Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/FYjRGhRfLdLKzujRBEqkDRUoaFM.roa
File: FYjRGhRfLdLKzujRBEqkDRUoaFM.roa (raw, json)
Hash identifier: fBsHzykn9eVnRWFk5IwZHIZHD21JFkpDpHRx1jyexvg=
Subject key identifier: 15:88:D1:1A:14:5F:2D:D2:CA:CE:E8:D1:04:4A:A4:0D:15:28:68:53
Certificate issuer: /CN=ff44dbaca56dac319401f68a50d917f5424611ad
Certificate serial: 3944A2
Authority key identifier: FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/FYjRGhRfLdLKzujRBEqkDRUoaFM.roa
Signing time: Thu 17 Feb 2022 21:46:48 +0000
ROA not before: Thu 17 Feb 2022 21:46:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 94.143.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3753122 (0x3944a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff44dbaca56dac319401f68a50d917f5424611ad
Validity
Not Before: Feb 17 21:46:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1588d11a145f2dd2cacee8d1044aa40d15286853
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8e:d8:6f:a6:5d:38:a8:71:2d:04:b8:da:ac:
ff:ff:0c:08:0c:1c:fd:4e:c2:26:7f:09:b0:9b:6a:
f7:cc:bb:44:df:d7:73:7b:12:9e:2e:d8:05:fc:8a:
65:03:ba:80:c0:f5:04:a4:48:9c:8a:d2:6e:fc:c4:
ff:55:4f:ca:09:0b:3e:68:3a:c9:1c:bb:3f:7d:ae:
c8:8b:f8:7d:47:85:d3:ed:0d:2d:b4:35:cb:2c:0a:
a6:d8:b4:ac:18:2a:53:a2:7a:c6:1f:5b:49:6e:52:
36:9d:6f:fb:3e:b5:a1:48:0c:e8:97:1e:18:3e:76:
4c:9f:a4:29:84:ca:48:13:3b:c5:36:d9:a1:92:b3:
71:8c:48:f1:2c:20:77:e1:3e:ed:7f:69:8a:0d:35:
28:2e:7d:9f:e2:27:dc:36:51:67:dd:3c:82:2b:c5:
8d:ae:c7:27:7c:75:cc:6e:e1:30:53:f8:20:37:a1:
6d:70:2d:a0:08:36:a8:65:e0:7e:35:db:6d:54:cb:
9a:a8:9b:22:ed:38:74:b6:c5:f3:51:f1:1b:6d:8c:
ec:2f:16:ac:28:e0:a6:e4:83:49:db:77:32:73:d4:
46:21:f3:04:66:ec:66:08:77:e2:17:60:ac:5a:28:
fb:50:f4:4a:af:fe:af:f6:0c:4d:68:10:e5:d2:0d:
5a:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:88:D1:1A:14:5F:2D:D2:CA:CE:E8:D1:04:4A:A4:0D:15:28:68:53
X509v3 Authority Key Identifier:
keyid:FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/FYjRGhRfLdLKzujRBEqkDRUoaFM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/_0TbrKVtrDGUAfaKUNkX9UJGEa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.143.225.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:d1:e6:12:07:8a:1b:2d:bf:31:30:c1:2b:f6:0e:69:6b:32:
ac:de:b3:6e:a5:a2:61:0b:7a:01:5c:58:7c:2e:00:cf:24:64:
82:21:de:76:90:21:75:28:c0:ca:29:23:a5:86:66:20:2a:3e:
b3:b5:e1:12:db:56:b1:c0:52:84:75:ef:27:12:a4:15:0b:ee:
9a:2a:1a:dc:ba:fe:59:18:34:c7:51:c0:23:2e:71:c5:04:79:
99:33:f7:a6:ff:32:09:0e:fc:cf:a7:64:82:11:42:86:a4:c0:
28:cf:31:7a:97:a1:99:a4:07:02:c3:50:09:ab:0c:5e:93:33:
3d:d5:c3:1b:6d:50:d5:67:06:0b:86:16:87:00:c2:d8:49:fe:
b5:d1:54:af:69:b4:3a:aa:15:b1:7c:7b:03:31:41:18:f3:e2:
9f:b6:1a:27:8e:fa:96:57:b0:0b:63:33:4c:a7:18:e2:0c:db:
36:b9:48:4c:6d:db:97:83:2f:00:20:6a:2a:4f:11:8d:31:bc:
3f:78:f5:84:ed:b3:63:69:95:7f:c1:0d:7b:51:56:1b:63:a9:
ec:b6:94:d5:96:ef:42:50:f4:ab:44:e3:57:45:f5:a2:1a:56:
97:37:7c:31:78:10:cd:c5:78:12:d4:47:f7:1d:09:db:66:db:
55:45:81:c8
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDOUSiMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGZm
NDRkYmFjYTU2ZGFjMzE5NDAxZjY4YTUwZDkxN2Y1NDI0NjExYWQwHhcNMjIwMjE3
MjE0NjQ4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygxNTg4ZDExYTE0NWYy
ZGQyY2FjZWU4ZDEwNDRhYTQwZDE1Mjg2ODUzMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAtY7Yb6ZdOKhxLQS42qz//wwIDBz9TsImfwmwm2r3zLtE39dz
exKeLtgF/IplA7qAwPUEpEicitJu/MT/VU/KCQs+aDrJHLs/fa7Ii/h9R4XT7Q0t
tDXLLAqm2LSsGCpTonrGH1tJblI2nW/7PrWhSAzolx4YPnZMn6QphMpIEzvFNtmh
krNxjEjxLCB34T7tf2mKDTUoLn2f4ifcNlFn3TyCK8WNrscnfHXMbuEwU/ggN6Ft
cC2gCDaoZeB+NdttVMuaqJsi7Th0tsXzUfEbbYzsLxasKOCm5INJ23cyc9RGIfME
ZuxmCHfiF2CsWij7UPRKr/6v9gxNaBDl0g1aUQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFBWI0RoUXy3Sys7o0QRKpA0VKGhTMB8GA1UdIwQYMBaAFP9E26ylbawxlAH2
ilDZF/VCRhGtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
XzBUYnJLVnRyREdVQWZhS1VOa1g5VUpHRWEwLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC80Zi81M2E5NDctZmQwMy00MDE0LTk4MjctYzVkODk1MDgxOGVjLzEv
RllqUkdoUmZMZExLenVqUkJFcWtEUlVvYUZNLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi81
M2E5NDctZmQwMy00MDE0LTk4MjctYzVkODk1MDgxOGVjLzEvXzBUYnJLVnRyREdV
QWZhS1VOa1g5VUpHRWEwLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXo/hMA0GCSqGSIb3DQEBCwUAA4IB
AQCO0eYSB4obLb8xMMEr9g5pazKs3rNupaJhC3oBXFh8LgDPJGSCId52kCF1KMDK
KSOlhmYgKj6zteES21axwFKEde8nEqQVC+6aKhrcuv5ZGDTHUcAjLnHFBHmZM/em
/zIJDvzPp2SCEUKGpMAozzF6l6GZpAcCw1AJqwxekzM91cMbbVDVZwYLhhaHAMLY
Sf610VSvabQ6qhWxfHsDMUEY8+KfthonjvqWV7ALYzNMpxjiDNs2uUhMbduXgy8A
IGoqTxGNMbw/ePWE7bNjaZV/wQ17UVYbY6nstpTVlu9CUPSrRONXRfWiGlaXN3wx
eBDNxXgS1Ef3HQnbZttVRYHI
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:09:59 2025 by rpki-client