Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/a3fb67-d514-4aee-adb9-72bad9d73c80/1/wh_j8A_1huuTaFpqm9haqfF0piM.roa
File: wh_j8A_1huuTaFpqm9haqfF0piM.roa (raw, json)
Hash identifier: YkzCPb7DOMq1qlaKfTLjEIOPqcEsOcC46hXbzQk2haQ=
Subject key identifier: C2:1F:E3:F0:0F:F5:86:EB:93:68:5A:6A:9B:D8:5A:A9:F1:74:A6:23
Certificate issuer: /CN=d0b849b9bc9042a1557331937e4ad71518af61cf
Certificate serial: 08767705
Authority key identifier: D0:B8:49:B9:BC:90:42:A1:55:73:31:93:7E:4A:D7:15:18:AF:61:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0LhJubyQQqFVczGTfkrXFRivYc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/a3fb67-d514-4aee-adb9-72bad9d73c80/1/wh_j8A_1huuTaFpqm9haqfF0piM.roa
Signing time: Sat 01 Jan 2022 04:51:35 +0000
ROA not before: Sat 01 Jan 2022 04:51:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60201
IP address blocks: 5.183.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141981445 (0x8767705)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0b849b9bc9042a1557331937e4ad71518af61cf
Validity
Not Before: Jan 1 04:51:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c21fe3f00ff586eb93685a6a9bd85aa9f174a623
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:19:a2:90:64:7d:51:ca:ee:70:e5:62:87:ba:
84:5a:e4:8d:c9:a1:57:94:b0:97:4d:db:2c:1f:1b:
e7:e6:2f:fe:85:52:cc:a3:10:f9:94:e7:d0:71:11:
af:28:e9:58:75:5f:52:ca:18:ea:4c:d7:ad:8e:1d:
6e:43:38:c0:37:a4:79:41:73:f4:66:31:36:35:7d:
b4:ed:8f:d6:2f:65:f3:87:e3:2a:d0:03:1d:d7:4e:
30:c2:6f:54:22:ed:80:45:1d:94:ad:08:0c:26:ed:
8a:63:03:2a:80:70:32:df:89:b6:85:e8:8c:25:06:
fd:98:85:2b:9a:a9:f1:10:03:df:fb:b2:e4:fc:78:
66:61:0b:f7:fd:f5:03:bd:43:81:c3:1c:b0:7f:37:
38:80:98:7e:9d:ca:c5:47:77:1d:78:16:fd:0f:9b:
c2:15:de:14:01:63:38:f1:19:c9:d0:f6:bd:05:b6:
26:66:3c:47:f8:da:be:e1:d5:3f:1d:02:10:58:94:
e0:3c:f1:97:44:72:61:47:58:30:00:0e:ee:60:6c:
88:bf:2a:13:d1:40:15:d6:47:c3:aa:e8:ce:58:48:
69:13:79:d9:af:fb:42:85:86:26:4a:9f:97:f2:71:
00:e9:b7:4f:8f:72:e1:c9:dd:9f:f5:46:02:e2:a9:
00:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:1F:E3:F0:0F:F5:86:EB:93:68:5A:6A:9B:D8:5A:A9:F1:74:A6:23
X509v3 Authority Key Identifier:
keyid:D0:B8:49:B9:BC:90:42:A1:55:73:31:93:7E:4A:D7:15:18:AF:61:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0LhJubyQQqFVczGTfkrXFRivYc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/a3fb67-d514-4aee-adb9-72bad9d73c80/1/wh_j8A_1huuTaFpqm9haqfF0piM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/a3fb67-d514-4aee-adb9-72bad9d73c80/1/0LhJubyQQqFVczGTfkrXFRivYc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.168.0/24
Signature Algorithm: sha256WithRSAEncryption
60:6b:cb:89:9f:d7:97:a0:4d:ed:9b:c1:3e:7e:bd:3c:a9:2b:
57:28:97:71:19:35:63:94:da:e6:7f:b0:f3:9a:be:58:a0:70:
c4:f4:cc:9a:9a:a7:ab:26:da:86:54:30:1a:57:e8:f0:40:f1:
f2:b0:04:3e:ba:77:27:3c:88:13:f5:63:bf:44:94:8e:42:46:
3f:60:97:e1:04:21:d0:6e:28:ba:59:1f:f2:9f:d0:aa:53:e4:
2a:54:a8:92:33:2a:48:da:50:f9:5b:01:67:6e:ac:81:0f:93:
36:83:15:0f:55:d1:f1:76:b5:07:4e:1f:92:19:a7:f5:0d:82:
1b:07:b7:b6:80:f7:99:f5:dd:c0:9d:be:81:23:8e:8b:ee:9b:
cb:71:97:7a:f6:d6:1e:40:fa:09:aa:9c:9a:36:13:16:24:3d:
4f:52:96:59:0e:84:0a:e0:aa:9c:f0:ac:5a:16:a2:84:9b:a5:
ec:f1:5f:96:3a:93:58:ad:b1:75:6f:1f:f2:99:ca:3a:01:64:
ef:69:3a:60:3c:3f:63:1a:e0:aa:75:d5:06:66:a5:5e:11:5a:
10:f2:8b:40:0d:90:0e:4c:08:8c:57:0f:74:fc:19:00:70:35:
94:27:10:13:63:1e:2f:cb:17:58:c5:86:38:38:47:cc:4d:92:
40:25:60:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 03:41:01 2025 by rpki-client