Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/82c0a2-804b-446d-ab24-4f38c656b256/1/j5QwOpz1NyLhsLeNIsXl9N96dtQ.roa
File: j5QwOpz1NyLhsLeNIsXl9N96dtQ.roa (raw, json)
Hash identifier: G9WLcV1UOJSVk+nx5QZ1E2sNYiYi7SCmxPFqW0gMkoM=
Subject key identifier: 8F:94:30:3A:9C:F5:37:22:E1:B0:B7:8D:22:C5:E5:F4:DF:7A:76:D4
Certificate issuer: /CN=133cd7c1a9c79c82eee5c86a423c17c1d63c3413
Certificate serial: 1C5FA239
Authority key identifier: 13:3C:D7:C1:A9:C7:9C:82:EE:E5:C8:6A:42:3C:17:C1:D6:3C:34:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EzzXwanHnILu5chqQjwXwdY8NBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/82c0a2-804b-446d-ab24-4f38c656b256/1/j5QwOpz1NyLhsLeNIsXl9N96dtQ.roa
Signing time: Sat 01 Jan 2022 06:56:15 +0000
ROA not before: Sat 01 Jan 2022 06:56:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39743
IP address blocks: 185.5.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 476029497 (0x1c5fa239)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=133cd7c1a9c79c82eee5c86a423c17c1d63c3413
Validity
Not Before: Jan 1 06:56:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f94303a9cf53722e1b0b78d22c5e5f4df7a76d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f1:11:4d:3f:bf:02:c8:90:75:c3:2e:f3:12:
63:64:f4:6d:33:a6:a8:6c:1c:ae:2e:34:ea:ab:11:
35:2a:69:37:a1:57:5f:8d:e9:74:15:ae:85:ee:4d:
9d:06:8f:84:a4:c9:e2:31:a5:cd:ea:46:5b:0d:62:
96:4c:b9:6e:09:7a:7c:f3:de:69:aa:12:80:49:3e:
54:49:62:d0:7a:36:32:3a:38:41:7a:a9:a0:fb:f5:
12:ff:fd:5f:10:44:06:05:48:1e:72:a9:3d:92:e7:
61:40:83:c4:a4:d1:a1:a2:de:fc:38:15:80:6e:b4:
c7:93:a5:a8:06:d1:3e:3e:cb:17:83:da:22:5e:b0:
b9:3c:53:79:b9:96:8a:60:fc:ac:aa:c3:77:a9:2f:
23:81:a9:d9:93:7f:27:33:0d:c2:40:77:cd:0b:06:
02:88:63:a3:08:bc:52:28:a5:2d:f9:c0:da:51:fa:
e3:a1:e3:cb:fb:e4:d0:46:60:c7:aa:29:ae:b4:36:
98:43:4f:96:99:a5:31:f7:0b:3c:92:78:01:87:c8:
01:ea:39:ba:7a:8a:1d:20:27:34:67:1d:90:b1:b0:
d9:ce:28:e5:45:5c:25:5b:8b:37:ec:2e:74:94:58:
73:ab:12:89:40:74:fa:11:76:dc:fb:3f:99:7c:db:
58:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:94:30:3A:9C:F5:37:22:E1:B0:B7:8D:22:C5:E5:F4:DF:7A:76:D4
X509v3 Authority Key Identifier:
keyid:13:3C:D7:C1:A9:C7:9C:82:EE:E5:C8:6A:42:3C:17:C1:D6:3C:34:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EzzXwanHnILu5chqQjwXwdY8NBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/82c0a2-804b-446d-ab24-4f38c656b256/1/j5QwOpz1NyLhsLeNIsXl9N96dtQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/82c0a2-804b-446d-ab24-4f38c656b256/1/EzzXwanHnILu5chqQjwXwdY8NBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.5.46.0/24
Signature Algorithm: sha256WithRSAEncryption
35:10:84:ad:d0:86:f7:e7:92:d5:52:36:67:37:1c:96:5f:75:
7c:0f:de:df:e2:94:46:02:d8:aa:61:e0:95:a0:02:e3:99:f2:
1e:75:09:6e:6a:d9:e0:9e:1c:67:8f:1b:af:18:b4:6b:18:54:
ac:f3:1d:f2:15:4d:b1:72:77:ad:68:d2:2e:3e:55:3d:d7:63:
93:79:01:89:2d:7d:0a:ce:9f:d9:07:63:a5:dd:63:46:7b:72:
e8:36:80:8f:ba:60:73:e6:30:d1:fa:fe:b1:0e:fd:bb:9b:20:
e4:b3:5d:f9:e4:89:40:e8:a1:77:ab:d7:5b:53:fe:ac:28:19:
b1:d6:a6:42:cf:d6:38:d1:29:b3:9f:55:b6:87:a3:ae:58:1c:
e9:30:4c:c5:d4:9f:a5:90:3b:42:42:24:ad:26:60:bc:e5:8b:
72:41:f4:92:21:53:75:e3:e2:41:86:fc:6c:fc:ec:c5:c5:81:
96:01:e1:b7:35:47:11:ff:1d:d1:3d:44:4a:ea:74:12:14:9b:
17:80:68:b1:f7:98:ec:87:06:cd:bd:b8:56:72:6b:dd:17:32:
09:2f:ab:55:60:f1:25:c0:72:99:b4:e4:09:50:2a:56:57:b2:
df:54:b6:e9:01:32:ca:0b:b5:19:16:ce:f0:a9:f3:75:80:79:
dc:32:13:d3
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEHF+iOTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
MzNjZDdjMWE5Yzc5YzgyZWVlNWM4NmE0MjNjMTdjMWQ2M2MzNDEzMB4XDTIyMDEw
MTA2NTYxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGY5NDMwM2E5Y2Y1
MzcyMmUxYjBiNzhkMjJjNWU1ZjRkZjdhNzZkNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJrxEU0/vwLIkHXDLvMSY2T0bTOmqGwcri406qsRNSppN6FX
X43pdBWuhe5NnQaPhKTJ4jGlzepGWw1ilky5bgl6fPPeaaoSgEk+VEli0Ho2Mjo4
QXqpoPv1Ev/9XxBEBgVIHnKpPZLnYUCDxKTRoaLe/DgVgG60x5OlqAbRPj7LF4Pa
Il6wuTxTebmWimD8rKrDd6kvI4Gp2ZN/JzMNwkB3zQsGAohjowi8UiilLfnA2lH6
46Hjy/vk0EZgx6oprrQ2mENPlpmlMfcLPJJ4AYfIAeo5unqKHSAnNGcdkLGw2c4o
5UVcJVuLN+wudJRYc6sSiUB0+hF23Ps/mXzbWM0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSPlDA6nPU3IuGwt40ixeX033p21DAfBgNVHSMEGDAWgBQTPNfBqcecgu7l
yGpCPBfB1jw0EzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0V6elh3YW5IbklMdTVjaHFRandYd2RZOE5CTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjAvODJjMGEyLTgwNGItNDQ2ZC1hYjI0LTRmMzhjNjU2YjI1Ni8x
L2o1UXdPcHoxTnlMaHNMZU5Jc1hsOU45NmR0US5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjAv
ODJjMGEyLTgwNGItNDQ2ZC1hYjI0LTRmMzhjNjU2YjI1Ni8xL0V6elh3YW5IbklM
dTVjaHFRandYd2RZOE5CTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALkFLjANBgkqhkiG9w0BAQsFAAOC
AQEANRCErdCG9+eS1VI2Zzccll91fA/e3+KURgLYqmHglaAC45nyHnUJbmrZ4J4c
Z48brxi0axhUrPMd8hVNsXJ3rWjSLj5VPddjk3kBiS19Cs6f2Qdjpd1jRnty6DaA
j7pgc+Yw0fr+sQ79u5sg5LNd+eSJQOihd6vXW1P+rCgZsdamQs/WONEps59Vtoej
rlgc6TBMxdSfpZA7QkIkrSZgvOWLckH0kiFTdePiQYb8bPzsxcWBlgHhtzVHEf8d
0T1ESup0EhSbF4BosfeY7IcGzb24VnJr3RcyCS+rVWDxJcBymbTkCVAqVley31S2
6QEyygu1GRbO8KnzdYB53DIT0w==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:13 2023 by rpki-client on console-fra.rpki-client.org