Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/ff10a5-2fa3-4942-b2a9-bfe52b4af8b7/1/FbjwZimEFI1Cj4fRuyLQb7vFJeA.roa
File: FbjwZimEFI1Cj4fRuyLQb7vFJeA.roa (raw, json)
Hash identifier: 8BG8Ju+bm04ZvV0odxwiECTGz0k/vXAkm5yUntmf6Ss=
Subject key identifier: 15:B8:F0:66:29:84:14:8D:42:8F:87:D1:BB:22:D0:6F:BB:C5:25:E0
Certificate issuer: /CN=cb608201f88aeae9486b9fa87189d796c54027dd
Certificate serial: 018BDC24325E07755151826A512E20B714CB
Authority key identifier: CB:60:82:01:F8:8A:EA:E9:48:6B:9F:A8:71:89:D7:96:C5:40:27:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2CCAfiK6ulIa5-ocYnXlsVAJ90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/ff10a5-2fa3-4942-b2a9-bfe52b4af8b7/1/FbjwZimEFI1Cj4fRuyLQb7vFJeA.roa
Signing time: Fri 17 Nov 2023 07:17:21 +0000
ROA not before: Fri 17 Nov 2023 07:17:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213296
IP address blocks: 89.23.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:dc:24:32:5e:07:75:51:51:82:6a:51:2e:20:b7:14:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb608201f88aeae9486b9fa87189d796c54027dd
Validity
Not Before: Nov 17 07:17:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=15b8f0662984148d428f87d1bb22d06fbbc525e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:4e:2a:59:b3:f1:25:5c:70:02:b5:24:a2:67:
1c:5e:85:b9:85:63:89:26:30:4e:ed:d1:44:c6:36:
8e:88:ad:f5:e7:36:a4:68:bb:8b:00:ba:c2:2c:69:
51:47:db:4a:df:29:c0:0d:70:c8:64:a7:23:ef:25:
6c:08:22:a6:21:59:b1:98:49:da:54:93:65:55:73:
d5:d9:37:7e:82:f3:6e:1d:be:2f:d5:74:a1:27:bf:
2d:1b:f5:61:dd:01:04:01:09:56:8d:fe:4e:ee:aa:
87:72:81:a3:89:6f:da:0c:ee:dc:95:04:73:e6:f9:
38:c9:0b:ff:50:d7:ab:de:65:e7:a9:23:a0:6d:0e:
3e:86:74:63:fa:c8:6c:d9:21:21:36:b5:62:ed:bf:
58:60:6a:53:9d:2c:b1:da:e2:e1:c9:bb:01:b7:f6:
4d:1c:14:a2:41:d2:05:f7:70:80:be:be:eb:60:85:
e9:ef:5a:4c:4e:77:14:56:1b:64:38:df:0b:b6:8b:
3d:b4:7e:42:e3:98:ac:c5:2f:05:e7:54:eb:15:88:
d0:d1:79:8e:ce:07:b6:50:09:2f:e8:f1:3e:15:f8:
0b:3e:35:69:51:29:d5:83:1f:2b:98:91:09:a3:ca:
f8:2d:0c:f8:ca:35:41:74:0e:70:fd:c1:21:a1:91:
8c:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:B8:F0:66:29:84:14:8D:42:8F:87:D1:BB:22:D0:6F:BB:C5:25:E0
X509v3 Authority Key Identifier:
keyid:CB:60:82:01:F8:8A:EA:E9:48:6B:9F:A8:71:89:D7:96:C5:40:27:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2CCAfiK6ulIa5-ocYnXlsVAJ90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/ff10a5-2fa3-4942-b2a9-bfe52b4af8b7/1/FbjwZimEFI1Cj4fRuyLQb7vFJeA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/ff10a5-2fa3-4942-b2a9-bfe52b4af8b7/1/y2CCAfiK6ulIa5-ocYnXlsVAJ90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.126.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:a3:df:0c:9d:7a:5a:a5:44:54:3c:13:9f:b4:4b:97:a6:48:
19:36:57:02:a1:f5:04:3b:b7:f5:8c:21:90:58:95:a2:c2:93:
ae:d5:c5:d4:78:a6:eb:2a:91:8b:3b:9d:41:f6:1b:bd:4e:48:
d4:d2:ce:40:24:e7:42:db:45:f9:39:44:16:2d:76:7a:30:fb:
47:9d:60:73:0b:14:84:cb:5e:a0:37:49:d2:b9:1e:96:80:23:
1c:75:52:bf:3d:20:95:c6:59:be:3a:a4:21:29:bb:8d:ed:d2:
28:79:fa:93:73:8a:e7:93:f3:21:03:d8:83:47:09:fa:f1:0c:
6f:84:f3:79:fc:22:e4:8a:3d:ae:b6:f7:83:87:4c:47:9e:70:
c3:92:69:b6:00:ab:b0:de:5c:f4:b3:a2:5b:a0:78:5f:8d:30:
0e:11:9f:d6:83:d1:8f:47:73:85:fa:ad:8d:f6:43:a5:87:72:
6d:04:ac:c2:1a:90:18:cc:0d:5f:37:99:37:cd:67:cb:9f:fa:
d1:9d:1c:6e:0c:f5:8f:db:10:ed:58:e2:4d:9e:f4:64:be:b4:
0f:da:e0:a8:f2:00:8a:a9:51:70:29:de:b1:89:71:4c:dd:b1:
8d:13:eb:28:a0:66:02:2d:f7:5a:95:fa:ba:f8:f4:ca:cb:22:
4f:d6:0e:da
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYvcJDJeB3VRUYJqUS4gtxTLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNiNjA4MjAxZjg4YWVhZTk0ODZiOWZhODcxODlkNzk2YzU0
MDI3ZGQwHhcNMjMxMTE3MDcxNzIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNWI4ZjA2NjI5ODQxNDhkNDI4Zjg3ZDFiYjIyZDA2ZmJiYzUyNWUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgk4qWbPxJVxwArUkomccXoW5hWOJ
JjBO7dFExjaOiK315zakaLuLALrCLGlRR9tK3ynADXDIZKcj7yVsCCKmIVmxmEna
VJNlVXPV2Td+gvNuHb4v1XShJ78tG/Vh3QEEAQlWjf5O7qqHcoGjiW/aDO7clQRz
5vk4yQv/UNer3mXnqSOgbQ4+hnRj+shs2SEhNrVi7b9YYGpTnSyx2uLhybsBt/ZN
HBSiQdIF93CAvr7rYIXp71pMTncUVhtkON8Ltos9tH5C45isxS8F51TrFYjQ0XmO
zge2UAkv6PE+FfgLPjVpUSnVgx8rmJEJo8r4LQz4yjVBdA5w/cEhoZGMCQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBW48GYphBSNQo+H0bsi0G+7xSXgMB8GA1UdIwQY
MBaAFMtgggH4iurpSGufqHGJ15bFQCfdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveTJDQ0FmaUs2dWxJYTUtb2NZblhsc1ZBSjkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9mZjEwYTUtMmZhMy00OTQyLWIyYTkt
YmZlNTJiNGFmOGI3LzEvRmJqd1ppbUVGSTFDajRmUnV5TFFiN3ZGSmVBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS9mZjEwYTUtMmZhMy00OTQyLWIyYTktYmZlNTJiNGFmOGI3
LzEveTJDQ0FmaUs2dWxJYTUtb2NZblhsc1ZBSjkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWRd+MA0G
CSqGSIb3DQEBCwUAA4IBAQAMo98MnXpapURUPBOftEuXpkgZNlcCofUEO7f1jCGQ
WJWiwpOu1cXUeKbrKpGLO51B9hu9TkjU0s5AJOdC20X5OUQWLXZ6MPtHnWBzCxSE
y16gN0nSuR6WgCMcdVK/PSCVxlm+OqQhKbuN7dIoefqTc4rnk/MhA9iDRwn68Qxv
hPN5/CLkij2utveDh0xHnnDDkmm2AKuw3lz0s6JboHhfjTAOEZ/Wg9GPR3OF+q2N
9kOlh3JtBKzCGpAYzA1fN5k3zWfLn/rRnRxuDPWP2xDtWOJNnvRkvrQP2uCo8gCK
qVFwKd6xiXFM3bGNE+sooGYCLfdalfq6+PTKyyJP1g7a
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:46:17 2025 by rpki-client