Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/8c83ca-2278-4d56-bce8-450d2295ba49/1/m5hs_9sGlWyhQ9Ib3GK1j0aHfUw.roa
File: m5hs_9sGlWyhQ9Ib3GK1j0aHfUw.roa (raw, json)
Hash identifier: tNIcULn8MUGsEAV2wCP77rYG4B/mE9To/SE1QG61RAc=
Subject key identifier: 9B:98:6C:FF:DB:06:95:6C:A1:43:D2:1B:DC:62:B5:8F:46:87:7D:4C
Certificate issuer: /CN=a3a39f1db858b155f25bc343759f5be2b736c818
Certificate serial: F867E8
Authority key identifier: A3:A3:9F:1D:B8:58:B1:55:F2:5B:C3:43:75:9F:5B:E2:B7:36:C8:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o6OfHbhYsVXyW8NDdZ9b4rc2yBg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/8c83ca-2278-4d56-bce8-450d2295ba49/1/m5hs_9sGlWyhQ9Ib3GK1j0aHfUw.roa
Signing time: Sat 01 Jan 2022 01:59:33 +0000
ROA not before: Sat 01 Jan 2022 01:59:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15576
IP address blocks: 185.79.202.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16279528 (0xf867e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3a39f1db858b155f25bc343759f5be2b736c818
Validity
Not Before: Jan 1 01:59:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b986cffdb06956ca143d21bdc62b58f46877d4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:22:93:d5:ca:8e:f3:3b:48:91:9c:0a:6e:d6:
52:10:b9:e0:5b:1d:39:fc:73:57:7a:10:12:7b:d6:
2c:cd:4b:4b:98:c4:9f:6e:9f:3a:eb:8e:0d:59:07:
9a:d1:07:91:a4:43:cd:ec:81:08:6e:1a:17:93:fc:
44:e3:96:d2:09:fb:19:24:a8:65:ce:91:4b:ae:9b:
03:b2:ef:95:82:28:27:05:e3:a1:e1:92:00:84:eb:
0e:6f:34:64:9b:16:38:03:72:3b:7f:b7:f9:02:c7:
ee:71:cc:51:1b:99:64:db:7c:a9:60:9c:12:67:6c:
91:72:64:61:b9:29:21:5e:d8:1d:ea:a9:64:14:87:
34:3e:e6:1a:75:02:35:7e:4e:5e:77:6f:4e:97:a6:
51:9e:34:13:1a:99:4d:eb:ff:d6:dd:52:dc:ba:6e:
48:c3:a9:3c:b5:7e:c1:36:0e:7f:c3:c3:71:14:e9:
96:05:89:3d:22:a5:1b:52:f3:1b:31:3b:ba:62:9a:
b3:c2:70:c9:c0:70:73:da:bc:bf:05:d8:e6:c4:db:
8c:cd:4b:d9:91:a3:55:51:28:2f:ec:b7:74:17:03:
09:c2:06:a4:ef:2b:c3:46:ad:4d:31:62:55:f3:d3:
93:9a:b1:3b:d0:cd:92:46:72:1e:df:de:01:0e:fa:
bf:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:98:6C:FF:DB:06:95:6C:A1:43:D2:1B:DC:62:B5:8F:46:87:7D:4C
X509v3 Authority Key Identifier:
keyid:A3:A3:9F:1D:B8:58:B1:55:F2:5B:C3:43:75:9F:5B:E2:B7:36:C8:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o6OfHbhYsVXyW8NDdZ9b4rc2yBg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/8c83ca-2278-4d56-bce8-450d2295ba49/1/m5hs_9sGlWyhQ9Ib3GK1j0aHfUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/8c83ca-2278-4d56-bce8-450d2295ba49/1/o6OfHbhYsVXyW8NDdZ9b4rc2yBg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.79.202.0/23
Signature Algorithm: sha256WithRSAEncryption
00:8e:a6:e3:e4:9f:e5:43:17:47:75:ea:ed:bb:f8:1c:00:de:
36:c5:8e:0e:0c:78:09:e1:cd:7c:68:51:32:f2:41:fa:b6:92:
c9:53:53:d2:5b:fc:0a:49:10:61:06:b1:71:ca:72:6d:58:a8:
57:73:f5:07:20:4b:f1:80:0f:5f:be:c1:61:9f:0b:0c:c6:e1:
27:2a:7a:d3:61:8f:d4:bb:a4:44:73:d4:c4:af:8e:50:a0:c3:
ba:ff:5f:c6:db:e3:9d:97:c6:48:5e:d8:4f:5a:41:43:1e:ed:
15:5f:77:10:2c:65:ca:9f:90:3b:12:7d:6f:af:d9:7b:af:1b:
e4:6a:b4:69:f6:65:3d:75:c6:95:f9:7e:72:7d:9e:d4:9d:75:
95:53:10:49:dd:6d:52:39:10:73:3f:8b:8b:5d:3e:a1:9d:ad:
1a:e9:84:91:4e:35:7d:54:7c:0c:1b:57:71:d6:4d:a1:2b:79:
74:f0:3e:65:7b:a9:dd:0d:2c:ac:d2:58:ce:39:3d:67:fa:9f:
af:ed:d6:0b:bf:ff:44:4e:9c:53:fa:a5:1f:46:71:cb:30:89:
4d:44:a7:3e:e4:78:2b:dd:fb:21:94:c8:ca:90:c8:0d:7a:98:
ac:d0:72:b8:bc:6d:a7:71:16:42:db:ff:8a:30:28:a9:63:a4:
77:7b:85:2b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAPhn6DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
M2EzOWYxZGI4NThiMTU1ZjI1YmMzNDM3NTlmNWJlMmI3MzZjODE4MB4XDTIyMDEw
MTAxNTkzM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWI5ODZjZmZkYjA2
OTU2Y2ExNDNkMjFiZGM2MmI1OGY0Njg3N2Q0YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJcik9XKjvM7SJGcCm7WUhC54FsdOfxzV3oQEnvWLM1LS5jE
n26fOuuODVkHmtEHkaRDzeyBCG4aF5P8ROOW0gn7GSSoZc6RS66bA7LvlYIoJwXj
oeGSAITrDm80ZJsWOANyO3+3+QLH7nHMURuZZNt8qWCcEmdskXJkYbkpIV7YHeqp
ZBSHND7mGnUCNX5OXndvTpemUZ40ExqZTev/1t1S3LpuSMOpPLV+wTYOf8PDcRTp
lgWJPSKlG1LzGzE7umKas8JwycBwc9q8vwXY5sTbjM1L2ZGjVVEoL+y3dBcDCcIG
pO8rw0atTTFiVfPTk5qxO9DNkkZyHt/eAQ76v1ECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSbmGz/2waVbKFD0hvcYrWPRod9TDAfBgNVHSMEGDAWgBSjo58duFixVfJb
w0N1n1vitzbIGDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L282T2ZIYmhZc1ZYeVc4TkRkWjliNHJjMnlCZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGYvOGM4M2NhLTIyNzgtNGQ1Ni1iY2U4LTQ1MGQyMjk1YmE0OS8x
L201aHNfOXNHbFd5aFE5SWIzR0sxajBhSGZVdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGYv
OGM4M2NhLTIyNzgtNGQ1Ni1iY2U4LTQ1MGQyMjk1YmE0OS8xL282T2ZIYmhZc1ZY
eVc4TkRkWjliNHJjMnlCZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAblPyjANBgkqhkiG9w0BAQsFAAOC
AQEAAI6m4+Sf5UMXR3Xq7bv4HADeNsWODgx4CeHNfGhRMvJB+raSyVNT0lv8CkkQ
YQaxccpybVioV3P1ByBL8YAPX77BYZ8LDMbhJyp602GP1LukRHPUxK+OUKDDuv9f
xtvjnZfGSF7YT1pBQx7tFV93ECxlyp+QOxJ9b6/Ze68b5Gq0afZlPXXGlfl+cn2e
1J11lVMQSd1tUjkQcz+Li10+oZ2tGumEkU41fVR8DBtXcdZNoSt5dPA+ZXup3Q0s
rNJYzjk9Z/qfr+3WC7//RE6cU/qlH0ZxyzCJTUSnPuR4K937IZTIypDIDXqYrNBy
uLxtp3EWQtv/ijAoqWOkd3uFKw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:26:20 2025 by rpki-client