Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/5f53ee-fb00-4df4-9764-06da2bb06071/1/4DA0Vx8MWvkiR7YKUtFOmXD1uDw.roa
File: 4DA0Vx8MWvkiR7YKUtFOmXD1uDw.roa (raw, json)
Hash identifier: rsLVyIWWi61wfjVTU3uPOA8UAlncL9y8Rkfc8Qqy3A8=
Subject key identifier: E0:30:34:57:1F:0C:5A:F9:22:47:B6:0A:52:D1:4E:99:70:F5:B8:3C
Certificate issuer: /CN=7938dfb9eb924079bb706cb616eda572864a9e13
Certificate serial: 01856BAEBD06DE965AE7486208EA0938D434
Authority key identifier: 79:38:DF:B9:EB:92:40:79:BB:70:6C:B6:16:ED:A5:72:86:4A:9E:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eTjfueuSQHm7cGy2Fu2lcoZKnhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/5f53ee-fb00-4df4-9764-06da2bb06071/1/4DA0Vx8MWvkiR7YKUtFOmXD1uDw.roa
Signing time: Sun 01 Jan 2023 04:54:51 +0000
ROA not before: Sun 01 Jan 2023 04:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51235
IP address blocks: 185.51.42.0/24 maxlen: 24
185.51.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ae:bd:06:de:96:5a:e7:48:62:08:ea:09:38:d4:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7938dfb9eb924079bb706cb616eda572864a9e13
Validity
Not Before: Jan 1 04:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e03034571f0c5af92247b60a52d14e9970f5b83c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:ca:75:79:0a:12:d7:07:17:3c:ac:67:4c:34:
f5:23:38:a7:ca:76:ea:d2:60:7c:c5:f4:c9:09:bc:
37:2a:38:b4:fb:d3:68:a5:f9:c3:dd:ed:1c:2d:e9:
e7:8d:b3:af:af:f5:81:f1:13:18:2e:54:57:12:ce:
f7:fe:3c:f6:3b:a2:ce:4e:13:51:5b:25:34:e4:4d:
3e:5d:00:3a:8d:bd:c5:63:5d:e7:0f:90:82:bb:e1:
89:2c:8b:60:3e:8b:7f:99:39:43:22:a4:2d:a6:2d:
27:4d:c1:24:25:21:a1:2c:ad:f4:53:2f:53:6a:1e:
44:5a:e8:b3:d4:88:76:80:f7:9e:af:9e:ce:17:b8:
82:5a:a0:f6:49:cb:30:10:97:80:8a:a2:c3:d1:8b:
bc:78:d8:1e:7b:d3:70:5c:0a:db:0b:c0:bb:be:55:
09:71:bf:0b:a3:e8:f7:b6:5c:97:57:9f:e0:b9:d1:
87:5a:29:59:2f:06:10:50:2b:3e:a7:f3:55:80:ae:
9f:f9:96:d4:2a:3a:3e:07:4f:ca:24:3a:23:ba:62:
2a:87:5a:3c:ab:ae:76:5a:b8:4b:87:c8:5e:c0:e3:
d2:6c:52:7b:cd:13:db:0b:03:13:db:3c:6c:99:e0:
49:c7:be:22:c5:49:1f:39:0d:28:6b:23:0f:33:fc:
81:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:30:34:57:1F:0C:5A:F9:22:47:B6:0A:52:D1:4E:99:70:F5:B8:3C
X509v3 Authority Key Identifier:
keyid:79:38:DF:B9:EB:92:40:79:BB:70:6C:B6:16:ED:A5:72:86:4A:9E:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eTjfueuSQHm7cGy2Fu2lcoZKnhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5f53ee-fb00-4df4-9764-06da2bb06071/1/4DA0Vx8MWvkiR7YKUtFOmXD1uDw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5f53ee-fb00-4df4-9764-06da2bb06071/1/eTjfueuSQHm7cGy2Fu2lcoZKnhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.42.0/23
Signature Algorithm: sha256WithRSAEncryption
80:b8:ce:8a:da:c0:80:bb:4b:3d:b2:dd:6a:91:bd:f8:b6:d4:
39:8d:bc:08:ed:5a:3d:aa:f8:4f:43:79:d3:6e:10:ca:11:b5:
cf:47:cc:e7:8a:e0:f9:70:1a:b0:4a:26:e9:3d:f8:f3:9b:4d:
55:49:6c:0d:b9:3b:b6:8b:4e:29:d7:2d:bf:eb:df:e2:a9:f5:
28:5d:f5:80:2c:7c:ed:2f:b3:4e:1b:09:ec:96:5b:bd:90:47:
fe:cb:21:99:04:f1:24:47:56:9a:6d:fb:04:f2:13:04:0e:11:
fe:49:ae:83:35:0a:9c:c5:6f:14:91:30:08:03:c5:c2:b0:2c:
f0:99:4c:a3:8b:6a:41:2e:6c:87:04:f2:16:18:75:8d:c4:33:
b8:d2:1f:85:3f:7f:3a:ac:dd:f8:45:c2:c8:15:38:a1:1f:5b:
18:8d:87:85:01:f1:a0:c0:48:1a:7f:93:76:8c:ef:45:aa:b7:
8e:df:de:ab:f6:0b:11:53:b0:e3:c2:18:2e:b0:20:47:81:29:
07:50:cd:46:2d:4c:b7:84:05:c7:60:3d:59:a4:e7:bd:4d:fc:
64:b5:a4:f8:c9:35:b0:e6:01:c0:86:22:20:52:e6:77:67:d2:
85:de:11:ee:5b:0b:53:0f:74:71:04:09:f3:7e:b7:a5:81:72:
4a:5e:96:91
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVrrr0G3pZa50hiCOoJONQ0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc5MzhkZmI5ZWI5MjQwNzliYjcwNmNiNjE2ZWRhNTcyODY0
YTllMTMwHhcNMjMwMTAxMDQ1NDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMDMwMzQ1NzFmMGM1YWY5MjI0N2I2MGE1MmQxNGU5OTcwZjViODNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgMp1eQoS1wcXPKxnTDT1Izinynbq
0mB8xfTJCbw3Kji0+9NopfnD3e0cLennjbOvr/WB8RMYLlRXEs73/jz2O6LOThNR
WyU05E0+XQA6jb3FY13nD5CCu+GJLItgPot/mTlDIqQtpi0nTcEkJSGhLK30Uy9T
ah5EWuiz1Ih2gPeer57OF7iCWqD2ScswEJeAiqLD0Yu8eNgee9NwXArbC8C7vlUJ
cb8Lo+j3tlyXV5/gudGHWilZLwYQUCs+p/NVgK6f+ZbUKjo+B0/KJDojumIqh1o8
q652WrhLh8hewOPSbFJ7zRPbCwMT2zxsmeBJx74ixUkfOQ0oayMPM/yBHwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOAwNFcfDFr5Ike2ClLRTplw9bg8MB8GA1UdIwQY
MBaAFHk437nrkkB5u3BsthbtpXKGSp4TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZVRqZnVldVNRSG03Y0d5MkZ1Mmxjb1pLbmhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS81ZjUzZWUtZmIwMC00ZGY0LTk3NjQt
MDZkYTJiYjA2MDcxLzEvNERBMFZ4OE1XdmtpUjdZS1V0Rk9tWEQxdUR3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NS81ZjUzZWUtZmIwMC00ZGY0LTk3NjQtMDZkYTJiYjA2MDcx
LzEvZVRqZnVldVNRSG03Y0d5MkZ1Mmxjb1pLbmhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuTMqMA0G
CSqGSIb3DQEBCwUAA4IBAQCAuM6K2sCAu0s9st1qkb34ttQ5jbwI7Vo9qvhPQ3nT
bhDKEbXPR8zniuD5cBqwSibpPfjzm01VSWwNuTu2i04p1y2/69/iqfUoXfWALHzt
L7NOGwnsllu9kEf+yyGZBPEkR1aabfsE8hMEDhH+Sa6DNQqcxW8UkTAIA8XCsCzw
mUyji2pBLmyHBPIWGHWNxDO40h+FP386rN34RcLIFTihH1sYjYeFAfGgwEgaf5N2
jO9FqreO396r9gsRU7DjwhgusCBHgSkHUM1GLUy3hAXHYD1ZpOe9TfxktaT4yTWw
5gHAhiIgUuZ3Z9KF3hHuWwtTD3RxBAnzfrelgXJKXpaR
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:30:09 2025 by rpki-client