Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/f449b3-d8a8-493e-9bd7-e88465c46186/1/T2P68Vk9P2csxAVv453TnaWwbso.roa
File: T2P68Vk9P2csxAVv453TnaWwbso.roa (raw, json)
Hash identifier: hs2fs0xX2FtGcbYWaETGeAizNFOOwoH8/jpGBSb1xjU=
Subject key identifier: 4F:63:FA:F1:59:3D:3F:67:2C:C4:05:6F:E3:9D:D3:9D:A5:B0:6E:CA
Certificate issuer: /CN=c27358682df3df8bdc7024507f92ecfc5ae097bb
Certificate serial: 1756B542
Authority key identifier: C2:73:58:68:2D:F3:DF:8B:DC:70:24:50:7F:92:EC:FC:5A:E0:97:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wnNYaC3z34vccCRQf5Ls_Frgl7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/f449b3-d8a8-493e-9bd7-e88465c46186/1/T2P68Vk9P2csxAVv453TnaWwbso.roa
Signing time: Sat 01 Jan 2022 12:56:10 +0000
ROA not before: Sat 01 Jan 2022 12:56:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48729
IP address blocks: 213.193.232.0/24 maxlen: 24
213.193.212.0/24 maxlen: 24
213.193.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 391558466 (0x1756b542)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c27358682df3df8bdc7024507f92ecfc5ae097bb
Validity
Not Before: Jan 1 12:56:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f63faf1593d3f672cc4056fe39dd39da5b06eca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:44:0c:fa:b0:9d:a9:39:5f:48:e8:8a:93:86:
c4:c4:bf:f2:29:30:1e:86:51:51:72:2a:af:10:77:
13:fb:9b:53:1e:95:69:50:4a:d1:52:87:ab:c0:3e:
f7:66:c7:90:89:0d:2d:ab:4b:16:47:95:ff:9a:39:
af:b9:81:4c:f0:f0:cd:77:83:33:c1:46:86:ac:54:
f8:e5:42:b4:62:a4:8e:dd:32:f0:f1:6e:f7:bd:5b:
3e:86:e8:9b:68:6a:dc:21:4f:83:ea:ee:9a:e7:9d:
ed:d1:78:2b:e3:9d:92:ee:5a:64:c6:7f:0c:85:54:
4f:1a:6a:78:76:4e:30:ac:8a:08:e4:a7:18:e3:0b:
c5:8a:66:92:13:63:79:cc:ff:9b:23:64:f3:57:ec:
a8:65:5d:98:53:f7:2a:62:6e:9f:04:cf:87:1d:aa:
e6:96:fa:a3:df:11:b1:87:37:30:20:b6:5d:10:78:
a8:54:82:cc:c0:d4:11:b7:29:06:a3:af:1d:36:f4:
5c:f1:41:4d:13:82:e3:b0:23:5a:53:c0:89:5e:a1:
22:0e:af:20:7d:bf:c5:63:66:1e:e5:48:91:13:f3:
4b:86:60:a1:2a:04:da:fa:45:b4:6e:f9:9d:60:32:
7f:74:4e:6c:5b:66:22:4b:e8:98:7f:d1:63:56:a8:
58:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:63:FA:F1:59:3D:3F:67:2C:C4:05:6F:E3:9D:D3:9D:A5:B0:6E:CA
X509v3 Authority Key Identifier:
keyid:C2:73:58:68:2D:F3:DF:8B:DC:70:24:50:7F:92:EC:FC:5A:E0:97:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wnNYaC3z34vccCRQf5Ls_Frgl7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/f449b3-d8a8-493e-9bd7-e88465c46186/1/T2P68Vk9P2csxAVv453TnaWwbso.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/f449b3-d8a8-493e-9bd7-e88465c46186/1/wnNYaC3z34vccCRQf5Ls_Frgl7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.193.209.0/24
213.193.212.0/24
213.193.232.0/24
Signature Algorithm: sha256WithRSAEncryption
e4:d0:fc:77:7a:41:7c:9c:d7:4d:c5:7c:e3:11:34:e3:1d:cf:
cf:2e:a5:e5:c3:41:f8:76:10:64:de:91:6e:a6:04:2d:2c:2b:
28:fe:38:fe:ba:f5:50:ce:6e:7d:05:99:59:60:f4:f1:a6:9a:
b6:c0:ff:26:90:24:53:40:f3:f9:72:ab:55:27:f5:2c:f9:a9:
14:6e:2b:6c:a2:f2:7c:cf:11:23:f3:4f:96:68:1a:d8:b0:07:
d1:54:d0:8d:dc:c8:aa:3d:23:c9:f8:5f:11:bc:2c:4f:0f:d9:
7f:d3:16:be:ec:bb:91:d8:4e:98:09:d2:08:2d:60:18:80:14:
a3:68:93:62:9f:dc:d2:03:82:af:66:7e:41:0f:fb:c1:f4:6c:
58:f9:fd:fc:6f:f8:4c:d9:9f:12:16:31:59:15:0b:c9:47:63:
4f:bc:70:30:f3:f9:b5:6a:e8:2f:de:76:a8:60:88:5d:b9:20:
4f:69:d0:1b:df:9f:67:30:41:08:30:fb:b3:91:be:71:25:1d:
b6:af:0c:9c:7d:e6:48:d0:9e:25:7b:64:68:94:b1:21:9b:c5:
10:51:82:6c:43:04:d7:b1:b9:cc:ef:01:65:80:0d:39:8c:14:
01:87:35:e4:52:7c:57:be:db:3c:12:be:a5:ec:07:f1:83:71:
f9:6d:a6:a2
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEF1a1QjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
MjczNTg2ODJkZjNkZjhiZGM3MDI0NTA3ZjkyZWNmYzVhZTA5N2JiMB4XDTIyMDEw
MTEyNTYxMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGY2M2ZhZjE1OTNk
M2Y2NzJjYzQwNTZmZTM5ZGQzOWRhNWIwNmVjYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK5EDPqwnak5X0joipOGxMS/8ikwHoZRUXIqrxB3E/ubUx6V
aVBK0VKHq8A+92bHkIkNLatLFkeV/5o5r7mBTPDwzXeDM8FGhqxU+OVCtGKkjt0y
8PFu971bPobom2hq3CFPg+rumued7dF4K+Odku5aZMZ/DIVUTxpqeHZOMKyKCOSn
GOMLxYpmkhNjecz/myNk81fsqGVdmFP3KmJunwTPhx2q5pb6o98RsYc3MCC2XRB4
qFSCzMDUEbcpBqOvHTb0XPFBTROC47AjWlPAiV6hIg6vIH2/xWNmHuVIkRPzS4Zg
oSoE2vpFtG75nWAyf3RObFtmIkvomH/RY1aoWHMCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBRPY/rxWT0/ZyzEBW/jndOdpbBuyjAfBgNVHSMEGDAWgBTCc1hoLfPfi9xw
JFB/kuz8WuCXuzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3duTllhQzN6MzR2Y2NDUlFmNUxzX0ZyZ2w3cy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmUvZjQ0OWIzLWQ4YTgtNDkzZS05YmQ3LWU4ODQ2NWM0NjE4Ni8x
L1QyUDY4Vms5UDJjc3hBVnY0NTNUbmFXd2Jzby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmUv
ZjQ0OWIzLWQ4YTgtNDkzZS05YmQ3LWU4ODQ2NWM0NjE4Ni8xL3duTllhQzN6MzR2
Y2NDUlFmNUxzX0ZyZ2w3cy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEANXB0QMEANXB1AMEANXB6DANBgkq
hkiG9w0BAQsFAAOCAQEA5ND8d3pBfJzXTcV84xE04x3Pzy6l5cNB+HYQZN6RbqYE
LSwrKP44/rr1UM5ufQWZWWD08aaatsD/JpAkU0Dz+XKrVSf1LPmpFG4rbKLyfM8R
I/NPlmga2LAH0VTQjdzIqj0jyfhfEbwsTw/Zf9MWvuy7kdhOmAnSCC1gGIAUo2iT
Yp/c0gOCr2Z+QQ/7wfRsWPn9/G/4TNmfEhYxWRULyUdjT7xwMPP5tWroL952qGCI
XbkgT2nQG9+fZzBBCDD7s5G+cSUdtq8MnH3mSNCeJXtkaJSxIZvFEFGCbEME17G5
zO8BZYANOYwUAYc15FJ8V77bPBK+pewH8YNx+W2mog==
-----END CERTIFICATE-----
Generated at Mon Apr 28 21:39:17 2025 by rpki-client