Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/F1Pu7ynvTDrky_ZMNYCAekl-QJc.roa
File: F1Pu7ynvTDrky_ZMNYCAekl-QJc.roa (raw, json)
Hash identifier: C/j0BpGe/E6b8H/3iFBJqxSvy5+i2JGZnixGbPZ+9bs=
Subject key identifier: 17:53:EE:EF:29:EF:4C:3A:E4:CB:F6:4C:35:80:80:7A:49:7E:40:97
Certificate issuer: /CN=e501815c6f98f3a2b6184afebf18ea341be882ea
Certificate serial: 38201131
Authority key identifier: E5:01:81:5C:6F:98:F3:A2:B6:18:4A:FE:BF:18:EA:34:1B:E8:82:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5QGBXG-Y86K2GEr-vxjqNBvoguo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/F1Pu7ynvTDrky_ZMNYCAekl-QJc.roa
Signing time: Wed 12 Jan 2022 14:11:20 +0000
ROA not before: Wed 12 Jan 2022 14:11:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15755
IP address blocks: 185.96.171.0/24 maxlen: 24
2a0a:e0c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 941625649 (0x38201131)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e501815c6f98f3a2b6184afebf18ea341be882ea
Validity
Not Before: Jan 12 14:11:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1753eeef29ef4c3ae4cbf64c3580807a497e4097
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:07:54:ce:80:79:7b:13:ef:cf:e2:6c:d8:c5:
78:bf:38:ea:1a:c5:79:20:61:1d:81:ca:fc:f0:02:
fc:eb:fa:e3:95:16:c8:20:13:0b:55:6d:29:bb:b7:
b1:3f:df:6a:8c:da:34:57:a3:20:37:ad:8e:c6:e6:
5b:f2:87:89:37:90:b1:16:b9:ff:47:ef:d1:91:35:
b7:3f:b6:a7:7a:41:e0:f2:ab:c8:22:c6:82:54:27:
27:1a:11:44:58:33:64:60:19:1a:4f:20:ea:53:5f:
af:82:de:f8:4d:a9:19:d4:56:e9:d9:db:b8:b4:95:
c8:80:9a:97:c9:01:da:b4:b7:36:42:45:5c:91:da:
6c:ee:b3:ac:44:a1:ac:7d:6d:38:41:c3:c1:6e:6f:
4b:25:1e:d7:0c:51:5c:cb:30:4c:aa:d9:90:b3:c3:
52:d5:a7:9e:a7:57:5b:20:ab:60:4f:4d:93:f8:f4:
5f:17:aa:ad:8d:2e:b8:5e:1c:86:60:8e:ef:8f:00:
9e:6c:84:b4:c7:d4:5c:45:4c:b6:ad:b4:07:bc:4b:
d4:6a:74:69:d9:84:9e:bd:21:0d:ca:6a:d0:38:4f:
60:b6:79:94:de:ad:47:eb:6b:b8:56:32:28:20:b0:
03:ce:a3:9f:1d:f5:53:7d:a1:02:02:93:1d:91:39:
63:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:53:EE:EF:29:EF:4C:3A:E4:CB:F6:4C:35:80:80:7A:49:7E:40:97
X509v3 Authority Key Identifier:
keyid:E5:01:81:5C:6F:98:F3:A2:B6:18:4A:FE:BF:18:EA:34:1B:E8:82:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5QGBXG-Y86K2GEr-vxjqNBvoguo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/F1Pu7ynvTDrky_ZMNYCAekl-QJc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/5QGBXG-Y86K2GEr-vxjqNBvoguo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.96.171.0/24
IPv6:
2a0a:e0c0::/29
Signature Algorithm: sha256WithRSAEncryption
a1:d0:b9:40:17:f5:d6:78:0a:b0:48:96:10:5c:bc:77:5a:c9:
8b:26:4b:d0:7a:7a:48:7d:fd:5c:be:29:5a:4b:d9:75:b7:48:
10:f3:c0:2b:84:95:b9:4e:99:99:56:b9:b9:c8:8b:6d:5b:d1:
c7:46:a8:8a:ae:9f:e6:bb:89:dd:75:65:e3:e5:85:de:65:a5:
9c:fe:cc:40:05:66:4d:bc:dd:55:d9:c7:18:45:fc:3c:1b:fa:
94:69:fb:eb:f6:d2:fb:7d:d8:dc:f0:b5:2e:e5:1b:9b:6f:24:
9e:0c:30:fc:35:a1:cc:7c:24:11:82:6a:cc:b1:22:c2:c0:5a:
74:27:35:e6:77:81:20:5c:07:9a:d2:49:0a:db:89:60:4e:ac:
2d:2e:7e:a7:da:c1:52:e2:52:ac:96:9a:05:20:6b:33:2e:4f:
cf:bd:b2:cb:12:cf:0e:bd:df:f2:ff:80:ce:6c:75:20:96:28:
67:4f:59:a6:03:cc:eb:44:c8:31:2b:64:1c:90:72:48:5e:a5:
a3:0e:b1:69:0f:c5:10:e8:50:0f:c9:10:e2:23:c8:f9:e5:52:
d4:46:d2:13:10:b0:3c:b7:7a:ed:1c:38:94:cb:84:e5:31:01:
04:d2:17:16:b2:42:ad:67:0b:ca:81:0e:97:d4:f3:49:bb:64:
92:09:83:66
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEOCARMTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
NTAxODE1YzZmOThmM2EyYjYxODRhZmViZjE4ZWEzNDFiZTg4MmVhMB4XDTIyMDEx
MjE0MTEyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTc1M2VlZWYyOWVm
NGMzYWU0Y2JmNjRjMzU4MDgwN2E0OTdlNDA5NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJIHVM6AeXsT78/ibNjFeL846hrFeSBhHYHK/PAC/Ov645UW
yCATC1VtKbu3sT/faozaNFejIDetjsbmW/KHiTeQsRa5/0fv0ZE1tz+2p3pB4PKr
yCLGglQnJxoRRFgzZGAZGk8g6lNfr4Le+E2pGdRW6dnbuLSVyICal8kB2rS3NkJF
XJHabO6zrEShrH1tOEHDwW5vSyUe1wxRXMswTKrZkLPDUtWnnqdXWyCrYE9Nk/j0
XxeqrY0uuF4chmCO748AnmyEtMfUXEVMtq20B7xL1Gp0admEnr0hDcpq0DhPYLZ5
lN6tR+truFYyKCCwA86jnx31U32hAgKTHZE5YxECAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBQXU+7vKe9MOuTL9kw1gIB6SX5AlzAfBgNVHSMEGDAWgBTlAYFcb5jzorYY
Sv6/GOo0G+iC6jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzVRR0JYRy1ZODZLMkdFci12eGpxTkJ2b2d1by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWMvNWIwMjIyLWVkNjQtNGY1NS1iNDViLTAwNTlmNzM3ZWYwNS8x
L0YxUHU3eW52VERya3lfWk1OWUNBZWtsLVFKYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWMv
NWIwMjIyLWVkNjQtNGY1NS1iNDViLTAwNTlmNzM3ZWYwNS8xLzVRR0JYRy1ZODZL
MkdFci12eGpxTkJ2b2d1by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEALlgqzANBAIAAjAHAwUDKgrgwDAN
BgkqhkiG9w0BAQsFAAOCAQEAodC5QBf11ngKsEiWEFy8d1rJiyZL0Hp6SH39XL4p
WkvZdbdIEPPAK4SVuU6ZmVa5uciLbVvRx0aoiq6f5ruJ3XVl4+WF3mWlnP7MQAVm
TbzdVdnHGEX8PBv6lGn76/bS+33Y3PC1LuUbm28kngww/DWhzHwkEYJqzLEiwsBa
dCc15neBIFwHmtJJCtuJYE6sLS5+p9rBUuJSrJaaBSBrMy5Pz72yyxLPDr3f8v+A
zmx1IJYoZ09ZpgPM60TIMStkHJBySF6low6xaQ/FEOhQD8kQ4iPI+eVS1EbSExCw
PLd67Rw4lMuE5TEBBNIXFrJCrWcLyoEOl9TzSbtkkgmDZg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:45 2023 by rpki-client on console-ams.rpki-client.org