Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/1b3749-9673-412d-b348-50fc4d557d08/1/1-1HSLbx75KXasPkZcwxw-iWT7ys.roa
File: 1-1HSLbx75KXasPkZcwxw-iWT7ys.roa (raw, json)
Hash identifier: j79r5WRg4gDcXFAhriXjSm2xdsZBRUEucHAy17tjsc8=
Subject key identifier: FB:51:D2:2D:BC:7B:E4:A5:DA:B0:F9:19:73:0C:70:FA:25:93:EF:2B
Certificate issuer: /CN=ff56d837fe254fa92e1f3c2f861aa1e485521746
Certificate serial: 08279D52
Authority key identifier: FF:56:D8:37:FE:25:4F:A9:2E:1F:3C:2F:86:1A:A1:E4:85:52:17:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_1bYN_4lT6kuHzwvhhqh5IVSF0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/1b3749-9673-412d-b348-50fc4d557d08/1/1-1HSLbx75KXasPkZcwxw-iWT7ys.roa
Signing time: Sat 01 Jan 2022 07:02:30 +0000
ROA not before: Sat 01 Jan 2022 07:02:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31034
IP address blocks: 185.5.92.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136813906 (0x8279d52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff56d837fe254fa92e1f3c2f861aa1e485521746
Validity
Not Before: Jan 1 07:02:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb51d22dbc7be4a5dab0f919730c70fa2593ef2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:99:0a:64:d8:28:7a:af:c7:2d:9e:0a:72:4d:
07:db:1b:56:3f:af:86:70:81:43:ca:d9:36:47:69:
b6:3b:e4:f7:67:25:38:9f:93:d9:45:29:e0:78:cd:
53:36:18:ed:a0:43:49:cb:37:ac:44:40:bf:a9:cf:
23:f4:df:94:42:02:d3:c4:52:81:34:a4:58:ef:b0:
9c:d6:d5:58:03:3e:b8:3c:98:32:01:80:19:98:f7:
d8:3e:b0:0a:b4:e8:c8:d0:f4:f1:1d:f9:b5:c1:ca:
57:b4:6b:c8:ab:bc:28:98:f1:47:d9:bf:d5:47:93:
20:60:a9:7e:50:58:41:82:41:2a:30:8c:e8:e9:a1:
ff:7b:a0:d1:4c:6d:7a:fe:64:1e:f1:1b:d0:14:63:
8f:92:d3:70:7c:4e:15:7b:da:f1:04:ff:df:d1:ce:
8c:5b:ba:b7:b7:c1:0c:9e:a7:ae:be:87:a5:15:d3:
1d:1b:fe:a9:c8:05:b5:4c:12:5d:d8:ea:e4:9f:f4:
7a:14:c9:17:67:08:dc:d7:b6:90:0b:41:e7:01:b6:
a6:58:75:fd:82:ad:08:75:b2:80:6c:14:86:b0:e9:
1d:90:2e:01:88:84:49:57:ca:d4:cb:1e:eb:4e:d1:
72:c0:e6:d1:b0:2c:d3:5b:17:36:52:13:46:81:dc:
8b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:51:D2:2D:BC:7B:E4:A5:DA:B0:F9:19:73:0C:70:FA:25:93:EF:2B
X509v3 Authority Key Identifier:
keyid:FF:56:D8:37:FE:25:4F:A9:2E:1F:3C:2F:86:1A:A1:E4:85:52:17:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_1bYN_4lT6kuHzwvhhqh5IVSF0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1b3749-9673-412d-b348-50fc4d557d08/1/1-1HSLbx75KXasPkZcwxw-iWT7ys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1b3749-9673-412d-b348-50fc4d557d08/1/_1bYN_4lT6kuHzwvhhqh5IVSF0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.5.92.0/23
Signature Algorithm: sha256WithRSAEncryption
a3:7b:38:dd:e9:17:6b:09:92:24:d5:66:28:90:06:4c:18:8f:
16:1d:f3:df:8c:d1:da:59:12:a8:be:45:71:4c:83:e7:23:0a:
3a:04:63:8b:ee:9b:53:5b:d8:2b:38:91:8e:2b:55:fa:a0:f9:
05:25:da:fb:5d:38:7d:4c:60:18:87:b9:9f:37:81:d4:43:24:
12:70:55:bd:16:b7:12:b0:fa:6a:40:d0:f2:81:0e:e2:b3:d7:
57:40:91:d8:63:62:21:fe:48:d5:79:1b:be:75:59:14:13:29:
98:30:13:f5:10:16:ec:15:c3:04:dc:8a:07:8c:d3:2c:31:93:
b4:18:08:90:80:ad:91:b5:02:4f:71:0e:dd:f7:5b:7c:5d:bc:
0e:4a:5d:57:e4:59:1f:6c:b6:43:dc:2a:0a:ab:27:d3:16:5f:
7e:fd:c6:01:13:05:db:1c:df:7f:d3:0a:25:56:76:9c:69:21:
d8:e8:b0:94:e3:da:ae:20:b8:85:af:59:39:d5:1d:e1:81:9c:
3e:9a:20:eb:ad:66:6b:c1:75:73:e6:00:80:ce:3b:99:52:32:
cd:56:4a:22:e6:30:b7:eb:e5:d0:0d:48:17:bf:ae:7b:de:bc:
fe:a1:4a:7a:af:36:e1:4f:e7:77:b5:42:97:70:48:7f:fc:e0:
90:06:8c:f9
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIECCedUjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ZjU2ZDgzN2ZlMjU0ZmE5MmUxZjNjMmY4NjFhYTFlNDg1NTIxNzQ2MB4XDTIyMDEw
MTA3MDIzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmI1MWQyMmRiYzdi
ZTRhNWRhYjBmOTE5NzMwYzcwZmEyNTkzZWYyYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALqZCmTYKHqvxy2eCnJNB9sbVj+vhnCBQ8rZNkdptjvk92cl
OJ+T2UUp4HjNUzYY7aBDScs3rERAv6nPI/TflEIC08RSgTSkWO+wnNbVWAM+uDyY
MgGAGZj32D6wCrToyND08R35tcHKV7RryKu8KJjxR9m/1UeTIGCpflBYQYJBKjCM
6Omh/3ug0Uxtev5kHvEb0BRjj5LTcHxOFXva8QT/39HOjFu6t7fBDJ6nrr6HpRXT
HRv+qcgFtUwSXdjq5J/0ehTJF2cI3Ne2kAtB5wG2plh1/YKtCHWygGwUhrDpHZAu
AYiESVfK1Mse607RcsDm0bAs01sXNlITRoHci6sCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBT7UdItvHvkpdqw+RlzDHD6JZPvKzAfBgNVHSMEGDAWgBT/Vtg3/iVPqS4f
PC+GGqHkhVIXRjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L18xYllOXzRsVDZrdUh6d3ZoaHFoNUlWU0YwWS5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTQvMWIzNzQ5LTk2NzMtNDEyZC1iMzQ4LTUwZmM0ZDU1N2QwOC8x
LzEtMUhTTGJ4NzVLWGFzUGtaY3d4dy1pV1Q3eXMucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2E0
LzFiMzc0OS05NjczLTQxMmQtYjM0OC01MGZjNGQ1NTdkMDgvMS9fMWJZTl80bFQ2
a3VIend2aGhxaDVJVlNGMFkuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAG5BVwwDQYJKoZIhvcNAQELBQAD
ggEBAKN7ON3pF2sJkiTVZiiQBkwYjxYd89+M0dpZEqi+RXFMg+cjCjoEY4vum1Nb
2Cs4kY4rVfqg+QUl2vtdOH1MYBiHuZ83gdRDJBJwVb0WtxKw+mpA0PKBDuKz11dA
kdhjYiH+SNV5G751WRQTKZgwE/UQFuwVwwTcigeM0ywxk7QYCJCArZG1Ak9xDt33
W3xdvA5KXVfkWR9stkPcKgqrJ9MWX379xgETBdsc33/TCiVWdpxpIdjosJTj2q4g
uIWvWTnVHeGBnD6aIOutZmvBdXPmAIDOO5lSMs1WSiLmMLfr5dANSBe/rnvevP6h
SnqvNuFP53e1QpdwSH/84JAGjPk=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:16:06 2025 by rpki-client