Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/729e1c-1cc0-427e-8f00-4b6fc7c06ae5/1/1-7hlBgZ7xlj5eH2cZa-Bn8e9LVE.roa
File: 1-7hlBgZ7xlj5eH2cZa-Bn8e9LVE.roa (raw, json)
Hash identifier: GEmeRweCO8immVNulGcX0iUqgnjDhCMS6EtBAi7O5j0=
Subject key identifier: FB:B8:65:06:06:7B:C6:58:F9:78:7D:9C:65:AF:81:9F:C7:BD:2D:51
Certificate issuer: /CN=27b8abac20a598cca4b12f5d755d8e89321f4ec9
Certificate serial: F6DB33
Authority key identifier: 27:B8:AB:AC:20:A5:98:CC:A4:B1:2F:5D:75:5D:8E:89:32:1F:4E:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J7irrCClmMyksS9ddV2OiTIfTsk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/729e1c-1cc0-427e-8f00-4b6fc7c06ae5/1/1-7hlBgZ7xlj5eH2cZa-Bn8e9LVE.roa
Signing time: Sat 01 Jan 2022 07:01:47 +0000
ROA not before: Sat 01 Jan 2022 07:01:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199015
IP address blocks: 91.217.54.0/23 maxlen: 24
195.20.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16177971 (0xf6db33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27b8abac20a598cca4b12f5d755d8e89321f4ec9
Validity
Not Before: Jan 1 07:01:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fbb86506067bc658f9787d9c65af819fc7bd2d51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:43:f8:19:f2:f3:70:3a:9a:ad:36:31:3d:6c:
75:b3:eb:34:b2:4b:7c:11:c9:90:48:a9:a6:43:43:
07:40:7b:54:bd:55:00:59:f4:8c:90:51:f1:06:16:
ea:9a:44:ea:e2:a7:c8:eb:97:a0:60:c1:50:ac:07:
1b:4c:65:1c:36:e2:1a:79:20:3a:14:e6:09:f2:19:
f5:d5:df:86:41:2c:ff:4c:73:09:49:ad:5b:c4:57:
dc:2f:7c:bf:f3:1f:3c:bb:61:b2:46:7a:02:26:75:
e4:b6:a6:2f:46:ae:a5:d6:0c:3d:8b:14:83:23:66:
74:e8:61:e3:40:af:fe:cb:05:0c:88:24:ca:1b:f5:
cb:40:0e:0e:3c:9e:e3:ab:88:c0:f0:8a:c1:5e:9f:
3a:b7:fb:7e:69:34:6c:e2:3d:0c:ac:ff:d5:cb:6b:
9c:6d:91:a0:1e:46:5f:fb:84:4b:2a:32:04:99:cc:
0a:7a:3f:d0:ce:83:29:d7:b4:a7:68:eb:5d:dc:c7:
8a:fe:a3:bc:6f:54:13:bc:36:be:07:e5:28:32:36:
ea:dc:0a:76:c7:62:ef:80:f7:d8:48:9e:d3:d4:a2:
2c:2b:cd:f1:53:4e:a6:1a:44:93:9a:7c:2e:d7:9b:
3a:20:d7:9e:00:20:b5:64:41:9c:ee:f1:14:bf:ad:
ce:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:B8:65:06:06:7B:C6:58:F9:78:7D:9C:65:AF:81:9F:C7:BD:2D:51
X509v3 Authority Key Identifier:
keyid:27:B8:AB:AC:20:A5:98:CC:A4:B1:2F:5D:75:5D:8E:89:32:1F:4E:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J7irrCClmMyksS9ddV2OiTIfTsk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/729e1c-1cc0-427e-8f00-4b6fc7c06ae5/1/1-7hlBgZ7xlj5eH2cZa-Bn8e9LVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/729e1c-1cc0-427e-8f00-4b6fc7c06ae5/1/J7irrCClmMyksS9ddV2OiTIfTsk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.54.0/23
195.20.158.0/24
Signature Algorithm: sha256WithRSAEncryption
55:a6:25:ec:49:20:27:72:dc:f4:b7:03:f2:37:c0:3c:97:44:
c9:a5:a8:99:17:92:77:81:20:0b:07:6f:bb:41:5a:a5:22:86:
99:c2:9b:c4:5c:1d:2e:a9:61:15:58:74:ca:75:aa:a8:a8:00:
8d:a7:dc:53:5c:d6:6d:35:cb:ec:96:8f:3e:cc:56:96:44:c1:
b0:6a:f2:cf:b4:44:23:e8:e9:61:b9:47:5a:5a:64:1f:0b:52:
29:ef:ea:eb:1a:f6:0f:dd:e3:fb:29:15:1f:d9:28:3f:bd:fc:
a0:0d:d8:ed:b5:77:08:fe:ea:07:18:c3:16:5d:6b:1f:69:38:
d1:1c:9d:22:d3:55:ab:42:27:f1:98:b9:20:e9:e3:3b:08:29:
45:7e:f7:65:cd:4f:55:19:57:c4:d8:81:d0:4c:eb:86:ab:ad:
a1:2f:41:a7:e9:8a:c3:69:12:33:0a:ee:80:59:47:3e:3a:d4:
df:ea:61:7f:0f:32:c9:95:aa:59:f1:96:ff:dd:8e:72:fe:52:
71:c2:b2:57:3c:b8:17:4e:32:90:f1:7d:b8:e2:38:b8:e5:0c:
6e:d0:35:0f:5c:7e:5e:b1:96:46:f8:df:a3:cf:21:91:c0:75:
ac:9c:80:aa:86:60:29:2e:80:5f:ec:9c:b4:be:7f:c9:7f:cd:
1d:73:d5:4a
-----BEGIN CERTIFICATE-----
MIIE9jCCA96gAwIBAgIEAPbbMzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
N2I4YWJhYzIwYTU5OGNjYTRiMTJmNWQ3NTVkOGU4OTMyMWY0ZWM5MB4XDTIyMDEw
MTA3MDE0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmJiODY1MDYwNjdi
YzY1OGY5Nzg3ZDljNjVhZjgxOWZjN2JkMmQ1MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM5D+Bny83A6mq02MT1sdbPrNLJLfBHJkEippkNDB0B7VL1V
AFn0jJBR8QYW6ppE6uKnyOuXoGDBUKwHG0xlHDbiGnkgOhTmCfIZ9dXfhkEs/0xz
CUmtW8RX3C98v/MfPLthskZ6AiZ15LamL0aupdYMPYsUgyNmdOhh40Cv/ssFDIgk
yhv1y0AODjye46uIwPCKwV6fOrf7fmk0bOI9DKz/1ctrnG2RoB5GX/uESyoyBJnM
Cno/0M6DKde0p2jrXdzHiv6jvG9UE7w2vgflKDI26twKdsdi74D32Eie09SiLCvN
8VNOphpEk5p8LtebOiDXngAgtWRBnO7xFL+tzvUCAwEAAaOCAhAwggIMMB0GA1Ud
DgQWBBT7uGUGBnvGWPl4fZxlr4Gfx70tUTAfBgNVHSMEGDAWgBQnuKusIKWYzKSx
L111XY6JMh9OyTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0o3aXJyQ0NsbU15a3NTOWRkVjJPaVRJZlRzay5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGYvNzI5ZTFjLTFjYzAtNDI3ZS04ZjAwLTRiNmZjN2MwNmFlNS8x
LzEtN2hsQmdaN3hsajVlSDJjWmEtQm44ZTlMVkUucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzBm
LzcyOWUxYy0xY2MwLTQyN2UtOGYwMC00YjZmYzdjMDZhZTUvMS9KN2lyckNDbG1N
eWtzUzlkZFYyT2lUSWZUc2suY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
JQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwDBAFb2TYDBADDFJ4wDQYJKoZIhvcN
AQELBQADggEBAFWmJexJICdy3PS3A/I3wDyXRMmlqJkXkneBIAsHb7tBWqUihpnC
m8RcHS6pYRVYdMp1qqioAI2n3FNc1m01y+yWjz7MVpZEwbBq8s+0RCPo6WG5R1pa
ZB8LUinv6usa9g/d4/spFR/ZKD+9/KAN2O21dwj+6gcYwxZdax9pONEcnSLTVatC
J/GYuSDp4zsIKUV+92XNT1UZV8TYgdBM64arraEvQafpisNpEjMK7oBZRz461N/q
YX8PMsmVqlnxlv/djnL+UnHCslc8uBdOMpDxfbjiOLjlDG7QNQ9cfl6xlkb436PP
IZHAdaycgKqGYCkugF/snLS+f8l/zR1z1Uo=
-----END CERTIFICATE-----
Generated at Mon Apr 21 05:33:58 2025 by rpki-client