Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/REtZJE6sE-MWtyjChQzVa5FoZlE.roa
File: REtZJE6sE-MWtyjChQzVa5FoZlE.roa (raw, json)
Hash identifier: upk10catsc1QtifbAHnSDf32HN+edpvN5KMAQWIXO5E=
Subject key identifier: 44:4B:59:24:4E:AC:13:E3:16:B7:28:C2:85:0C:D5:6B:91:68:66:51
Certificate issuer: /CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Certificate serial: 137455C6
Authority key identifier: 1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/REtZJE6sE-MWtyjChQzVa5FoZlE.roa
Signing time: Sat 01 Jan 2022 05:58:29 +0000
ROA not before: Sat 01 Jan 2022 05:58:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208676
IP address blocks: 83.125.5.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 326391238 (0x137455c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Validity
Not Before: Jan 1 05:58:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=444b59244eac13e316b728c2850cd56b91686651
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b8:bb:85:66:5c:0f:cb:0e:b7:1d:3b:f5:fb:
41:8d:f9:eb:12:6b:23:6c:33:72:dd:33:b3:e4:f1:
59:5d:63:b1:35:8e:d6:0b:72:80:f2:db:ef:35:ea:
a1:67:0a:b6:83:8d:b8:96:9b:9f:bc:45:9c:e4:46:
64:09:ae:8a:93:65:01:eb:2c:2e:06:d6:82:11:a1:
b6:00:03:b7:a4:34:82:9e:2a:4f:3f:74:fc:67:b1:
ca:93:7e:bb:c7:5a:c5:d2:65:6d:61:74:05:b2:52:
94:39:2f:56:58:a8:f4:d0:69:6a:00:d0:89:bc:4a:
ea:8e:0c:86:e9:7f:11:55:f3:96:10:f5:88:14:cd:
dd:b2:6b:39:bd:87:b0:b8:b4:03:d1:1e:7b:ec:1a:
69:0e:e3:50:4c:1a:fc:e4:98:51:f8:91:c4:c5:2f:
6d:7a:a6:d2:6d:cd:37:0b:cc:2a:6f:85:fe:8f:10:
30:e2:9d:16:0f:13:a8:a5:79:da:4d:f6:0e:6a:d4:
74:79:bd:4d:13:de:fd:cc:e0:8b:b6:aa:dd:2d:26:
6e:76:68:ae:de:84:84:ec:1b:4c:e7:0a:8f:d7:f4:
f5:57:d7:45:a3:20:22:01:33:2f:9a:15:7e:96:5b:
e3:53:56:47:9b:7d:ee:5e:b4:82:07:65:23:a5:61:
e2:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:4B:59:24:4E:AC:13:E3:16:B7:28:C2:85:0C:D5:6B:91:68:66:51
X509v3 Authority Key Identifier:
keyid:1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/REtZJE6sE-MWtyjChQzVa5FoZlE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.125.5.0/24
Signature Algorithm: sha256WithRSAEncryption
01:8b:17:ab:fc:45:01:c1:7d:d3:70:34:74:64:71:72:0c:2b:
11:58:fa:a2:06:26:e1:5c:65:9c:f4:95:4d:ee:f0:a6:4f:d6:
d5:f5:a5:f6:6e:e1:40:b1:38:61:c0:15:4a:d7:1d:34:ad:53:
7e:87:34:fd:be:be:97:82:14:48:e8:2a:78:ed:21:d5:81:77:
88:02:f3:cb:74:13:c9:87:91:bd:94:70:90:c1:58:02:09:b6:
80:03:65:53:5d:2e:8b:a2:9a:af:c7:16:5f:9a:0d:ae:b0:f6:
59:9d:35:43:e4:fe:e0:eb:1e:fe:59:42:7e:e1:52:e1:f5:d9:
fc:11:84:bf:ed:7e:2e:74:82:db:da:c4:54:53:e5:85:0e:8c:
c6:81:a3:e7:5a:35:23:02:b6:d9:13:1e:2a:f6:f8:05:36:78:
41:04:24:8f:e1:5a:f7:72:33:33:a8:f5:f2:e3:0d:e9:75:4b:
8c:82:ad:20:33:11:cc:00:df:96:e5:c6:c7:85:ce:66:93:44:
df:75:d0:e6:eb:92:cb:95:28:e2:ef:77:7e:54:63:e3:86:c8:
5d:77:ce:f7:30:66:01:30:84:da:d1:50:9a:c4:f5:51:de:c6:
f6:89:c4:26:46:87:a7:55:77:82:eb:48:eb:7f:b6:12:bb:74:
42:9f:3b:de
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEE3RVxjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZmU5MGZkZTk3ODRhOTFkOTNhN2EyYWY1OWQ0ZDA0M2YxMTcxZmJhMB4XDTIyMDEw
MTA1NTgyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDQ0YjU5MjQ0ZWFj
MTNlMzE2YjcyOGMyODUwY2Q1NmI5MTY4NjY1MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALi4u4VmXA/LDrcdO/X7QY356xJrI2wzct0zs+TxWV1jsTWO
1gtygPLb7zXqoWcKtoONuJabn7xFnORGZAmuipNlAessLgbWghGhtgADt6Q0gp4q
Tz90/GexypN+u8daxdJlbWF0BbJSlDkvVlio9NBpagDQibxK6o4Mhul/EVXzlhD1
iBTN3bJrOb2HsLi0A9Eee+waaQ7jUEwa/OSYUfiRxMUvbXqm0m3NNwvMKm+F/o8Q
MOKdFg8TqKV52k32DmrUdHm9TRPe/czgi7aq3S0mbnZort6EhOwbTOcKj9f09VfX
RaMgIgEzL5oVfpZb41NWR5t97l60ggdlI6Vh4nUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRES1kkTqwT4xa3KMKFDNVrkWhmUTAfBgNVHSMEGDAWgBQf6Q/el4SpHZOn
oq9Z1NBD8RcfujAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0gta1AzcGVFcVIyVHA2S3ZXZFRRUV9FWEg3by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTIvYTk0NWY3LTUzYjMtNGRiNS1hZTA0LTIzNzcyZTdmOTJlMy8x
L1JFdFpKRTZzRS1NV3R5akNoUXpWYTVGb1psRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTIv
YTk0NWY3LTUzYjMtNGRiNS1hZTA0LTIzNzcyZTdmOTJlMy8xL0gta1AzcGVFcVIy
VHA2S3ZXZFRRUV9FWEg3by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFN9BTANBgkqhkiG9w0BAQsFAAOC
AQEAAYsXq/xFAcF903A0dGRxcgwrEVj6ogYm4VxlnPSVTe7wpk/W1fWl9m7hQLE4
YcAVStcdNK1Tfoc0/b6+l4IUSOgqeO0h1YF3iALzy3QTyYeRvZRwkMFYAgm2gANl
U10ui6Kar8cWX5oNrrD2WZ01Q+T+4Ose/llCfuFS4fXZ/BGEv+1+LnSC29rEVFPl
hQ6MxoGj51o1IwK22RMeKvb4BTZ4QQQkj+Fa93IzM6j18uMN6XVLjIKtIDMRzADf
luXGx4XOZpNE33XQ5uuSy5Uo4u93flRj44bIXXfO9zBmATCE2tFQmsT1Ud7G9onE
JkaHp1V3gutI63+2Ert0Qp873g==
-----END CERTIFICATE-----
Generated at Wed Apr 16 14:13:55 2025 by rpki-client