Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/9c27e4-d7b1-43c1-a38f-94914f5ddb3c/1/foMhvrSt3Op9aGZSkJ-mnmyxaZs.roa
File: foMhvrSt3Op9aGZSkJ-mnmyxaZs.roa (raw, json)
Hash identifier: wBhZcL+n7Ey//FSJ0aS1kVcFalxXymdcCH0VQawKaUA=
Subject key identifier: 7E:83:21:BE:B4:AD:DC:EA:7D:68:66:52:90:9F:A6:9E:6C:B1:69:9B
Certificate issuer: /CN=320b24a740f2e61632050adc146c1ee6a3e686c5
Certificate serial: 341B3106
Authority key identifier: 32:0B:24:A7:40:F2:E6:16:32:05:0A:DC:14:6C:1E:E6:A3:E6:86:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mgskp0Dy5hYyBQrcFGwe5qPmhsU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/9c27e4-d7b1-43c1-a38f-94914f5ddb3c/1/foMhvrSt3Op9aGZSkJ-mnmyxaZs.roa
Signing time: Sat 01 Jan 2022 09:03:09 +0000
ROA not before: Sat 01 Jan 2022 09:03:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3241
IP address blocks: 5.179.30.0/24 maxlen: 24
5.179.31.0/24 maxlen: 24
5.179.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 874197254 (0x341b3106)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=320b24a740f2e61632050adc146c1ee6a3e686c5
Validity
Not Before: Jan 1 09:03:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e8321beb4addcea7d686652909fa69e6cb1699b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:19:ff:8c:8e:9c:2c:1d:10:10:aa:ba:57:19:
a8:07:e6:2f:d1:e7:46:22:c9:81:d2:24:b0:5c:76:
5c:96:4b:a2:4d:01:59:e4:da:a7:6c:66:75:6e:b0:
4e:12:1b:d8:e0:34:d7:0a:d5:7e:17:cb:9f:c9:68:
63:24:8c:aa:6f:64:9e:f8:e2:98:b8:26:81:7f:55:
c5:9c:75:cd:e6:2f:e3:86:a5:b7:d6:a5:35:39:58:
a0:21:cb:54:6b:b8:84:22:0b:55:e7:40:81:ae:94:
a0:79:0c:2f:15:db:21:5a:c5:a1:7b:98:85:6b:9b:
12:25:c9:f9:88:67:d8:29:5b:f0:8b:3b:7e:53:a2:
c4:84:da:b2:9a:da:17:9b:b1:c5:d2:32:98:d6:ca:
f4:c4:53:44:e8:78:28:a7:10:f8:cd:6a:30:57:88:
98:6e:af:26:0e:80:42:1d:a4:26:eb:35:06:79:3e:
83:3c:36:52:be:62:03:31:d5:4f:d4:f9:02:a5:34:
55:41:e7:6b:5a:64:1c:91:00:f2:e7:36:d3:98:c1:
fc:e5:cb:0f:84:74:b2:f1:1f:a6:95:6e:db:6d:b1:
a3:ce:72:2e:e5:1c:9f:6c:56:eb:b6:c7:76:48:9e:
e8:60:97:96:89:d1:55:1e:e1:31:90:35:ec:eb:10:
e7:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:83:21:BE:B4:AD:DC:EA:7D:68:66:52:90:9F:A6:9E:6C:B1:69:9B
X509v3 Authority Key Identifier:
keyid:32:0B:24:A7:40:F2:E6:16:32:05:0A:DC:14:6C:1E:E6:A3:E6:86:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mgskp0Dy5hYyBQrcFGwe5qPmhsU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/9c27e4-d7b1-43c1-a38f-94914f5ddb3c/1/foMhvrSt3Op9aGZSkJ-mnmyxaZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/9c27e4-d7b1-43c1-a38f-94914f5ddb3c/1/Mgskp0Dy5hYyBQrcFGwe5qPmhsU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.179.29.0-5.179.31.255
Signature Algorithm: sha256WithRSAEncryption
a7:c0:37:44:70:d4:5e:80:81:4c:27:04:06:10:5d:47:ab:70:
bc:54:af:8c:d2:44:f7:a4:05:ab:9f:bc:21:94:a8:5e:67:86:
ec:db:c6:8b:aa:1a:c0:2f:47:64:b4:66:ce:2c:22:6d:d0:82:
ec:6f:de:c7:dd:50:39:c3:d7:e5:7d:33:4e:d0:87:d4:91:e2:
2a:64:8b:fc:42:11:84:56:43:9f:01:48:5e:27:bb:c5:84:0a:
8e:a0:7b:40:3b:f8:ca:99:66:e5:e2:af:b2:8c:d9:ea:1e:ea:
de:ed:99:7c:c2:23:36:13:87:c6:62:fc:c8:da:78:cb:cc:98:
b0:9f:f9:04:c0:ec:8f:ba:94:73:e5:52:13:1e:f3:d6:97:ad:
6d:3a:19:54:c0:f9:33:cf:95:22:e6:d2:a3:e2:6a:c1:c7:43:
d0:0b:e1:6f:83:64:4f:d7:8b:14:7a:d2:3e:d1:00:eb:af:dd:
a9:d1:45:da:5d:95:98:85:92:23:eb:a5:22:b2:d6:57:3b:48:
7e:6b:e3:c5:22:f7:ae:62:8d:46:40:40:88:7e:fe:42:b0:11:
4e:73:f0:bf:ce:cd:58:6a:31:5c:66:0a:2d:82:b7:8e:41:f3:
50:f6:ac:29:3e:8e:83:e3:5a:4d:f4:a8:cf:9b:31:3f:0f:12:
59:b4:b8:1b
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIENBsxBjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
MjBiMjRhNzQwZjJlNjE2MzIwNTBhZGMxNDZjMWVlNmEzZTY4NmM1MB4XDTIyMDEw
MTA5MDMwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2U4MzIxYmViNGFk
ZGNlYTdkNjg2NjUyOTA5ZmE2OWU2Y2IxNjk5YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL0Z/4yOnCwdEBCqulcZqAfmL9HnRiLJgdIksFx2XJZLok0B
WeTap2xmdW6wThIb2OA01wrVfhfLn8loYySMqm9knvjimLgmgX9VxZx1zeYv44al
t9alNTlYoCHLVGu4hCILVedAga6UoHkMLxXbIVrFoXuYhWubEiXJ+Yhn2Clb8Is7
flOixITaspraF5uxxdIymNbK9MRTROh4KKcQ+M1qMFeImG6vJg6AQh2kJus1Bnk+
gzw2Ur5iAzHVT9T5AqU0VUHna1pkHJEA8uc205jB/OXLD4R0svEfppVu222xo85y
LuUcn2xW67bHdkie6GCXlonRVR7hMZA17OsQ5wECAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBR+gyG+tK3c6n1oZlKQn6aebLFpmzAfBgNVHSMEGDAWgBQyCySnQPLmFjIF
CtwUbB7mo+aGxTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L01nc2twMER5NWhZeUJRcmNGR3dlNXFQbWhzVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDcvOWMyN2U0LWQ3YjEtNDNjMS1hMzhmLTk0OTE0ZjVkZGIzYy8x
L2ZvTWh2clN0M09wOWFHWlNrSi1tbm15eGFacy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDcv
OWMyN2U0LWQ3YjEtNDNjMS1hMzhmLTk0OTE0ZjVkZGIzYy8xL01nc2twMER5NWhZ
eUJRcmNGR3dlNXFQbWhzVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQABbMdAwQFBbMAMA0GCSqGSIb3
DQEBCwUAA4IBAQCnwDdEcNRegIFMJwQGEF1Hq3C8VK+M0kT3pAWrn7whlKheZ4bs
28aLqhrAL0dktGbOLCJt0ILsb97H3VA5w9flfTNO0IfUkeIqZIv8QhGEVkOfAUhe
J7vFhAqOoHtAO/jKmWbl4q+yjNnqHure7Zl8wiM2E4fGYvzI2njLzJiwn/kEwOyP
upRz5VITHvPWl61tOhlUwPkzz5Ui5tKj4mrBx0PQC+Fvg2RP14sUetI+0QDrr92p
0UXaXZWYhZIj66UistZXO0h+a+PFIveuYo1GQECIfv5CsBFOc/C/zs1YajFcZgot
greOQfNQ9qwpPo6D41pN9KjPmzE/DxJZtLgb
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:05:26 2025 by rpki-client