Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/028937-8903-495d-bc6c-f3e915ad3802/1/ft5HhrN-l3wexDbmdRQCdGeIHtM.roa
File: ft5HhrN-l3wexDbmdRQCdGeIHtM.roa (raw, json)
Hash identifier: fHRiInKparjJdYMO231/qI8WR1KmUBGbGr/Z/JB47+I=
Subject key identifier: 7E:DE:47:86:B3:7E:97:7C:1E:C4:36:E6:75:14:02:74:67:88:1E:D3
Certificate issuer: /CN=5df27221c18fcafe74892bc0e97bf5ee7c344fa7
Certificate serial: 0182207BD7668114215BC61D854062FE6CEC
Authority key identifier: 5D:F2:72:21:C1:8F:CA:FE:74:89:2B:C0:E9:7B:F5:EE:7C:34:4F:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfJyIcGPyv50iSvA6Xv17nw0T6c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/028937-8903-495d-bc6c-f3e915ad3802/1/ft5HhrN-l3wexDbmdRQCdGeIHtM.roa
Signing time: Thu 21 Jul 2022 11:19:23 +0000
ROA not before: Thu 21 Jul 2022 11:19:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211394
IP address blocks: 193.56.9.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:20:7b:d7:66:81:14:21:5b:c6:1d:85:40:62:fe:6c:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5df27221c18fcafe74892bc0e97bf5ee7c344fa7
Validity
Not Before: Jul 21 11:19:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ede4786b37e977c1ec436e67514027467881ed3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:c2:29:b5:6d:97:79:80:cb:31:76:a7:8c:6e:
13:b9:21:24:ad:fc:02:4f:f6:2e:0e:50:69:c0:03:
63:4d:60:41:2d:7c:7c:4e:5e:12:e4:69:4e:98:2d:
d4:81:5e:ab:cf:23:e3:b7:82:2a:58:e2:45:31:7a:
5e:6f:08:28:99:c7:04:73:7b:f2:cc:41:9d:8b:29:
19:6f:69:a3:77:98:74:ad:30:a6:4a:42:82:69:02:
71:b0:d7:d7:b2:98:e0:3c:6b:b0:1e:dd:80:2c:b6:
2b:38:e8:18:4d:2f:f9:07:d8:12:58:5b:f9:29:60:
ec:87:12:f1:f7:bb:5f:99:85:64:0f:4f:7f:1d:f5:
97:c5:5a:bf:03:af:52:e1:eb:45:4d:00:a3:15:0c:
ea:2a:d9:62:87:c5:e9:cd:ee:14:b1:61:4e:c5:e6:
28:a1:7a:fb:e9:a0:6f:15:77:71:13:38:b7:dd:29:
d1:e3:96:79:95:e9:b9:34:b7:f3:97:0c:05:0e:ac:
35:81:65:b9:05:4b:ed:f7:91:35:91:62:03:27:f6:
e3:1f:eb:85:52:0f:48:ee:07:a0:8d:72:9d:f3:3f:
83:07:93:13:94:62:b8:19:90:e4:e4:56:3a:87:21:
60:e9:a0:09:41:4d:c6:b9:6e:ac:16:f1:63:46:19:
6d:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:DE:47:86:B3:7E:97:7C:1E:C4:36:E6:75:14:02:74:67:88:1E:D3
X509v3 Authority Key Identifier:
keyid:5D:F2:72:21:C1:8F:CA:FE:74:89:2B:C0:E9:7B:F5:EE:7C:34:4F:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfJyIcGPyv50iSvA6Xv17nw0T6c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/028937-8903-495d-bc6c-f3e915ad3802/1/ft5HhrN-l3wexDbmdRQCdGeIHtM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/028937-8903-495d-bc6c-f3e915ad3802/1/XfJyIcGPyv50iSvA6Xv17nw0T6c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.9.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:98:4c:74:91:3c:f1:73:e1:e9:e9:27:61:7d:a2:d7:18:d4:
a4:a8:56:87:07:43:be:9a:7a:66:19:14:4e:38:a9:00:d2:9a:
c7:ba:b4:3b:ee:ed:1a:35:8c:2e:9d:da:60:cc:26:a9:96:dc:
ff:dd:cd:31:ec:7e:d2:60:6e:d0:a8:c4:9c:b7:f3:80:a2:d0:
9e:39:2e:8f:ab:c6:25:5a:6f:cb:b1:44:5f:03:44:3b:2e:d6:
a0:48:88:1c:8d:31:56:ef:2d:15:6a:34:4d:6a:95:02:c0:82:
0c:52:34:d5:53:51:33:22:7e:8f:62:e2:7e:ee:cb:90:4e:4f:
34:68:c3:a4:a4:44:b8:34:71:d8:59:a8:e4:3a:3c:ba:10:f2:
90:03:c7:c0:dc:cb:36:25:62:24:36:f7:f6:24:42:7d:3f:7c:
73:7e:b4:34:6c:8c:c4:7a:95:45:3a:6a:a9:f0:74:7e:aa:c2:
81:ed:57:41:67:94:c0:77:40:7f:2d:46:68:ad:9c:bf:01:d6:
63:01:33:2b:79:b8:2e:1b:08:a1:df:89:6d:73:09:7e:7d:4d:
ba:d9:fb:02:19:85:ba:a6:ed:f7:ab:44:a9:ec:43:3c:b5:e7:
dd:ea:f2:c8:56:c3:eb:6d:30:05:dc:57:95:1c:06:a8:99:d2:
f1:05:49:75
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYIge9dmgRQhW8YdhUBi/mzsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkZjI3MjIxYzE4ZmNhZmU3NDg5MmJjMGU5N2JmNWVlN2Mz
NDRmYTcwHhcNMjIwNzIxMTExOTIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZWRlNDc4NmIzN2U5NzdjMWVjNDM2ZTY3NTE0MDI3NDY3ODgxZWQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj8IptW2XeYDLMXanjG4TuSEkrfwC
T/YuDlBpwANjTWBBLXx8Tl4S5GlOmC3UgV6rzyPjt4IqWOJFMXpebwgomccEc3vy
zEGdiykZb2mjd5h0rTCmSkKCaQJxsNfXspjgPGuwHt2ALLYrOOgYTS/5B9gSWFv5
KWDshxLx97tfmYVkD09/HfWXxVq/A69S4etFTQCjFQzqKtlih8Xpze4UsWFOxeYo
oXr76aBvFXdxEzi33SnR45Z5lem5NLfzlwwFDqw1gWW5BUvt95E1kWIDJ/bjH+uF
Ug9I7gegjXKd8z+DB5MTlGK4GZDk5FY6hyFg6aAJQU3GuW6sFvFjRhltpwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH7eR4azfpd8HsQ25nUUAnRniB7TMB8GA1UdIwQY
MBaAFF3yciHBj8r+dIkrwOl79e58NE+nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGZKeUljR1B5djUwaVN2QTZYdjE3bncwVDZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS8wMjg5MzctODkwMy00OTVkLWJjNmMt
ZjNlOTE1YWQzODAyLzEvZnQ1SGhyTi1sM3dleERibWRSUUNkR2VJSHRNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS8wMjg5MzctODkwMy00OTVkLWJjNmMtZjNlOTE1YWQzODAy
LzEvWGZKeUljR1B5djUwaVN2QTZYdjE3bncwVDZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwTgJMA0G
CSqGSIb3DQEBCwUAA4IBAQB6mEx0kTzxc+Hp6SdhfaLXGNSkqFaHB0O+mnpmGRRO
OKkA0prHurQ77u0aNYwundpgzCapltz/3c0x7H7SYG7QqMSct/OAotCeOS6Pq8Yl
Wm/LsURfA0Q7LtagSIgcjTFW7y0VajRNapUCwIIMUjTVU1EzIn6PYuJ+7suQTk80
aMOkpES4NHHYWajkOjy6EPKQA8fA3Ms2JWIkNvf2JEJ9P3xzfrQ0bIzEepVFOmqp
8HR+qsKB7VdBZ5TAd0B/LUZorZy/AdZjATMrebguGwih34ltcwl+fU262fsCGYW6
pu33q0Sp7EM8tefd6vLIVsPrbTAF3FeVHAaomdLxBUl1
-----END CERTIFICATE-----
Generated at Sun Mar 9 19:02:56 2025 by rpki-client