Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/R5eciXvB6QIzCglRw_XHc5YPJwI.roa
File: R5eciXvB6QIzCglRw_XHc5YPJwI.roa (raw, json)
Hash identifier: 2F6R97XSQ4dF9Z0PypfZ0MRjUBJgomlpkjK8Q0Ahemg=
Subject key identifier: 47:97:9C:89:7B:C1:E9:02:33:0A:09:51:C3:F5:C7:73:96:0F:27:02
Certificate issuer: /CN=3d8ba0a52c42129af1d4f743feb33bb144d4bb5c
Certificate serial: 0FFCFA05
Authority key identifier: 3D:8B:A0:A5:2C:42:12:9A:F1:D4:F7:43:FE:B3:3B:B1:44:D4:BB:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYugpSxCEprx1PdD_rM7sUTUu1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/R5eciXvB6QIzCglRw_XHc5YPJwI.roa
Signing time: Sat 01 Jan 2022 08:53:45 +0000
ROA not before: Sat 01 Jan 2022 08:53:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204723
IP address blocks: 213.83.5.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 268237317 (0xffcfa05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8ba0a52c42129af1d4f743feb33bb144d4bb5c
Validity
Not Before: Jan 1 08:53:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=47979c897bc1e902330a0951c3f5c773960f2702
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:bb:4d:88:8a:2f:c2:0c:a8:87:8e:5c:57:ae:
22:5d:fc:0a:1a:81:ec:37:af:d7:7f:d7:f5:50:b8:
3a:a8:ba:b1:52:96:bc:8a:95:a0:65:ca:39:72:d1:
63:33:0a:36:06:8c:03:55:0b:e3:79:fd:12:0f:78:
91:67:bd:3d:71:1a:98:f9:55:f4:6c:e5:06:c8:86:
8d:da:7d:93:55:d1:d7:84:68:12:c2:a6:0b:1c:d2:
13:26:9a:a8:57:ae:79:56:bd:42:2f:36:98:14:a8:
dd:0d:b9:e9:10:8f:ff:60:29:d8:2a:2a:05:35:2e:
d2:15:b8:1b:1e:4a:64:cb:2b:b3:79:c9:fb:89:d3:
36:b7:ba:3f:e1:d9:af:11:6a:8e:c8:14:b0:71:59:
6f:34:b2:40:82:ed:e0:d1:23:06:b3:87:86:11:34:
dc:06:c7:d0:8e:f9:00:b6:a6:c6:a2:60:9b:77:26:
74:80:09:d8:6f:13:78:cb:db:81:70:ee:a1:2c:ca:
d7:21:48:76:ed:67:c8:58:20:0d:5b:e0:9e:8e:1d:
33:9c:86:81:58:36:f9:b9:d7:52:d4:26:bd:9a:2f:
7a:63:6e:f3:0c:e9:45:a1:39:fe:59:85:c2:df:bb:
e4:b8:b9:09:6e:e6:17:18:5e:eb:af:20:db:7c:72:
42:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:97:9C:89:7B:C1:E9:02:33:0A:09:51:C3:F5:C7:73:96:0F:27:02
X509v3 Authority Key Identifier:
keyid:3D:8B:A0:A5:2C:42:12:9A:F1:D4:F7:43:FE:B3:3B:B1:44:D4:BB:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYugpSxCEprx1PdD_rM7sUTUu1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/R5eciXvB6QIzCglRw_XHc5YPJwI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/PYugpSxCEprx1PdD_rM7sUTUu1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.83.5.0/24
Signature Algorithm: sha256WithRSAEncryption
80:ae:11:3d:1c:5a:30:5b:41:d2:53:1f:1b:40:ca:e7:d6:8d:
bb:93:57:08:40:55:3a:58:1c:79:32:f1:0a:aa:28:4d:c0:36:
53:18:d7:72:43:d3:cf:c9:d5:e0:a0:0d:70:05:18:fc:70:f7:
5e:e4:f0:5c:be:02:86:38:36:69:63:6a:a6:cb:2e:97:89:57:
f7:a6:a8:30:d9:7d:5a:c6:35:3b:56:db:e7:01:3f:14:06:ad:
c6:27:73:da:ee:e4:7d:1b:e8:ee:9a:a1:d6:55:bf:69:a1:e5:
27:4d:04:24:e9:ed:eb:8b:35:5c:8c:08:80:f6:4e:8b:1a:08:
58:e1:52:0d:4a:ce:c4:e1:80:c1:90:f5:b2:16:b7:e5:bc:cb:
86:ae:a2:c4:db:5f:57:59:04:ce:13:d2:bf:42:7d:62:e5:5b:
4c:03:83:cd:85:9c:05:3d:0b:33:67:94:81:ab:71:f1:32:8a:
be:57:a8:f1:ad:a3:df:7c:ca:80:70:f5:ec:a4:2f:df:97:09:
d4:b8:c5:91:43:4c:07:ef:eb:d4:ab:02:e4:ad:1d:2f:14:c9:
0d:69:ba:64:6a:12:93:10:90:64:9c:66:a3:c5:f0:37:8e:71:
db:63:73:56:72:30:8b:5b:84:a7:a6:49:94:b5:4c:a0:e8:1a:
86:71:d0:d8
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIED/z6BTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
ZDhiYTBhNTJjNDIxMjlhZjFkNGY3NDNmZWIzM2JiMTQ0ZDRiYjVjMB4XDTIyMDEw
MTA4NTM0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDc5NzljODk3YmMx
ZTkwMjMzMGEwOTUxYzNmNWM3NzM5NjBmMjcwMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMK7TYiKL8IMqIeOXFeuIl38ChqB7Dev13/X9VC4Oqi6sVKW
vIqVoGXKOXLRYzMKNgaMA1UL43n9Eg94kWe9PXEamPlV9GzlBsiGjdp9k1XR14Ro
EsKmCxzSEyaaqFeueVa9Qi82mBSo3Q256RCP/2Ap2CoqBTUu0hW4Gx5KZMsrs3nJ
+4nTNre6P+HZrxFqjsgUsHFZbzSyQILt4NEjBrOHhhE03AbH0I75ALamxqJgm3cm
dIAJ2G8TeMvbgXDuoSzK1yFIdu1nyFggDVvgno4dM5yGgVg2+bnXUtQmvZovemNu
8wzpRaE5/lmFwt+75Li5CW7mFxhe668g23xyQn8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRHl5yJe8HpAjMKCVHD9cdzlg8nAjAfBgNVHSMEGDAWgBQ9i6ClLEISmvHU
90P+szuxRNS7XDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1BZdWdwU3hDRXByeDFQZERfck03c1VUVXUxdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjMvZmY2ZjRhLThkNWYtNDViMi04NzVjLWE1NjgzODQ0ZTc5Mi8x
L1I1ZWNpWHZCNlFJekNnbFJ3X1hIYzVZUEp3SS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjMv
ZmY2ZjRhLThkNWYtNDViMi04NzVjLWE1NjgzODQ0ZTc5Mi8xL1BZdWdwU3hDRXBy
eDFQZERfck03c1VUVXUxdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANVTBTANBgkqhkiG9w0BAQsFAAOC
AQEAgK4RPRxaMFtB0lMfG0DK59aNu5NXCEBVOlgceTLxCqooTcA2UxjXckPTz8nV
4KANcAUY/HD3XuTwXL4Chjg2aWNqpssul4lX96aoMNl9WsY1O1bb5wE/FAatxidz
2u7kfRvo7pqh1lW/aaHlJ00EJOnt64s1XIwIgPZOixoIWOFSDUrOxOGAwZD1sha3
5bzLhq6ixNtfV1kEzhPSv0J9YuVbTAODzYWcBT0LM2eUgatx8TKKvleo8a2j33zK
gHD17KQv35cJ1LjFkUNMB+/r1KsC5K0dLxTJDWm6ZGoSkxCQZJxmo8XwN45x22Nz
VnIwi1uEp6ZJlLVMoOgahnHQ2A==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:33:48 2025 by rpki-client