Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/5786ab-067e-440c-b276-1b06d1c704c1/1/sDwgduyMSZLYC6L43ZLjwSmJ-fg.roa
File: sDwgduyMSZLYC6L43ZLjwSmJ-fg.roa (raw, json)
Hash identifier: 9VuRFU9LN3txBp4bc/lc7XudFWQkazMb6vq/q30cpNs=
Subject key identifier: B0:3C:20:76:EC:8C:49:92:D8:0B:A2:F8:DD:92:E3:C1:29:89:F9:F8
Certificate issuer: /CN=d3d56f07be184cba52f6fdc049e8114d2616c32a
Certificate serial: 0184621BD876EFC66D7C7F73AD8869642DD3
Authority key identifier: D3:D5:6F:07:BE:18:4C:BA:52:F6:FD:C0:49:E8:11:4D:26:16:C3:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/09VvB74YTLpS9v3ASegRTSYWwyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/5786ab-067e-440c-b276-1b06d1c704c1/1/sDwgduyMSZLYC6L43ZLjwSmJ-fg.roa
Signing time: Thu 10 Nov 2022 15:15:02 +0000
ROA not before: Thu 10 Nov 2022 15:15:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206185
IP address blocks: 194.126.164.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:62:1b:d8:76:ef:c6:6d:7c:7f:73:ad:88:69:64:2d:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3d56f07be184cba52f6fdc049e8114d2616c32a
Validity
Not Before: Nov 10 15:15:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b03c2076ec8c4992d80ba2f8dd92e3c12989f9f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:21:62:44:35:08:66:99:a4:fd:cd:69:4c:3f:
c0:02:fe:3e:e4:a8:10:2a:31:48:64:fa:fa:94:13:
1b:53:33:b2:70:9b:a3:aa:c7:b7:8f:20:e8:5f:91:
21:1a:28:88:68:61:52:73:19:71:ca:54:fa:32:4a:
05:da:6a:85:84:7e:57:03:b3:ac:72:cb:67:bb:f6:
23:7d:87:8c:78:11:ea:37:10:55:3d:68:96:09:02:
39:7e:c5:f7:7e:28:1c:aa:ff:13:63:2e:fb:8d:a8:
6f:43:a7:91:ad:a8:d5:49:ef:e9:eb:ca:1d:b4:cc:
a0:2a:e7:f7:57:4b:d4:3b:63:31:a9:8d:89:b7:ef:
ca:98:78:7e:c1:e9:be:e8:8a:ad:d8:4a:f7:46:b0:
5b:9a:3b:e2:ff:3b:39:c9:0f:84:33:ab:8d:ad:2d:
a2:c6:13:54:f4:2b:a3:96:3d:a8:ff:20:7c:6f:09:
c5:7a:27:b1:0c:2b:91:75:c9:75:fe:a9:c2:92:26:
5a:fe:60:28:3f:25:dc:d1:b7:45:05:43:b1:0f:82:
c5:02:57:fd:ee:09:e3:82:5e:04:f4:3b:fd:b7:0b:
00:10:95:29:30:5b:91:fa:87:6c:8e:be:e2:60:3c:
ce:f3:eb:db:8b:cc:f7:b6:2f:ed:23:4a:77:76:84:
4b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:3C:20:76:EC:8C:49:92:D8:0B:A2:F8:DD:92:E3:C1:29:89:F9:F8
X509v3 Authority Key Identifier:
keyid:D3:D5:6F:07:BE:18:4C:BA:52:F6:FD:C0:49:E8:11:4D:26:16:C3:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/09VvB74YTLpS9v3ASegRTSYWwyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/5786ab-067e-440c-b276-1b06d1c704c1/1/sDwgduyMSZLYC6L43ZLjwSmJ-fg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/5786ab-067e-440c-b276-1b06d1c704c1/1/09VvB74YTLpS9v3ASegRTSYWwyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.126.164.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:1f:9e:5f:04:7f:bc:0b:73:85:de:76:5d:0f:61:ef:90:dc:
b7:96:d1:a0:a9:75:ca:42:a4:10:7f:de:9f:75:8b:48:9f:10:
0f:5e:af:bf:2c:8f:1c:c2:db:7c:b4:75:c7:87:af:ca:3b:89:
4c:a0:b7:ec:d2:cb:61:2f:35:33:4a:d5:35:85:5e:84:0f:74:
7f:2b:64:94:e3:14:57:00:d9:b7:17:0d:e9:aa:64:63:c1:d2:
7a:2d:8f:19:a4:d8:f7:98:a4:5e:6e:ca:de:b0:0d:7c:4e:c9:
50:68:a6:39:08:ab:cd:82:87:8f:22:35:31:08:d6:4b:92:77:
2c:4d:ec:c5:69:ad:5c:c8:eb:35:6b:62:ba:43:fe:b1:45:b3:
80:c3:de:4f:bb:5f:df:ea:3e:c7:63:e0:0b:00:dd:3a:f3:8c:
bd:ef:06:be:77:5d:89:d9:ad:8c:5f:fb:86:a9:c8:04:98:37:
cb:32:f9:e4:e3:32:86:20:50:4c:d9:66:a3:00:f2:51:38:44:
56:50:e0:d4:3a:a1:f4:ab:70:8d:f1:e5:39:8f:89:35:88:a1:
44:10:6d:a2:c1:aa:fb:73:62:d0:e0:77:7c:ee:38:85:e9:74:
4f:e9:44:e6:03:54:35:ed:93:0b:79:91:4f:73:34:4a:54:9a:
be:63:1c:cb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRiG9h278ZtfH9zrYhpZC3TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzZDU2ZjA3YmUxODRjYmE1MmY2ZmRjMDQ5ZTgxMTRkMjYx
NmMzMmEwHhcNMjIxMTEwMTUxNTAyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMDNjMjA3NmVjOGM0OTkyZDgwYmEyZjhkZDkyZTNjMTI5ODlmOWY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkCFiRDUIZpmk/c1pTD/AAv4+5KgQ
KjFIZPr6lBMbUzOycJujqse3jyDoX5EhGiiIaGFScxlxylT6MkoF2mqFhH5XA7Os
cstnu/YjfYeMeBHqNxBVPWiWCQI5fsX3figcqv8TYy77jahvQ6eRrajVSe/p68od
tMygKuf3V0vUO2MxqY2Jt+/KmHh+wem+6Iqt2Er3RrBbmjvi/zs5yQ+EM6uNrS2i
xhNU9Cujlj2o/yB8bwnFeiexDCuRdcl1/qnCkiZa/mAoPyXc0bdFBUOxD4LFAlf9
7gnjgl4E9Dv9twsAEJUpMFuR+odsjr7iYDzO8+vbi8z3ti/tI0p3doRLHwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLA8IHbsjEmS2Aui+N2S48Epifn4MB8GA1UdIwQY
MBaAFNPVbwe+GEy6Uvb9wEnoEU0mFsMqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDlWdkI3NFlUTHBTOXYzQVNlZ1JUU1lXd3lvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC81Nzg2YWItMDY3ZS00NDBjLWIyNzYt
MWIwNmQxYzcwNGMxLzEvc0R3Z2R1eU1TWkxZQzZMNDNaTGp3U21KLWZnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC81Nzg2YWItMDY3ZS00NDBjLWIyNzYtMWIwNmQxYzcwNGMx
LzEvMDlWdkI3NFlUTHBTOXYzQVNlZ1JUU1lXd3lvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwn6kMA0G
CSqGSIb3DQEBCwUAA4IBAQA7H55fBH+8C3OF3nZdD2HvkNy3ltGgqXXKQqQQf96f
dYtInxAPXq+/LI8cwtt8tHXHh6/KO4lMoLfs0sthLzUzStU1hV6ED3R/K2SU4xRX
ANm3Fw3pqmRjwdJ6LY8ZpNj3mKRebsresA18TslQaKY5CKvNgoePIjUxCNZLkncs
TezFaa1cyOs1a2K6Q/6xRbOAw95Pu1/f6j7HY+ALAN0684y97wa+d12J2a2MX/uG
qcgEmDfLMvnk4zKGIFBM2WajAPJROERWUODUOqH0q3CN8eU5j4k1iKFEEG2iwar7
c2LQ4Hd87jiF6XRP6UTmA1Q17ZMLeZFPczRKVJq+YxzL
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:07:37 2025 by rpki-client