Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/YrqCxtqfSbkGbUmcj6h-GgF5_hU.roa
File: YrqCxtqfSbkGbUmcj6h-GgF5_hU.roa (raw, json)
Hash identifier: dmBjfzX5cjRXKIuKyTa/KCZl7CcG1Jasl3w8yvZHB/4=
Subject key identifier: 62:BA:82:C6:DA:9F:49:B9:06:6D:49:9C:8F:A8:7E:1A:01:79:FE:15
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0188334E8B41B2B5FEE5FF91B0949DB69457
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/YrqCxtqfSbkGbUmcj6h-GgF5_hU.roa
Signing time: Fri 19 May 2023 09:19:25 +0000
ROA not before: Fri 19 May 2023 09:19:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399989
IP address blocks: 93.190.246.0/23 maxlen: 23
45.129.127.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
45.128.26.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:33:4e:8b:41:b2:b5:fe:e5:ff:91:b0:94:9d:b6:94:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: May 19 09:19:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62ba82c6da9f49b9066d499c8fa87e1a0179fe15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b9:53:91:d2:8c:6d:e2:c3:8f:12:71:0a:f8:
cb:50:92:d2:04:0d:70:25:4a:9c:be:30:cf:f6:a6:
de:04:40:20:6a:c0:04:1d:29:ad:2c:d0:71:79:3e:
d6:5c:85:02:3f:39:90:b1:67:ee:1c:c9:46:04:01:
1a:db:7c:13:e5:91:38:61:12:80:91:0b:1c:a1:e5:
61:4e:b7:8b:7b:52:88:23:52:b6:8f:6a:81:63:32:
c1:de:5a:da:29:f9:f5:2c:2f:7d:fa:b2:a1:1d:ba:
6e:63:c8:ab:3d:5d:33:c6:87:0e:d1:89:a8:bd:09:
dd:37:f7:ea:7d:50:ca:96:ac:c7:ac:57:69:e6:3b:
b7:c3:ce:fd:60:bd:14:28:82:8f:1d:4b:11:83:97:
81:70:c1:71:23:f6:0d:be:10:e8:0b:e3:ad:ca:38:
db:be:63:0b:05:b7:97:c6:3e:f8:cc:79:bf:bc:de:
f7:01:8f:1c:80:32:b7:fc:ac:ca:e5:79:5d:45:52:
55:3e:d5:37:2c:b6:61:88:bd:bc:31:74:f1:89:9b:
14:70:fa:9b:35:a1:30:ed:a7:d5:e1:5a:63:b7:1a:
23:b6:68:51:b7:ce:10:ea:9f:62:4e:0d:22:11:90:
56:a4:f7:ec:5a:fa:52:4f:fa:8e:f5:be:07:f9:07:
ea:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:BA:82:C6:DA:9F:49:B9:06:6D:49:9C:8F:A8:7E:1A:01:79:FE:15
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/YrqCxtqfSbkGbUmcj6h-GgF5_hU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.26.0/24
45.129.127.0/24
45.135.37.0/24
93.190.246.0/23
Signature Algorithm: sha256WithRSAEncryption
c0:3b:94:66:63:d8:47:7c:57:ad:9a:fd:e0:9d:2e:62:24:58:
c3:f3:43:46:e8:7b:14:df:2c:4e:9a:2f:0f:dd:53:54:8d:73:
c2:cc:de:80:82:89:91:f9:b8:d7:20:5d:0a:cf:8b:9c:85:1c:
dc:ef:4d:b9:e4:f4:05:f6:d5:a3:99:3a:b2:df:9d:a7:4c:6d:
34:16:59:98:e2:63:a9:a7:b9:57:50:75:54:a2:16:6b:f0:16:
d2:0d:13:91:cb:51:d8:f9:19:57:3a:f5:a7:e8:4a:2d:95:b1:
ee:3d:6b:d5:62:0f:1f:19:5e:01:af:25:4e:2a:c7:b7:15:bc:
b3:be:03:e5:f8:d9:d1:1a:76:fc:e4:f9:34:c2:4a:cb:e4:a4:
d6:60:9b:8c:e6:a5:34:4b:ae:ce:e1:3a:d0:d9:8d:44:e4:f6:
91:9d:53:8d:f9:25:6c:2c:0c:63:7e:9c:e0:87:c2:8f:07:a9:
00:67:7e:88:3d:5c:e8:0c:b1:5e:57:3d:f6:2b:e6:86:c8:bb:
1e:d1:74:e4:94:59:ed:2b:d9:da:07:78:4d:df:9d:f0:d3:e5:
41:aa:ed:fc:cb:31:6d:82:50:0f:3f:2b:a2:c1:e6:86:cf:dd:
97:fa:83:30:e9:70:8a:3a:7b:f1:75:03:93:27:dd:ab:f2:fc:
fe:1d:09:de
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAYgzTotBsrX+5f+RsJSdtpRXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjMwNTE5MDkxOTI1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MmJhODJjNmRhOWY0OWI5MDY2ZDQ5OWM4ZmE4N2UxYTAxNzlmZTE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmrlTkdKMbeLDjxJxCvjLUJLSBA1w
JUqcvjDP9qbeBEAgasAEHSmtLNBxeT7WXIUCPzmQsWfuHMlGBAEa23wT5ZE4YRKA
kQscoeVhTreLe1KII1K2j2qBYzLB3lraKfn1LC99+rKhHbpuY8irPV0zxocO0Ymo
vQndN/fqfVDKlqzHrFdp5ju3w879YL0UKIKPHUsRg5eBcMFxI/YNvhDoC+Otyjjb
vmMLBbeXxj74zHm/vN73AY8cgDK3/KzK5XldRVJVPtU3LLZhiL28MXTxiZsUcPqb
NaEw7afV4VpjtxojtmhRt84Q6p9iTg0iEZBWpPfsWvpST/qO9b4H+QfqVwIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFGK6gsban0m5Bm1JnI+ofhoBef4VMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvWXJxQ3h0cWZTYmtHYlVtY2o2aC1HZ0Y1X2hVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQALYAaAwQA
LYF/AwQALYclAwQBXb72MA0GCSqGSIb3DQEBCwUAA4IBAQDAO5RmY9hHfFetmv3g
nS5iJFjD80NG6HsU3yxOmi8P3VNUjXPCzN6AgomR+bjXIF0Kz4uchRzc70255PQF
9tWjmTqy352nTG00FlmY4mOpp7lXUHVUohZr8BbSDRORy1HY+RlXOvWn6EotlbHu
PWvVYg8fGV4BryVOKse3FbyzvgPl+NnRGnb85Pk0wkrL5KTWYJuM5qU0S67O4TrQ
2Y1E5PaRnVON+SVsLAxjfpzgh8KPB6kAZ36IPVzoDLFeVz32K+aGyLse0XTklFnt
K9naB3hN353w0+VBqu38yzFtglAPPyuiweaGz92X+oMw6XCKOnvxdQOTJ92r8vz+
HQne
-----END CERTIFICATE-----
Generated at Wed May 14 06:47:21 2025 by rpki-client