Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/44aac4-45f4-4d19-8c15-3623b9b50f96/1/dT110-EIDdcUUu-TB2cR_YYQ-tE.roa
File: dT110-EIDdcUUu-TB2cR_YYQ-tE.roa (raw, json)
Hash identifier: 5a2WipfUZ36FFgTq4WGBRcD+osoygC2rBs5R4uPHEHE=
Subject key identifier: 75:3D:75:D3:E1:08:0D:D7:14:52:EF:93:07:67:11:FD:86:10:FA:D1
Certificate issuer: /CN=72c293760a734018cdd2a07f1d8bd54f27df680a
Certificate serial: 86AF83
Authority key identifier: 72:C2:93:76:0A:73:40:18:CD:D2:A0:7F:1D:8B:D5:4F:27:DF:68:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/csKTdgpzQBjN0qB_HYvVTyffaAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/44aac4-45f4-4d19-8c15-3623b9b50f96/1/dT110-EIDdcUUu-TB2cR_YYQ-tE.roa
Signing time: Sat 01 Jan 2022 01:02:14 +0000
ROA not before: Sat 01 Jan 2022 01:02:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49014
IP address blocks: 194.107.232.0/21 maxlen: 21
194.107.240.0/21 maxlen: 21
2001:67c:2c0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8826755 (0x86af83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72c293760a734018cdd2a07f1d8bd54f27df680a
Validity
Not Before: Jan 1 01:02:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=753d75d3e1080dd71452ef93076711fd8610fad1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:72:70:ef:ec:b0:d4:c2:6c:84:e9:6e:8b:be:
fe:82:7c:11:bd:a1:ff:fa:74:8f:76:17:2b:be:9a:
eb:9c:c7:15:e8:64:6b:a2:db:69:bd:23:a5:6c:aa:
3b:97:ba:0a:ac:d5:c4:1a:3b:3d:70:2f:b0:b6:1f:
15:ce:b6:6d:f0:45:cb:dc:6d:9b:5c:dd:eb:27:dc:
08:c9:00:80:67:81:0f:30:fb:4b:b7:e0:41:21:f8:
bd:98:80:bb:cd:fb:17:76:b7:27:70:f3:6d:1f:59:
7a:da:37:ee:56:64:72:2d:e0:e0:4e:0c:99:a5:42:
9c:f3:89:b5:ec:ed:b5:48:c9:78:7f:3b:e3:49:65:
0c:10:60:44:69:6c:cb:16:ee:1e:f1:43:6a:94:6a:
80:e1:5e:a1:ea:94:3f:57:5f:1a:ff:e7:e7:64:7f:
6c:7e:df:c1:77:d5:6f:bc:98:71:f2:32:0e:f3:f9:
8c:b5:70:c9:44:bf:0d:70:dd:bb:47:4c:9a:f0:f3:
70:00:bb:ca:77:24:f6:a9:83:05:0a:ec:fb:2b:97:
d1:34:df:1d:08:3d:09:f7:58:0b:be:76:bf:58:51:
5e:ad:cc:fa:44:0f:15:cc:96:0c:43:43:1c:43:57:
5a:b9:d3:b0:e9:00:90:b7:ab:30:b6:32:cd:0d:9f:
dc:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:3D:75:D3:E1:08:0D:D7:14:52:EF:93:07:67:11:FD:86:10:FA:D1
X509v3 Authority Key Identifier:
keyid:72:C2:93:76:0A:73:40:18:CD:D2:A0:7F:1D:8B:D5:4F:27:DF:68:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/csKTdgpzQBjN0qB_HYvVTyffaAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/44aac4-45f4-4d19-8c15-3623b9b50f96/1/dT110-EIDdcUUu-TB2cR_YYQ-tE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/44aac4-45f4-4d19-8c15-3623b9b50f96/1/csKTdgpzQBjN0qB_HYvVTyffaAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.107.232.0-194.107.247.255
IPv6:
2001:67c:2c0::/48
Signature Algorithm: sha256WithRSAEncryption
58:29:8e:ed:94:46:7d:bd:fd:cb:ae:28:c5:d4:fb:1a:4d:c1:
cf:9b:96:12:08:8e:f2:8f:bc:2c:cf:80:cd:ef:75:05:db:18:
3a:fa:30:e1:a5:a8:20:13:97:5f:68:c5:e6:58:b8:16:a3:1b:
58:d1:26:ad:7e:f5:60:ff:7b:f3:ea:70:8e:ef:75:25:9f:77:
79:2a:e9:03:7c:bd:97:1c:7f:70:f8:3d:c9:d5:cf:0f:6d:57:
ca:bc:0d:ea:54:d0:cf:8d:1e:ba:2f:fc:95:a6:9e:54:6d:6b:
af:7b:96:73:94:c9:74:53:8b:7d:96:5b:04:ac:de:3a:55:dd:
e1:b1:b0:15:8c:41:34:19:da:ed:17:6a:8b:66:b5:26:3c:c0:
8a:9d:35:0c:3f:3e:ab:8f:1d:c4:ec:d0:52:16:ce:4c:82:9c:
b6:50:87:0e:26:85:07:33:39:cf:16:1c:bc:dd:27:d8:2c:7e:
f9:80:99:30:24:d1:e3:31:98:29:4e:b4:4b:f5:79:e5:cc:aa:
3d:13:dd:b1:ac:3c:93:f2:f5:1f:95:fa:a0:a6:26:9d:f0:12:
e2:12:dd:d8:82:0f:cb:da:4f:cb:e1:93:79:3b:0c:f4:18:6f:
45:8e:c4:c1:78:e1:51:66:a6:3c:f1:ee:fe:c1:57:22:6a:ca:
6d:e1:eb:a9
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgIEAIavgzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
MmMyOTM3NjBhNzM0MDE4Y2RkMmEwN2YxZDhiZDU0ZjI3ZGY2ODBhMB4XDTIyMDEw
MTAxMDIxNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzUzZDc1ZDNlMTA4
MGRkNzE0NTJlZjkzMDc2NzExZmQ4NjEwZmFkMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAO5ycO/ssNTCbITpbou+/oJ8Eb2h//p0j3YXK76a65zHFehk
a6Lbab0jpWyqO5e6CqzVxBo7PXAvsLYfFc62bfBFy9xtm1zd6yfcCMkAgGeBDzD7
S7fgQSH4vZiAu837F3a3J3DzbR9Zeto37lZkci3g4E4MmaVCnPOJtezttUjJeH87
40llDBBgRGlsyxbuHvFDapRqgOFeoeqUP1dfGv/n52R/bH7fwXfVb7yYcfIyDvP5
jLVwyUS/DXDdu0dMmvDzcAC7ynck9qmDBQrs+yuX0TTfHQg9CfdYC752v1hRXq3M
+kQPFcyWDENDHENXWrnTsOkAkLerMLYyzQ2f3CMCAwEAAaOCAiIwggIeMB0GA1Ud
DgQWBBR1PXXT4QgN1xRS75MHZxH9hhD60TAfBgNVHSMEGDAWgBRywpN2CnNAGM3S
oH8di9VPJ99oCjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2NzS1RkZ3B6UUJqTjBxQl9IWXZWVHlmZmFBby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmUvNDRhYWM0LTQ1ZjQtNGQxOS04YzE1LTM2MjNiOWI1MGY5Ni8x
L2RUMTEwLUVJRGRjVVV1LVRCMmNSX1lZUS10RS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmUv
NDRhYWM0LTQ1ZjQtNGQxOS04YzE1LTM2MjNiOWI1MGY5Ni8xL2NzS1RkZ3B6UUJq
TjBxQl9IWXZWVHlmZmFBby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA4
BggrBgEFBQcBBwEB/wQpMCcwFAQCAAEwDjAMAwQDwmvoAwQDwmvwMA8EAgACMAkD
BwAgAQZ8AsAwDQYJKoZIhvcNAQELBQADggEBAFgpju2URn29/cuuKMXU+xpNwc+b
lhIIjvKPvCzPgM3vdQXbGDr6MOGlqCATl19oxeZYuBajG1jRJq1+9WD/e/PqcI7v
dSWfd3kq6QN8vZccf3D4PcnVzw9tV8q8DepU0M+NHrov/JWmnlRta697lnOUyXRT
i32WWwSs3jpV3eGxsBWMQTQZ2u0XaotmtSY8wIqdNQw/PquPHcTs0FIWzkyCnLZQ
hw4mhQczOc8WHLzdJ9gsfvmAmTAk0eMxmClOtEv1eeXMqj0T3bGsPJPy9R+V+qCm
Jp3wEuIS3diCD8vaT8vhk3k7DPQYb0WOxMF44VFmpjzx7v7BVyJqym3h66k=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:30:30 2025 by rpki-client