUyjyRaU8oLoYNtFGXiFDxs964nS/TvWSRE
oJooykw3dZk4MObZPZ30HgPall6Q8ZYLkfHiD3KCMMkGeXxJwGMyflDcadbmCLr2
XvnCaJz+2xxAgcrRQW43Ry6O7Hk2wuznQSq61wGvfZbwNbZfHiNezCOM0PbxZkUW
7IY7VT0TKMZgzrtpBIwhz4hoZTXHWW/8jeSmkxNOwtDe9KPYjQCP/5wE2ZGuxDQE
GrhuUiUo/5QU9FOP/pptMCZV7mJxL67KF26D+0NvNCaeOWZtT+Crf22sjqFLDlum
aK3jmJVXWRQJavzJQg/8M5Je
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:48:51 2025 by rpki-client