Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/FfEgdmGdo0TPCklU39WZxSWFmo0.roa
File: FfEgdmGdo0TPCklU39WZxSWFmo0.roa (raw, json)
Hash identifier: jb5X4+R5BS2KHrA6tl48eKHFFfAeFSK9ihlszLKNn54=
Subject key identifier: 15:F1:20:76:61:9D:A3:44:CF:0A:49:54:DF:D5:99:C5:25:85:9A:8D
Certificate issuer: /CN=cf136e01ffaf853dbb2a5cfcfe5d1b67d20c20b5
Certificate serial: 01DB2077
Authority key identifier: CF:13:6E:01:FF:AF:85:3D:BB:2A:5C:FC:FE:5D:1B:67:D2:0C:20:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zxNuAf-vhT27Klz8_l0bZ9IMILU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/FfEgdmGdo0TPCklU39WZxSWFmo0.roa
Signing time: Sat 01 Jan 2022 04:58:18 +0000
ROA not before: Sat 01 Jan 2022 04:58:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211216
IP address blocks: 81.31.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31137911 (0x1db2077)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf136e01ffaf853dbb2a5cfcfe5d1b67d20c20b5
Validity
Not Before: Jan 1 04:58:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=15f12076619da344cf0a4954dfd599c525859a8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:89:ba:18:61:0a:7f:b3:2d:af:c2:d4:0a:aa:
b7:55:c9:30:13:ae:8f:dd:5e:b3:8e:c0:32:3e:7a:
de:88:03:37:e7:84:66:1e:ea:7e:38:d1:dd:53:db:
ac:1c:14:d2:70:27:be:aa:1c:2a:e7:c4:29:f4:68:
b3:5f:28:51:ab:58:2c:e8:8b:b1:a4:e1:d2:e6:63:
8f:bb:ce:5e:ec:f2:df:d9:bc:ac:f9:51:a5:0e:22:
16:e2:a5:10:4d:1d:d8:3f:ac:67:d7:57:23:14:0f:
6e:f5:f5:96:0e:33:e6:2c:8c:bc:60:1d:cc:53:62:
2b:a6:42:d3:01:63:ed:98:27:16:0d:2c:6f:fa:b0:
ab:3e:ad:15:bf:68:18:8c:a6:1a:55:b8:0e:1e:9d:
21:25:86:df:98:79:7a:c8:e4:90:28:ec:3f:d1:7b:
b0:2f:97:66:c0:c2:c7:5c:19:b1:e2:db:98:c0:d0:
3a:d6:9a:75:8e:d2:a7:8a:a7:c1:7f:2d:26:60:40:
10:b8:c8:83:5c:e8:bd:f0:b2:19:b0:b6:9d:d6:f2:
f2:10:62:a2:18:24:9c:d0:b3:eb:14:4f:d9:ec:9e:
7b:24:0c:1f:63:61:22:a1:a3:23:79:81:46:3d:29:
d9:86:a4:4c:22:d7:9a:61:0f:d8:89:4c:6b:31:bb:
08:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:F1:20:76:61:9D:A3:44:CF:0A:49:54:DF:D5:99:C5:25:85:9A:8D
X509v3 Authority Key Identifier:
keyid:CF:13:6E:01:FF:AF:85:3D:BB:2A:5C:FC:FE:5D:1B:67:D2:0C:20:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zxNuAf-vhT27Klz8_l0bZ9IMILU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/FfEgdmGdo0TPCklU39WZxSWFmo0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.196.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:b0:1d:2c:b9:67:11:bf:5c:c7:b2:ee:28:e1:4d:ec:b2:9c:
42:8c:c1:82:e1:62:fc:4f:60:73:5f:c3:c4:2a:2b:e1:2f:86:
8a:83:c4:b9:f3:f8:6c:d2:dd:f2:55:e5:df:04:bc:d6:ab:40:
8f:41:43:9c:67:10:d2:75:8b:92:3d:18:cd:d4:9f:8e:5e:3f:
2b:63:cd:cb:58:c2:a2:21:1b:30:61:50:a7:c7:88:de:ab:0a:
b5:c4:5b:1b:eb:64:36:91:43:3b:0c:d2:2c:4a:a9:8d:14:aa:
0d:cb:3e:1a:16:93:fa:44:cd:fc:b6:f9:c3:76:2d:61:df:4f:
f6:ec:3b:41:ce:6b:a7:a2:46:54:d3:0e:59:d1:c0:38:61:f4:
37:4b:04:cc:84:aa:e6:2d:a3:5b:b1:2f:6e:1f:5a:ef:9c:61:
5d:0c:43:e3:c0:5d:10:ca:b4:c8:0c:14:4c:10:fc:10:e1:50:
2c:44:08:cd:51:b4:81:6d:38:51:99:3b:91:40:cd:fd:b9:ce:
2e:d9:3f:26:b1:65:58:11:b1:90:08:1f:d6:e9:25:03:2e:e1:
d1:1f:5a:d6:ae:04:0d:cf:51:28:99:2b:45:eb:fc:ca:21:2b:
82:2f:0e:41:82:66:c5:5a:50:0b:bc:a1:49:25:dd:12:92:2c:
fa:23:7c:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 10:27:10 2025 by rpki-client