Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/5WJBFqsRcb6iYmsUZ5RdrCdUMzU.roa
File: 5WJBFqsRcb6iYmsUZ5RdrCdUMzU.roa (raw, json)
Hash identifier: 2SF3+U4oMQeX1U13ZmdBQlSin+9dRm+5wJ8YhMAEeyw=
Subject key identifier: E5:62:41:16:AB:11:71:BE:A2:62:6B:14:67:94:5D:AC:27:54:33:35
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0188C393847E024DE74BB8B01B353AE50873
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/5WJBFqsRcb6iYmsUZ5RdrCdUMzU.roa
Signing time: Fri 16 Jun 2023 09:40:04 +0000
ROA not before: Fri 16 Jun 2023 09:40:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50516
IP address blocks: 146.158.12.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c3:93:84:7e:02:4d:e7:4b:b8:b0:1b:35:3a:e5:08:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jun 16 09:40:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e5624116ab1171bea2626b1467945dac27543335
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f7:84:04:bf:c2:c7:84:6e:4d:91:ec:26:52:
2a:49:a4:54:30:87:c2:37:fc:00:fd:3f:ef:ba:21:
5d:95:3a:0a:b9:cb:9f:7f:fe:4f:66:0d:df:01:f0:
d8:70:8c:fd:01:9b:a4:3c:34:1f:41:57:69:99:f0:
52:f2:e6:83:2c:fb:d2:59:3e:e9:4b:c5:bc:8d:a5:
1b:e6:d6:81:ea:b3:be:24:c6:d5:78:c8:3d:a5:3a:
81:e0:a1:3e:c8:f7:44:2b:73:66:6c:76:8e:72:6c:
0a:89:33:db:74:f1:61:2d:f9:8d:81:ae:ef:70:35:
5b:78:96:7b:ca:1e:fe:08:34:e0:df:bf:2d:f6:8f:
40:bb:fa:6d:9c:d4:2e:6f:ae:81:4b:b0:3f:e4:c0:
ab:53:94:8c:f4:c5:a5:2d:da:d7:b2:af:c7:68:ac:
6c:dd:16:65:8b:bb:dd:1d:d5:34:b7:69:72:2e:ef:
5a:9a:54:b0:55:49:68:62:5a:54:4e:4b:73:e2:33:
6f:d2:59:b9:1c:70:7f:91:4a:1f:5e:66:6d:0c:86:
f4:38:32:8b:48:d5:26:66:92:d0:d9:6d:72:01:d2:
b8:c3:da:8e:64:de:f8:5f:fe:e3:a8:51:84:98:7f:
fe:91:ff:72:e1:3c:cb:c9:35:11:90:4b:81:0c:e8:
72:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:62:41:16:AB:11:71:BE:A2:62:6B:14:67:94:5D:AC:27:54:33:35
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/5WJBFqsRcb6iYmsUZ5RdrCdUMzU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.158.12.0/23
Signature Algorithm: sha256WithRSAEncryption
7c:41:1d:df:06:91:ea:3a:76:52:50:a4:b6:bf:d3:da:64:95:
3d:25:02:9e:2c:c0:1c:46:01:d8:02:ba:c6:57:e4:04:34:87:
e6:6e:e3:d0:6e:cc:f7:c6:b4:e3:88:8a:9b:0e:8b:d3:90:57:
9d:ed:cd:fc:a1:df:6f:c3:d1:a9:6b:56:3a:69:7c:a3:02:ea:
b7:41:86:ce:5d:fc:7a:77:5a:1f:5a:4e:d0:15:5a:5b:06:a3:
cd:5c:fc:5c:82:8b:f0:c1:3b:c2:cc:fb:6b:67:1f:81:89:3b:
44:ca:d1:c9:e1:65:13:6c:0d:1c:65:0e:ee:35:a2:04:1a:f0:
15:23:e7:b7:ee:48:a5:1d:bc:83:01:9d:83:c1:74:47:78:10:
5e:b1:c5:82:2b:88:4e:8d:c1:17:d1:bb:8b:7a:82:03:3f:fe:
57:b9:ee:1d:13:4a:53:dc:35:42:9d:d7:93:3c:56:06:41:7b:
eb:85:6f:2a:c1:51:54:92:48:97:8a:2f:e9:81:1f:3d:53:a6:
42:3e:9b:ec:97:5d:e4:da:fd:dd:97:9a:12:e3:d8:ea:51:50:
75:ad:24:7e:1e:27:de:4d:e0:c5:de:b4:b3:d5:d9:10:c0:31:
ec:41:a1:dc:1d:8e:0a:b8:9b:12:87:25:24:75:94:76:24:22:
db:00:5b:fa
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYjDk4R+Ak3nS7iwGzU65QhzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh
YWVmNDIwHhcNMjMwNjE2MDk0MDA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNTYyNDExNmFiMTE3MWJlYTI2MjZiMTQ2Nzk0NWRhYzI3NTQzMzM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw/eEBL/Cx4RuTZHsJlIqSaRUMIfC
N/wA/T/vuiFdlToKucuff/5PZg3fAfDYcIz9AZukPDQfQVdpmfBS8uaDLPvSWT7p
S8W8jaUb5taB6rO+JMbVeMg9pTqB4KE+yPdEK3NmbHaOcmwKiTPbdPFhLfmNga7v
cDVbeJZ7yh7+CDTg378t9o9Au/ptnNQub66BS7A/5MCrU5SM9MWlLdrXsq/HaKxs
3RZli7vdHdU0t2lyLu9amlSwVUloYlpUTktz4jNv0lm5HHB/kUofXmZtDIb0ODKL
SNUmZpLQ2W1yAdK4w9qOZN74X/7jqFGEmH/+kf9y4TzLyTURkEuBDOhyswIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOViQRarEXG+omJrFGeUXawnVDM1MB8GA1UdIwQY
MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt
MDYyYzY5MzNhYmVkLzEvNVdKQkZxc1JjYjZpWW1zVVo1UmRyQ2RVTXpVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk
LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBkp4MMA0G
CSqGSIb3DQEBCwUAA4IBAQB8QR3fBpHqOnZSUKS2v9PaZJU9JQKeLMAcRgHYArrG
V+QENIfmbuPQbsz3xrTjiIqbDovTkFed7c38od9vw9Gpa1Y6aXyjAuq3QYbOXfx6
d1ofWk7QFVpbBqPNXPxcgovwwTvCzPtrZx+BiTtEytHJ4WUTbA0cZQ7uNaIEGvAV
I+e37kilHbyDAZ2DwXRHeBBescWCK4hOjcEX0buLeoIDP/5Xue4dE0pT3DVCndeT
PFYGQXvrhW8qwVFUkkiXii/pgR89U6ZCPpvsl13k2v3dl5oS49jqUVB1rSR+Hife
TeDF3rSz1dkQwDHsQaHcHY4KuJsShyUkdZR2JCLbAFv6
-----END CERTIFICATE-----
Generated at Mon Apr 7 23:53:33 2025 by rpki-client