Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/3328da-aa4e-445b-9da9-d053745c2acc/1/WhDcnhIZFznaE9N5IF8Ob89-_g0.roa
File: WhDcnhIZFznaE9N5IF8Ob89-_g0.roa (raw, json)
Hash identifier: H+BFaBG5eJ+opQpmcJr3LlILXwjHZN3d14SaM6zzTFQ=
Subject key identifier: 5A:10:DC:9E:12:19:17:39:DA:13:D3:79:20:5F:0E:6F:CF:7E:FE:0D
Certificate issuer: /CN=4f895ff0e99a77c017e8a383292cb5c6f8261120
Certificate serial: 01856F9DC564CDB992BB45893BFF08AD30A2
Authority key identifier: 4F:89:5F:F0:E9:9A:77:C0:17:E8:A3:83:29:2C:B5:C6:F8:26:11:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4lf8Omad8AX6KODKSy1xvgmESA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/3328da-aa4e-445b-9da9-d053745c2acc/1/WhDcnhIZFznaE9N5IF8Ob89-_g0.roa
Signing time: Sun 01 Jan 2023 23:14:48 +0000
ROA not before: Sun 01 Jan 2023 23:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1299
IP address blocks: 185.26.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:c5:64:cd:b9:92:bb:45:89:3b:ff:08:ad:30:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f895ff0e99a77c017e8a383292cb5c6f8261120
Validity
Not Before: Jan 1 23:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a10dc9e12191739da13d379205f0e6fcf7efe0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:44:58:42:52:6d:98:a2:f6:8e:5a:b3:1c:a7:
55:bd:01:45:49:c1:4d:84:12:1b:5c:67:df:6c:e2:
85:05:d0:8f:64:76:ca:25:50:11:1a:37:15:b6:6a:
1c:6c:76:16:9d:09:ca:56:ed:0c:a2:73:99:5a:1a:
e1:ad:1b:e8:73:4d:2a:3c:ee:cb:02:69:31:64:7b:
95:69:c7:f1:03:21:bb:55:86:45:b9:4d:d2:3a:d7:
d4:58:fb:49:35:49:a7:d8:83:93:90:1c:9c:c1:28:
0a:8d:7c:f9:89:91:4a:cc:6b:99:22:01:b0:4c:78:
e6:20:16:f5:77:1f:ae:e8:5b:aa:7d:b5:83:96:cc:
9f:53:de:34:3f:47:79:ed:af:08:cb:8e:9c:a8:10:
a2:cc:aa:47:61:85:90:da:85:e7:d6:03:50:35:5e:
24:5f:01:3b:b6:ba:52:e6:99:32:f5:d6:fb:c3:5a:
a2:92:20:b3:4c:29:09:5b:c3:4a:8d:6a:6f:63:eb:
cc:a4:6e:69:d4:7f:93:94:73:76:31:be:3c:2b:58:
a3:fb:b5:28:96:c7:84:34:ef:7e:df:ca:a3:16:a1:
7d:8a:0b:2c:b6:c6:97:f7:7b:1f:b7:be:3c:e0:56:
35:7e:50:ee:d2:ff:cd:e8:4c:fc:17:40:1f:df:17:
66:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:10:DC:9E:12:19:17:39:DA:13:D3:79:20:5F:0E:6F:CF:7E:FE:0D
X509v3 Authority Key Identifier:
keyid:4F:89:5F:F0:E9:9A:77:C0:17:E8:A3:83:29:2C:B5:C6:F8:26:11:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4lf8Omad8AX6KODKSy1xvgmESA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/3328da-aa4e-445b-9da9-d053745c2acc/1/WhDcnhIZFznaE9N5IF8Ob89-_g0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/3328da-aa4e-445b-9da9-d053745c2acc/1/T4lf8Omad8AX6KODKSy1xvgmESA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.26.158.0/24
Signature Algorithm: sha256WithRSAEncryption
04:96:e8:4c:e3:b7:08:f5:4a:ab:4d:40:f5:1a:2b:d7:25:d1:
d6:1a:1b:50:51:ed:6b:8c:80:1a:9f:62:3b:c9:7c:50:51:05:
f3:84:2d:29:2f:f1:e6:a8:1f:76:87:4f:a6:e5:70:b7:52:e0:
39:7b:b4:8a:3f:d5:cc:31:a6:1a:43:6c:2f:a3:37:98:a0:b2:
0c:4c:27:d8:0c:53:52:7a:ca:49:a4:4c:13:e4:54:01:63:4c:
65:8c:8c:67:15:64:01:0f:73:ae:6e:ea:89:a2:d1:89:b5:2f:
7b:0c:01:fb:1b:6f:1f:46:2c:45:1a:fc:5f:87:30:c8:bd:65:
1b:16:4b:e2:d8:16:a4:c9:16:ab:be:92:51:f4:3c:40:37:2d:
14:2c:28:5a:78:0a:33:63:cc:b0:69:60:e0:11:9c:17:99:80:
6e:2f:49:4e:2f:25:42:0f:f9:fb:e8:a7:b5:82:e3:03:0e:c8:
21:c7:9c:a0:b7:16:34:e3:d8:7f:08:f3:52:55:a9:a4:45:a1:
76:a0:33:2f:1a:54:5e:85:ee:bd:bb:81:d9:ef:4a:b8:a0:50:
3b:de:e9:2e:78:96:86:ed:5c:21:e5:32:7d:a2:70:eb:95:98:
5e:70:20:99:15:29:2a:c8:9f:59:42:2a:c4:51:02:e9:77:ee:
86:85:8f:7c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvncVkzbmSu0WJO/8IrTCiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmODk1ZmYwZTk5YTc3YzAxN2U4YTM4MzI5MmNiNWM2Zjgy
NjExMjAwHhcNMjMwMTAxMjMxNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YTEwZGM5ZTEyMTkxNzM5ZGExM2QzNzkyMDVmMGU2ZmNmN2VmZTBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkERYQlJtmKL2jlqzHKdVvQFFScFN
hBIbXGffbOKFBdCPZHbKJVARGjcVtmocbHYWnQnKVu0MonOZWhrhrRvoc00qPO7L
AmkxZHuVacfxAyG7VYZFuU3SOtfUWPtJNUmn2IOTkBycwSgKjXz5iZFKzGuZIgGw
THjmIBb1dx+u6FuqfbWDlsyfU940P0d57a8Iy46cqBCizKpHYYWQ2oXn1gNQNV4k
XwE7trpS5pky9db7w1qikiCzTCkJW8NKjWpvY+vMpG5p1H+TlHN2Mb48K1ij+7Uo
lseENO9+38qjFqF9igsstsaX93sft7484FY1flDu0v/N6Ez8F0Af3xdmgQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFoQ3J4SGRc52hPTeSBfDm/Pfv4NMB8GA1UdIwQY
MBaAFE+JX/DpmnfAF+ijgykstcb4JhEgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDRsZjhPbWFkOEFYNktPREtTeTF4dmdtRVNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS8zMzI4ZGEtYWE0ZS00NDViLTlkYTkt
ZDA1Mzc0NWMyYWNjLzEvV2hEY25oSVpGem5hRTlONUlGOE9iODktX2cwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOS8zMzI4ZGEtYWE0ZS00NDViLTlkYTktZDA1Mzc0NWMyYWNj
LzEvVDRsZjhPbWFkOEFYNktPREtTeTF4dmdtRVNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuRqeMA0G
CSqGSIb3DQEBCwUAA4IBAQAEluhM47cI9UqrTUD1GivXJdHWGhtQUe1rjIAan2I7
yXxQUQXzhC0pL/HmqB92h0+m5XC3UuA5e7SKP9XMMaYaQ2wvozeYoLIMTCfYDFNS
espJpEwT5FQBY0xljIxnFWQBD3OubuqJotGJtS97DAH7G28fRixFGvxfhzDIvWUb
Fkvi2BakyRarvpJR9DxANy0ULChaeAozY8ywaWDgEZwXmYBuL0lOLyVCD/n76Ke1
guMDDsghx5ygtxY049h/CPNSVamkRaF2oDMvGlRehe69u4HZ70q4oFA73ukueJaG
7Vwh5TJ9onDrlZhecCCZFSkqyJ9ZQirEUQLpd+6GhY98
-----END CERTIFICATE-----
Generated at Sun Apr 20 02:49:57 2025 by rpki-client