Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/5YbfVS8yaASazqDqiXceCt1jpjY.roa
File: 5YbfVS8yaASazqDqiXceCt1jpjY.roa (raw, json)
Hash identifier: z/GmRaJee+MDZSpATUW2qN8oi6NKqaBp2Kbco+pcnPo=
Subject key identifier: E5:86:DF:55:2F:32:68:04:9A:CE:A0:EA:89:77:1E:0A:DD:63:A6:36
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0A9114E1
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/5YbfVS8yaASazqDqiXceCt1jpjY.roa
Signing time: Sat 01 Jan 2022 16:07:19 +0000
ROA not before: Sat 01 Jan 2022 16:07:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207691
IP address blocks: 85.187.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177280225 (0xa9114e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 1 16:07:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e586df552f3268049acea0ea89771e0add63a636
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:87:14:60:e2:eb:d4:cd:ae:f8:af:c8:a3:c9:
a4:9a:a0:a8:1f:a0:a1:b8:9a:74:68:cf:39:82:2f:
d8:fd:2c:05:87:57:bd:68:d2:8c:fb:52:10:2d:62:
5f:05:b9:23:7f:26:9d:09:e7:0b:26:16:4e:e9:2b:
b0:c5:75:8a:72:2e:ba:93:f0:97:9e:eb:49:25:08:
de:ee:ad:c7:00:55:b5:da:6d:e7:8f:02:1d:89:9a:
b7:ca:7c:ff:cd:96:5d:db:20:c5:a7:d1:32:64:1a:
78:11:1e:32:c6:02:94:d6:25:53:65:a1:9f:13:2f:
af:37:7a:37:dc:92:4e:8b:be:ce:c0:99:45:3b:ca:
98:ff:07:7c:ae:bf:ba:58:97:cb:80:cc:29:71:04:
31:41:11:d8:2e:0b:23:7a:de:0a:b6:c1:8f:5a:74:
16:e9:73:4b:55:d1:c0:91:44:e4:cd:52:58:70:18:
5d:ab:dd:ce:13:e5:5c:31:87:55:77:8b:96:c9:cf:
78:88:22:c9:03:86:96:7c:5e:9b:e7:1d:78:d7:3a:
ab:16:5d:bf:5e:ae:5a:54:0e:39:4e:71:bb:86:3f:
a6:8e:48:2c:a1:52:a2:50:e0:45:0f:41:d8:6c:fc:
48:3f:07:89:9b:d6:ba:63:60:79:98:60:6c:4f:df:
b3:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:86:DF:55:2F:32:68:04:9A:CE:A0:EA:89:77:1E:0A:DD:63:A6:36
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/5YbfVS8yaASazqDqiXceCt1jpjY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.187.51.0/24
Signature Algorithm: sha256WithRSAEncryption
d2:3f:27:2e:39:b1:d8:4f:24:51:1c:ca:3d:59:4b:43:0c:b2:
81:82:b3:dd:31:7f:34:97:e9:90:5d:94:5c:66:75:b7:2e:d0:
b8:8a:98:b3:94:c3:4e:fe:6f:02:88:e2:75:2f:b6:85:db:11:
27:73:4b:6b:04:e8:c3:70:8c:af:96:2f:a3:c2:99:33:9b:04:
ec:3b:f0:b5:0a:98:6c:cf:34:c6:e6:fc:71:53:d6:26:08:b5:
41:be:f2:35:ac:d5:98:f6:71:b0:05:cc:51:2a:d7:27:77:a8:
3e:52:e4:c2:74:fb:19:52:5b:ad:12:6d:09:ef:10:7b:73:9f:
e6:0d:d8:b9:a0:82:7b:43:3f:31:38:fd:fc:71:da:a3:e6:15:
12:1b:ab:a1:a4:90:50:03:68:ed:25:89:b6:97:2d:ce:0d:d1:
33:29:66:d9:f1:0b:2a:b9:61:20:5a:ea:3e:03:f6:12:ab:c7:
59:6c:dd:c6:b8:ec:a0:39:b0:c7:c8:f6:13:96:58:8b:66:85:
76:da:b4:2c:94:b1:23:04:57:55:83:e7:0c:69:75:22:73:0f:
8d:4b:c1:cd:06:3d:dd:1b:8b:a8:1b:2e:19:4b:62:f5:85:0f:
30:a8:ff:70:b3:33:23:f8:41:11:bf:36:f2:a8:ea:9a:da:08:
d6:b8:4f:f1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECpEU4TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ZWJmMzAyMDFmMTJhMDQwZDM4NmQyYjRlZWQ0NDg0NjIzZTRkMTFiMB4XDTIyMDEw
MTE2MDcxOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTU4NmRmNTUyZjMy
NjgwNDlhY2VhMGVhODk3NzFlMGFkZDYzYTYzNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMGHFGDi69TNrvivyKPJpJqgqB+gobiadGjPOYIv2P0sBYdX
vWjSjPtSEC1iXwW5I38mnQnnCyYWTukrsMV1inIuupPwl57rSSUI3u6txwBVtdpt
548CHYmat8p8/82WXdsgxafRMmQaeBEeMsYClNYlU2WhnxMvrzd6N9ySTou+zsCZ
RTvKmP8HfK6/uliXy4DMKXEEMUER2C4LI3reCrbBj1p0FulzS1XRwJFE5M1SWHAY
XavdzhPlXDGHVXeLlsnPeIgiyQOGlnxem+cdeNc6qxZdv16uWlQOOU5xu4Y/po5I
LKFSolDgRQ9B2Gz8SD8HiZvWumNgeZhgbE/fsxsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTlht9VLzJoBJrOoOqJdx4K3WOmNjAfBgNVHSMEGDAWgBT+vzAgHxKgQNOG
0rTu1EhGI+TRGzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L19yOHdJQjhTb0VEVGh0SzA3dFJJUmlQazBScy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2MvZjhjNGEyLTk2YWMtNGI0ZS1hMTk1LWE5N2MwZGMwYTc0OS8x
LzVZYmZWUzh5YUFTYXpxRHFpWGNlQ3QxanBqWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Mv
ZjhjNGEyLTk2YWMtNGI0ZS1hMTk1LWE5N2MwZGMwYTc0OS8xL19yOHdJQjhTb0VE
VGh0SzA3dFJJUmlQazBScy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFW7MzANBgkqhkiG9w0BAQsFAAOC
AQEA0j8nLjmx2E8kURzKPVlLQwyygYKz3TF/NJfpkF2UXGZ1ty7QuIqYs5TDTv5v
AojidS+2hdsRJ3NLawTow3CMr5Yvo8KZM5sE7DvwtQqYbM80xub8cVPWJgi1Qb7y
NazVmPZxsAXMUSrXJ3eoPlLkwnT7GVJbrRJtCe8Qe3Of5g3YuaCCe0M/MTj9/HHa
o+YVEhuroaSQUANo7SWJtpctzg3RMylm2fELKrlhIFrqPgP2EqvHWWzdxrjsoDmw
x8j2E5ZYi2aFdtq0LJSxIwRXVYPnDGl1InMPjUvBzQY93RuLqBsuGUti9YUPMKj/
cLMzI/hBEb828qjqmtoI1rhP8Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:41 2024 by rpki-client on console-ams.rpki-client.org