Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/5VTyuVraxtLVgcpHs3hGQmZ2XKo.roa
File: 5VTyuVraxtLVgcpHs3hGQmZ2XKo.roa (raw, json)
Hash identifier: jvdMaDekg9mcJuRPOEoptRmJQ5aNgeUjbfoPYfds3Ok=
Subject key identifier: E5:54:F2:B9:5A:DA:C6:D2:D5:81:CA:47:B3:78:46:42:66:76:5C:AA
Certificate issuer: /CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Certificate serial: 33222649
Authority key identifier: BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/5VTyuVraxtLVgcpHs3hGQmZ2XKo.roa
Signing time: Sat 01 Jan 2022 10:59:08 +0000
ROA not before: Sat 01 Jan 2022 10:59:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42232
IP address blocks: 213.163.9.0/24 maxlen: 24
91.83.112.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 857876041 (0x33222649)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Validity
Not Before: Jan 1 10:59:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e554f2b95adac6d2d581ca47b378464266765caa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:1d:10:1b:36:1b:ea:3b:72:23:04:3f:dd:7a:
17:a8:6e:8b:26:a0:dd:67:99:0c:0e:36:b8:3b:f9:
4b:e3:ec:22:2f:fd:36:ea:ca:20:88:7b:82:44:a7:
9d:f2:2c:8e:c5:f0:18:d8:bf:23:74:40:13:40:2a:
d7:7f:7c:6c:d5:32:22:49:f5:73:23:8a:83:33:b8:
9e:29:82:65:50:8b:26:a3:61:0e:83:23:fd:b8:ef:
3a:fe:d7:59:5c:e3:34:c2:73:89:77:d0:4a:81:f8:
46:f9:6c:2e:21:a1:dd:fb:da:50:44:80:d8:30:bf:
8b:ff:e8:ca:2d:b7:64:2a:7a:26:94:3f:db:84:3c:
ff:f3:47:49:f2:66:33:db:37:43:da:58:a1:a0:78:
dc:22:de:35:17:9b:da:ba:49:ca:1e:91:68:8f:b8:
b3:bf:cb:44:d9:ac:ad:fb:eb:30:ca:e4:7d:62:ce:
4c:d8:7e:ea:bc:06:5c:46:6c:f6:80:89:3c:61:b0:
1a:7c:ac:0f:aa:9d:42:58:da:f8:6d:90:01:3f:1b:
ac:56:2a:5a:cf:6d:5e:fe:e2:06:9e:2c:35:2f:01:
37:11:f1:34:b5:28:63:a5:5c:26:68:04:45:12:c7:
dc:cf:24:e6:65:cb:ab:d7:12:9b:74:5b:0a:56:b1:
62:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:54:F2:B9:5A:DA:C6:D2:D5:81:CA:47:B3:78:46:42:66:76:5C:AA
X509v3 Authority Key Identifier:
keyid:BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/5VTyuVraxtLVgcpHs3hGQmZ2XKo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.83.112.0/21
213.163.9.0/24
Signature Algorithm: sha256WithRSAEncryption
23:a1:15:1e:9a:14:52:08:04:f5:44:9a:5b:0c:6c:59:45:71:
f0:f4:c6:8e:59:85:cd:fd:53:30:8d:cc:30:04:bb:26:fa:c6:
b5:65:a4:a3:3b:d0:37:1e:f0:f0:4f:4f:e8:62:da:d4:48:1c:
95:59:f7:fe:09:7f:93:d2:80:e8:45:29:3e:4b:fa:cf:88:bf:
4c:e9:14:bf:64:0d:24:84:47:e4:25:b5:a8:3b:55:08:8b:0f:
66:aa:ec:aa:42:1a:2f:98:a4:b6:34:c0:df:df:93:96:15:fd:
48:75:8f:db:00:4a:60:a6:fa:43:8b:66:4f:49:54:90:b0:31:
05:0d:fb:68:eb:a7:66:61:ad:41:2d:9b:a2:5d:91:94:79:74:
36:af:78:ae:a4:a7:b3:ee:da:81:90:90:b7:a1:01:00:a4:ee:
09:7f:1e:19:6a:90:57:7a:66:92:77:b5:37:26:dc:7b:62:43:
aa:a5:b6:0a:80:6b:e9:84:c5:c4:03:bc:cc:58:03:d9:4f:f9:
6b:c3:b5:e4:54:bd:ba:f6:81:59:d4:51:f0:fa:51:63:31:5a:
f5:4f:69:d1:74:f7:b1:a4:a7:e2:d0:a3:34:95:59:cc:c0:ec:
ff:a7:95:e8:92:0c:fa:a3:63:9b:b6:4d:35:85:32:9e:93:cb:
1d:77:dd:89
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEMyImSTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ZmIwOTdhMzZjMjMyNWQxMDMxZmY0MDkxYmEwMGE4NjQ1OWQ0Mjg4MB4XDTIyMDEw
MTEwNTkwOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTU1NGYyYjk1YWRh
YzZkMmQ1ODFjYTQ3YjM3ODQ2NDI2Njc2NWNhYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOAdEBs2G+o7ciMEP916F6huiyag3WeZDA42uDv5S+PsIi/9
NurKIIh7gkSnnfIsjsXwGNi/I3RAE0Aq1398bNUyIkn1cyOKgzO4nimCZVCLJqNh
DoMj/bjvOv7XWVzjNMJziXfQSoH4RvlsLiGh3fvaUESA2DC/i//oyi23ZCp6JpQ/
24Q8//NHSfJmM9s3Q9pYoaB43CLeNReb2rpJyh6RaI+4s7/LRNmsrfvrMMrkfWLO
TNh+6rwGXEZs9oCJPGGwGnysD6qdQlja+G2QAT8brFYqWs9tXv7iBp4sNS8BNxHx
NLUoY6VcJmgERRLH3M8k5mXLq9cSm3RbClaxYgkCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBTlVPK5WtrG0tWBykezeEZCZnZcqjAfBgNVHSMEGDAWgBS/sJejbCMl0QMf
9AkboAqGRZ1CiDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3Y3Q1hvMndqSmRFREhfUUpHNkFLaGtXZFFvZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjcvZjJjNWU4LThkMzctNDgzOC1hMzNiLWVjYzQ5YmRjMmFkOC8x
LzVWVHl1VnJheHRMVmdjcEhzM2hHUW1aMlhLby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjcv
ZjJjNWU4LThkMzctNDgzOC1hMzNiLWVjYzQ5YmRjMmFkOC8xL3Y3Q1hvMndqSmRF
REhfUUpHNkFLaGtXZFFvZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEA1tTcAMEANWjCTANBgkqhkiG9w0B
AQsFAAOCAQEAI6EVHpoUUggE9USaWwxsWUVx8PTGjlmFzf1TMI3MMAS7JvrGtWWk
ozvQNx7w8E9P6GLa1EgclVn3/gl/k9KA6EUpPkv6z4i/TOkUv2QNJIRH5CW1qDtV
CIsPZqrsqkIaL5iktjTA39+TlhX9SHWP2wBKYKb6Q4tmT0lUkLAxBQ37aOunZmGt
QS2bol2RlHl0Nq94rqSns+7agZCQt6EBAKTuCX8eGWqQV3pmkne1Nybce2JDqqW2
CoBr6YTFxAO8zFgD2U/5a8O15FS9uvaBWdRR8PpRYzFa9U9p0XT3saSn4tCjNJVZ
zMDs/6eV6JIM+qNjm7ZNNYUynpPLHXfdiQ==
-----END CERTIFICATE-----
Generated at Thu Apr 17 01:08:12 2025 by rpki-client