Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/ce3fa7-fc88-4f48-a5ce-a45bbcb34de5/1/WdI8hwVYBvW_IyQsCDeiBE8BbDA.roa
File: WdI8hwVYBvW_IyQsCDeiBE8BbDA.roa (raw, json)
Hash identifier: U7lJGmi0D3OrNno0iA4wbwWxEkJ1rZ1970JPLcZvvrI=
Subject key identifier: 59:D2:3C:87:05:58:06:F5:BF:23:24:2C:08:37:A2:04:4F:01:6C:30
Certificate issuer: /CN=07d75335f77bf4240976277b1dd0e19bb23a8e1d
Certificate serial: 01856D663A9EA1EE3F422448554DC9A6CBC8
Authority key identifier: 07:D7:53:35:F7:7B:F4:24:09:76:27:7B:1D:D0:E1:9B:B2:3A:8E:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B9dTNfd79CQJdid7HdDhm7I6jh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/ce3fa7-fc88-4f48-a5ce-a45bbcb34de5/1/WdI8hwVYBvW_IyQsCDeiBE8BbDA.roa
Signing time: Sun 01 Jan 2023 12:54:54 +0000
ROA not before: Sun 01 Jan 2023 12:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47973
IP address blocks: 91.103.83.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:66:3a:9e:a1:ee:3f:42:24:48:55:4d:c9:a6:cb:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07d75335f77bf4240976277b1dd0e19bb23a8e1d
Validity
Not Before: Jan 1 12:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=59d23c87055806f5bf23242c0837a2044f016c30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:29:46:6d:05:8e:19:cb:c5:74:87:f8:b7:b6:
94:ce:f5:a9:09:ce:8a:cc:48:d9:ac:e2:9f:63:1e:
56:0c:5d:a2:b5:5e:ce:13:26:b5:c8:bd:63:8c:f8:
ad:bc:4b:45:fa:2b:9c:db:c6:ab:f1:8c:1c:dd:03:
5b:a4:e2:30:04:b9:43:22:0c:f2:94:79:a7:77:f9:
20:3e:7c:1a:16:b1:3e:c9:73:fe:8a:14:4e:ce:ee:
d8:07:02:90:47:ce:87:5a:58:e2:74:6c:6e:a0:a4:
84:c5:ce:c8:00:34:15:da:51:c2:64:57:ae:fd:51:
1f:07:9c:a0:03:43:6f:ca:b7:c4:81:11:3d:8a:b9:
97:da:da:3e:6a:46:25:75:5f:96:84:23:18:17:cf:
0c:23:5f:6e:27:e0:4a:44:51:08:62:88:70:bc:e7:
0a:40:6b:9e:d6:66:4f:89:f8:b9:c0:03:84:7f:c8:
2b:cc:51:9c:7d:13:91:e1:7e:b1:bf:c8:31:f3:f2:
34:12:76:6d:0f:05:48:a6:90:5b:d4:db:ff:eb:29:
3b:a4:c5:61:04:2a:4c:22:c0:33:74:39:e7:1b:42:
c5:0b:6d:95:9f:b0:67:63:41:ee:b7:4d:03:b5:98:
b2:1d:ea:ff:65:96:5e:9b:bc:57:86:02:00:02:22:
b4:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:D2:3C:87:05:58:06:F5:BF:23:24:2C:08:37:A2:04:4F:01:6C:30
X509v3 Authority Key Identifier:
keyid:07:D7:53:35:F7:7B:F4:24:09:76:27:7B:1D:D0:E1:9B:B2:3A:8E:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B9dTNfd79CQJdid7HdDhm7I6jh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/ce3fa7-fc88-4f48-a5ce-a45bbcb34de5/1/WdI8hwVYBvW_IyQsCDeiBE8BbDA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/ce3fa7-fc88-4f48-a5ce-a45bbcb34de5/1/B9dTNfd79CQJdid7HdDhm7I6jh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.103.83.0/24
Signature Algorithm: sha256WithRSAEncryption
05:2b:db:93:cf:4e:7d:33:a9:09:09:32:77:cb:33:4d:55:69:
7a:8f:d0:ff:a9:9e:c9:2e:94:a9:7d:57:b8:0c:24:7d:be:9c:
60:c9:5e:fb:18:e6:21:a9:57:35:0a:2c:14:0d:98:3c:97:f5:
d5:a1:91:f4:5c:a0:e9:d0:49:95:6d:ee:b1:b5:37:8d:34:e6:
ee:51:b8:3b:cc:88:1d:3b:ee:38:1c:fe:af:f2:41:64:f9:d6:
20:6f:b2:54:a2:d5:af:12:51:a8:c4:08:9c:f5:7f:36:13:e0:
ed:9a:28:b2:3e:53:31:9a:a6:8c:d3:24:39:0b:9a:e7:cf:55:
a7:a7:27:d5:4b:19:75:96:12:bf:52:d4:d5:26:29:42:48:eb:
45:aa:ef:5e:3b:2d:c0:a6:a6:80:cb:d3:4d:16:48:fc:04:c0:
16:0b:b0:94:81:44:3f:0a:0b:ba:a8:1d:47:c5:80:59:98:4f:
e2:f3:ff:be:48:68:6b:1c:6d:d5:22:eb:2d:41:3b:6d:db:f2:
d5:72:fa:47:78:c9:c8:c9:55:98:30:9b:e0:1e:01:4a:b3:db:
43:58:ef:f8:46:c1:3a:01:00:ed:fb:9f:c8:85:3e:e2:97:51:
5f:10:0e:3e:79:da:4a:f1:37:02:ee:1a:a4:96:5d:11:3b:e1:
29:2e:ae:05
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtZjqeoe4/QiRIVU3JpsvIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA3ZDc1MzM1Zjc3YmY0MjQwOTc2Mjc3YjFkZDBlMTliYjIz
YThlMWQwHhcNMjMwMTAxMTI1NDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OWQyM2M4NzA1NTgwNmY1YmYyMzI0MmMwODM3YTIwNDRmMDE2YzMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3ylGbQWOGcvFdIf4t7aUzvWpCc6K
zEjZrOKfYx5WDF2itV7OEya1yL1jjPitvEtF+iuc28ar8Ywc3QNbpOIwBLlDIgzy
lHmnd/kgPnwaFrE+yXP+ihROzu7YBwKQR86HWljidGxuoKSExc7IADQV2lHCZFeu
/VEfB5ygA0NvyrfEgRE9irmX2to+akYldV+WhCMYF88MI19uJ+BKRFEIYohwvOcK
QGue1mZPifi5wAOEf8grzFGcfROR4X6xv8gx8/I0EnZtDwVIppBb1Nv/6yk7pMVh
BCpMIsAzdDnnG0LFC22Vn7BnY0Hut00DtZiyHer/ZZZem7xXhgIAAiK0swIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFnSPIcFWAb1vyMkLAg3ogRPAWwwMB8GA1UdIwQY
MBaAFAfXUzX3e/QkCXYnex3Q4ZuyOo4dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQjlkVE5mZDc5Q1FKZGlkN0hkRGhtN0k2amgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9jZTNmYTctZmM4OC00ZjQ4LWE1Y2Ut
YTQ1YmJjYjM0ZGU1LzEvV2RJOGh3VllCdldfSXlRc0NEZWlCRThCYkRBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9jZTNmYTctZmM4OC00ZjQ4LWE1Y2UtYTQ1YmJjYjM0ZGU1
LzEvQjlkVE5mZDc5Q1FKZGlkN0hkRGhtN0k2amgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW2dTMA0G
CSqGSIb3DQEBCwUAA4IBAQAFK9uTz059M6kJCTJ3yzNNVWl6j9D/qZ7JLpSpfVe4
DCR9vpxgyV77GOYhqVc1CiwUDZg8l/XVoZH0XKDp0EmVbe6xtTeNNObuUbg7zIgd
O+44HP6v8kFk+dYgb7JUotWvElGoxAic9X82E+DtmiiyPlMxmqaM0yQ5C5rnz1Wn
pyfVSxl1lhK/UtTVJilCSOtFqu9eOy3ApqaAy9NNFkj8BMAWC7CUgUQ/Cgu6qB1H
xYBZmE/i8/++SGhrHG3VIustQTtt2/LVcvpHeMnIyVWYMJvgHgFKs9tDWO/4RsE6
AQDt+5/IhT7il1FfEA4+edpK8TcC7hqkll0RO+EpLq4F
-----END CERTIFICATE-----
Generated at Sun Apr 27 23:56:14 2025 by rpki-client