Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/FbUly86u-ssshkmUaekNrqO-CZI.roa
File: FbUly86u-ssshkmUaekNrqO-CZI.roa (raw, json)
Hash identifier: xMybONW8QUxUFnpFEHXOSDkc43OpswqmDQUdG4Q2DwM=
Subject key identifier: 15:B5:25:CB:CE:AE:FA:CB:2C:86:49:94:69:E9:0D:AE:A3:BE:09:92
Certificate issuer: /CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Certificate serial: 0890E216
Authority key identifier: E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/FbUly86u-ssshkmUaekNrqO-CZI.roa
Signing time: Sat 01 Jan 2022 03:51:00 +0000
ROA not before: Sat 01 Jan 2022 03:51:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64488
IP address blocks: 85.248.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143712790 (0x890e216)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Validity
Not Before: Jan 1 03:51:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=15b525cbceaefacb2c86499469e90daea3be0992
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:86:29:83:b5:e7:48:da:16:7b:6d:13:f9:47:
bc:00:23:b7:64:f8:54:05:06:ab:09:38:7b:ba:12:
2c:04:02:10:f6:de:53:9f:00:ff:61:de:6c:f6:7e:
62:d9:a8:c9:2e:55:69:db:e4:4f:be:74:de:52:dc:
dc:3e:71:f5:34:45:a2:39:01:bb:af:11:80:58:4d:
b4:e5:81:38:11:97:b7:61:82:bc:71:bd:72:48:bd:
9e:9f:7f:96:b7:b3:63:a0:78:9e:14:8f:8e:8d:95:
ca:99:0f:70:0e:b8:1f:58:85:66:bf:50:5f:8b:d6:
5c:75:0f:f5:cf:c9:9c:ff:d0:e4:af:a1:12:f0:8e:
6c:f5:c4:b3:4c:cc:91:aa:96:79:d0:19:67:ec:40:
7c:0c:ce:26:da:96:ce:25:e0:b0:9d:fa:10:d0:f1:
f6:97:09:f8:87:89:ac:da:69:38:5f:d3:79:14:f8:
cc:d9:3b:9a:e8:b2:8b:7b:5c:5e:2c:10:80:e8:0c:
9a:52:67:14:e8:5c:3c:1c:d3:aa:d2:50:be:b4:66:
59:d8:d6:8b:be:63:1a:63:0b:48:37:33:35:eb:91:
c2:d4:a3:10:00:30:26:66:ab:b1:90:e3:ea:ea:df:
a4:11:c0:f9:1c:9f:2d:b1:3e:a5:48:a7:87:4b:da:
58:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:B5:25:CB:CE:AE:FA:CB:2C:86:49:94:69:E9:0D:AE:A3:BE:09:92
X509v3 Authority Key Identifier:
keyid:E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/FbUly86u-ssshkmUaekNrqO-CZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/5_iBQBq6zIjJQf33QPGrFTbwXbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.248.78.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:d6:35:95:9e:f4:3e:27:09:79:e6:19:2f:14:75:4f:db:82:
9f:ba:82:90:ea:0a:cc:3a:d4:27:7f:b7:25:90:71:49:bd:e4:
f0:c6:3c:a7:b0:22:f0:3b:f7:f5:c7:81:39:dd:e2:7a:76:d7:
21:e7:7a:e9:f2:0d:fa:8c:c8:07:45:9b:b3:85:8a:09:2e:a4:
79:98:21:93:c4:a3:15:86:63:54:36:8d:53:58:82:c4:cd:32:
0c:9e:d3:d6:ab:2d:5a:40:ed:c4:e1:52:13:6a:8d:d9:df:87:
16:ae:dc:f3:1f:50:4f:8f:3c:b0:8a:1f:1c:05:84:5e:fd:de:
95:af:de:45:d7:33:78:5e:2b:13:e3:76:90:4e:1d:19:7a:0a:
ef:dd:77:2f:53:bb:b6:3b:15:7d:6e:98:32:d7:4c:cc:9c:e7:
43:29:ba:62:55:02:0a:94:de:67:07:e3:06:81:86:8f:80:0c:
67:63:fc:3a:ff:91:a7:cc:dc:12:71:49:fd:82:c4:52:65:35:
40:66:2d:c7:ba:3b:60:32:98:01:cd:09:77:b3:07:3d:73:ea:
c6:f6:8b:31:1c:8d:ab:50:fc:ea:db:85:6d:86:fb:e0:7f:df:
c7:2d:37:ec:be:ff:49:1e:dc:a9:e9:e6:b7:a0:b0:f8:53:e9:
e5:a5:5a:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:32:33 2025 by rpki-client