Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/59c4b8-87f4-4f2f-a449-aabb062e40db/1/FUZR5mA4BkwSzeNDZWcr3SrE4CA.roa
File: FUZR5mA4BkwSzeNDZWcr3SrE4CA.roa (raw, json)
Hash identifier: z9HaQycesR18UlBCBtWgXIoq10bvYwz6zHZUHwP0qKk=
Subject key identifier: 15:46:51:E6:60:38:06:4C:12:CD:E3:43:65:67:2B:DD:2A:C4:E0:20
Certificate issuer: /CN=3545a7200164912041bb931efb1feac123b43a18
Certificate serial: 018571BA0763DD8134AF0277E900863BECD0
Authority key identifier: 35:45:A7:20:01:64:91:20:41:BB:93:1E:FB:1F:EA:C1:23:B4:3A:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NUWnIAFkkSBBu5Me-x_qwSO0Ohg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/59c4b8-87f4-4f2f-a449-aabb062e40db/1/FUZR5mA4BkwSzeNDZWcr3SrE4CA.roa
Signing time: Mon 02 Jan 2023 09:04:55 +0000
ROA not before: Mon 02 Jan 2023 09:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20746
IP address blocks: 82.102.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:ba:07:63:dd:81:34:af:02:77:e9:00:86:3b:ec:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3545a7200164912041bb931efb1feac123b43a18
Validity
Not Before: Jan 2 09:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=154651e66038064c12cde34365672bdd2ac4e020
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:bc:16:61:d5:ad:55:48:45:6a:e1:5f:a4:40:
74:cf:d8:f5:c8:51:21:f2:d9:96:d6:30:d4:22:5f:
28:cb:08:d3:65:cd:33:7f:eb:d3:d7:ed:32:0a:ed:
ab:34:9d:2b:36:25:38:e4:71:e9:71:6a:07:9b:95:
08:b4:35:74:0a:5d:40:81:0a:68:ef:8c:b0:b9:8c:
0b:95:99:a4:d4:87:8a:53:08:d1:5d:b3:a2:c4:53:
6f:36:31:b2:14:0e:e9:9b:d4:aa:3c:61:af:df:89:
22:d5:3c:78:04:f2:42:f5:1c:c8:1b:af:89:ac:f4:
fb:ad:a9:3b:fe:00:03:b3:84:42:70:f9:8d:a6:6c:
16:6d:1e:b7:8c:e7:3e:77:24:90:1b:b7:0a:36:4a:
3b:a7:74:dd:45:98:a6:25:fa:b1:0a:c6:4e:86:f3:
99:e1:9e:42:72:24:98:93:c7:d2:68:37:e5:50:84:
fa:b4:7c:52:00:f5:1c:84:17:1e:52:76:a0:57:ee:
61:95:6a:66:1e:57:0f:8c:05:c6:bb:98:37:f9:54:
f8:66:d9:f1:4c:4f:4c:78:0a:9d:36:71:13:23:cd:
ce:aa:5d:c5:8c:ad:6d:7e:3f:73:ab:c9:56:ec:9c:
2e:53:fe:01:e9:f6:df:47:ad:a5:73:e4:76:54:a2:
98:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:46:51:E6:60:38:06:4C:12:CD:E3:43:65:67:2B:DD:2A:C4:E0:20
X509v3 Authority Key Identifier:
keyid:35:45:A7:20:01:64:91:20:41:BB:93:1E:FB:1F:EA:C1:23:B4:3A:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NUWnIAFkkSBBu5Me-x_qwSO0Ohg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/59c4b8-87f4-4f2f-a449-aabb062e40db/1/FUZR5mA4BkwSzeNDZWcr3SrE4CA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/59c4b8-87f4-4f2f-a449-aabb062e40db/1/NUWnIAFkkSBBu5Me-x_qwSO0Ohg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.102.4.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:9c:b0:f2:d2:b6:f1:45:e0:83:d2:52:f1:cc:3e:4c:c3:c7:
5f:b1:bf:65:67:85:9d:55:c1:c5:a5:1b:4c:00:5a:90:13:49:
ad:50:ba:97:d9:a2:99:1c:a7:6e:6e:62:07:a8:81:c4:3c:a0:
d3:c1:c2:80:19:34:2e:46:b0:07:10:d3:68:4a:f7:ae:21:9f:
a5:ed:a7:e2:56:80:f3:d8:0e:ec:1b:8b:91:a0:01:3a:5e:ed:
c7:78:72:72:73:13:a0:e6:d7:48:93:16:28:3d:89:b7:a9:66:
12:c7:96:aa:d4:9d:dc:85:50:09:0c:33:58:0d:40:3d:4f:a7:
f5:77:63:f0:35:40:51:e3:35:4d:bb:c7:d2:ce:1d:89:bc:00:
51:20:42:45:a3:82:fb:8c:b7:76:0d:02:62:cf:8c:7e:d4:00:
02:1b:e4:b3:07:95:e2:75:af:65:4e:ad:3a:fe:b2:da:27:0b:
2e:2f:f8:5e:c3:b4:3f:71:75:93:33:03:06:a1:71:eb:36:9d:
db:50:cd:25:fe:76:58:c2:2b:8a:2f:01:0b:00:be:23:de:bd:
25:4a:26:c9:89:d2:ee:57:75:a3:a1:95:55:bf:50:d8:f2:ef:
0c:3e:6b:2b:fe:c1:7d:43:0f:05:d0:3e:e1:07:a5:cf:0a:24:
bf:94:ae:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 16:19:33 2025 by rpki-client