Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/fd6977-8aae-4889-be6f-c711697fd3c3/1/1cF_0Oe8poV9AYuYzkqx437YGo8.roa
File: 1cF_0Oe8poV9AYuYzkqx437YGo8.roa (raw, json)
Hash identifier: YJf1zaxJhYs8CpF16nCgHCftLpsEplyyA2Oinh2rdsc=
Subject key identifier: D5:C1:7F:D0:E7:BC:A6:85:7D:01:8B:98:CE:4A:B1:E3:7E:D8:1A:8F
Certificate issuer: /CN=fba0b0f1fdd64014e5057b848a19a239e849dbdd
Certificate serial: 806469
Authority key identifier: FB:A0:B0:F1:FD:D6:40:14:E5:05:7B:84:8A:19:A2:39:E8:49:DB:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-6Cw8f3WQBTlBXuEihmiOehJ290.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/fd6977-8aae-4889-be6f-c711697fd3c3/1/1cF_0Oe8poV9AYuYzkqx437YGo8.roa
Signing time: Sat 01 Jan 2022 03:51:55 +0000
ROA not before: Sat 01 Jan 2022 03:51:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201737
IP address blocks: 62.3.17.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8414313 (0x806469)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fba0b0f1fdd64014e5057b848a19a239e849dbdd
Validity
Not Before: Jan 1 03:51:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d5c17fd0e7bca6857d018b98ce4ab1e37ed81a8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:49:34:64:31:50:c0:e5:70:c1:b5:09:87:ab:
01:2f:ed:59:a8:11:e4:d4:e7:cd:0f:e2:6c:64:46:
9e:31:7d:b1:2f:b6:5a:99:c0:6a:b4:b0:1c:6a:0f:
5b:11:50:1c:69:de:04:05:ad:a4:39:d2:07:ac:60:
76:88:30:f2:d3:9a:a7:c3:57:5a:dc:3c:bd:8c:02:
0a:98:7e:ba:89:9e:43:aa:fb:3e:04:5a:8d:05:50:
fa:3a:69:ff:6b:2d:64:26:b9:45:8f:5c:a6:ae:11:
c0:d3:71:37:d2:9e:ad:f8:bb:34:2c:db:38:6d:f0:
5c:03:9c:06:e5:9d:49:da:28:7f:d0:de:3e:30:26:
04:10:60:0e:6e:a4:d6:5e:8d:5c:8a:1f:5c:47:93:
90:e3:85:1c:b0:37:6b:f3:e7:be:77:d0:ef:7f:56:
9a:23:d6:3f:62:b4:10:08:ae:49:52:51:51:a5:15:
24:4e:12:ab:7e:47:23:9f:19:e2:7b:0c:a5:c1:44:
b4:39:3c:c4:a1:86:ff:8b:59:2f:93:55:ca:c0:a4:
d0:be:fb:f7:35:a0:74:35:47:39:3c:45:eb:66:b0:
1d:f3:0f:d9:11:45:24:53:99:7a:8d:a8:97:a2:a7:
1a:07:e4:be:ee:99:02:5a:ab:e8:1e:91:2e:6b:cb:
af:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:C1:7F:D0:E7:BC:A6:85:7D:01:8B:98:CE:4A:B1:E3:7E:D8:1A:8F
X509v3 Authority Key Identifier:
keyid:FB:A0:B0:F1:FD:D6:40:14:E5:05:7B:84:8A:19:A2:39:E8:49:DB:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-6Cw8f3WQBTlBXuEihmiOehJ290.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/fd6977-8aae-4889-be6f-c711697fd3c3/1/1cF_0Oe8poV9AYuYzkqx437YGo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/fd6977-8aae-4889-be6f-c711697fd3c3/1/1-6Cw8f3WQBTlBXuEihmiOehJ290.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.17.0/24
Signature Algorithm: sha256WithRSAEncryption
66:69:16:6d:25:00:36:fd:63:70:ef:8e:09:67:e0:27:c8:22:
33:4c:9e:87:ad:6d:9d:ad:12:fb:44:69:21:83:77:19:e6:d3:
ce:d3:49:04:cc:a8:da:d9:92:a8:6f:c2:c4:86:64:56:04:d9:
93:c1:a9:eb:b8:5e:6c:3f:89:89:5a:f9:e6:5e:70:46:2b:74:
c9:01:1c:d7:8d:67:08:5a:00:eb:bb:e6:6c:fe:3b:20:89:77:
66:97:7d:5e:77:cf:b9:b9:dd:27:25:e9:25:4a:30:3f:ad:e1:
08:6f:be:b6:96:83:e2:88:f2:f6:e4:05:ec:d6:3e:eb:5d:46:
5c:87:ab:fc:51:db:4c:07:54:21:0d:bc:02:8c:63:06:89:40:
ce:44:a9:c7:22:a9:17:8d:f3:a2:71:e6:ec:7d:d5:8b:a0:48:
9d:df:2b:d9:62:56:48:4b:16:d3:07:d4:a0:fb:ec:00:9f:69:
fe:49:90:fa:be:1b:48:72:99:36:73:3c:67:43:dd:f6:14:6b:
21:f3:19:47:c1:dd:8e:46:7c:e8:6c:d3:c9:2c:bb:29:85:c8:
61:67:2f:40:af:13:d5:7e:00:3f:ce:72:ed:56:9c:5a:7e:68:
83:03:d5:82:ad:6d:d6:39:29:1c:ea:e5:8a:5f:a3:e2:c0:d9:
53:f5:a5:28
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIEAIBkaTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
YmEwYjBmMWZkZDY0MDE0ZTUwNTdiODQ4YTE5YTIzOWU4NDlkYmRkMB4XDTIyMDEw
MTAzNTE1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDVjMTdmZDBlN2Jj
YTY4NTdkMDE4Yjk4Y2U0YWIxZTM3ZWQ4MWE4ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMZJNGQxUMDlcMG1CYerAS/tWagR5NTnzQ/ibGRGnjF9sS+2
WpnAarSwHGoPWxFQHGneBAWtpDnSB6xgdogw8tOap8NXWtw8vYwCCph+uomeQ6r7
PgRajQVQ+jpp/2stZCa5RY9cpq4RwNNxN9Kerfi7NCzbOG3wXAOcBuWdSdoof9De
PjAmBBBgDm6k1l6NXIofXEeTkOOFHLA3a/PnvnfQ739WmiPWP2K0EAiuSVJRUaUV
JE4Sq35HI58Z4nsMpcFEtDk8xKGG/4tZL5NVysCk0L779zWgdDVHOTxF62awHfMP
2RFFJFOZeo2ol6KnGgfkvu6ZAlqr6B6RLmvLr+cCAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBTVwX/Q57ymhX0Bi5jOSrHjftgajzAfBgNVHSMEGDAWgBT7oLDx/dZAFOUF
e4SKGaI56Enb3TAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtNkN3OGYzV1FCVGxCWHVFaWhtaU9laEoyOTAuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxUL2U1L2ZkNjk3Ny04YWFlLTQ4ODktYmU2Zi1jNzExNjk3ZmQzYzMv
MS8xY0ZfME9lOHBvVjlBWXVZemtxeDQzN1lHbzgucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2U1
L2ZkNjk3Ny04YWFlLTQ4ODktYmU2Zi1jNzExNjk3ZmQzYzMvMS8xLTZDdzhmM1dR
QlRsQlh1RWlobWlPZWhKMjkwLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPgMRMA0GCSqGSIb3DQEBCwUA
A4IBAQBmaRZtJQA2/WNw744JZ+AnyCIzTJ6HrW2drRL7RGkhg3cZ5tPO00kEzKja
2ZKob8LEhmRWBNmTwanruF5sP4mJWvnmXnBGK3TJARzXjWcIWgDru+Zs/jsgiXdm
l31ed8+5ud0nJeklSjA/reEIb762loPiiPL25AXs1j7rXUZch6v8UdtMB1QhDbwC
jGMGiUDORKnHIqkXjfOicebsfdWLoEid3yvZYlZISxbTB9Sg++wAn2n+SZD6vhtI
cpk2czxnQ932FGsh8xlHwd2ORnzobNPJLLsphchhZy9ArxPVfgA/znLtVpxafmiD
A9WCrW3WOSkc6uWKX6PiwNlT9aUo
-----END CERTIFICATE-----
Generated at Sun Apr 20 19:45:58 2025 by rpki-client