Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/0a0078-648f-4360-94c7-0d6dcb0ecfcf/1/0EOJSQHw7qUCjmxYJlMbxi7-wSo.roa
File: 0EOJSQHw7qUCjmxYJlMbxi7-wSo.roa (raw, json)
Hash identifier: fZleZ/3vLTfcxhsgsbSfbTgFAWKwVoWTlCPxo5B+Sr0=
Subject key identifier: D0:43:89:49:01:F0:EE:A5:02:8E:6C:58:26:53:1B:C6:2E:FE:C1:2A
Certificate issuer: /CN=403c7e85de49d7924ce50d3d6a9e52e9e9c2e312
Certificate serial: 044C0A3B
Authority key identifier: 40:3C:7E:85:DE:49:D7:92:4C:E5:0D:3D:6A:9E:52:E9:E9:C2:E3:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QDx-hd5J15JM5Q09ap5S6enC4xI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/0a0078-648f-4360-94c7-0d6dcb0ecfcf/1/0EOJSQHw7qUCjmxYJlMbxi7-wSo.roa
Signing time: Sat 01 Jan 2022 12:01:52 +0000
ROA not before: Sat 01 Jan 2022 12:01:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58150
IP address blocks: 185.56.0.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72092219 (0x44c0a3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=403c7e85de49d7924ce50d3d6a9e52e9e9c2e312
Validity
Not Before: Jan 1 12:01:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d043894901f0eea5028e6c5826531bc62efec12a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:83:18:89:ee:33:84:1d:b9:7b:56:ea:86:c9:
35:1a:10:96:2e:04:38:1f:53:42:33:cf:dc:b7:d0:
c6:98:37:20:39:1f:e6:73:5a:57:bc:7c:da:18:e3:
b5:23:d5:a7:af:07:da:b5:fe:7a:87:87:b7:c1:78:
d0:7b:05:ef:6c:1a:b0:5b:e6:96:a0:7c:28:0f:c0:
87:60:3a:d1:79:c2:e9:30:75:ad:86:77:28:f3:13:
8e:aa:94:16:2d:a9:fe:72:c6:ac:65:f2:7a:40:07:
70:8c:c0:ff:22:84:13:96:ba:3f:ca:bc:bc:ac:3d:
7c:82:54:05:56:ab:99:1f:49:32:b3:12:16:11:13:
c6:94:df:f1:7d:92:7f:d6:da:68:f3:94:64:91:de:
9c:ba:00:60:3f:d1:c4:1b:a3:8a:e3:63:7e:82:e4:
c2:d8:8d:2d:d0:1f:5c:b6:92:0c:a8:72:40:8d:e5:
19:90:11:3e:cb:0b:ec:7c:fb:29:4e:37:f9:3d:d9:
31:c6:b4:ec:e2:43:23:15:b4:4d:85:34:39:59:f1:
19:d6:5b:1b:87:2c:3e:90:c2:90:f3:9f:d4:03:2c:
f3:25:ad:c9:21:b0:0a:b3:5a:2f:a5:fe:30:11:1b:
b7:2d:3b:d9:ae:3f:d1:69:71:bf:ef:0b:65:32:0e:
03:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:43:89:49:01:F0:EE:A5:02:8E:6C:58:26:53:1B:C6:2E:FE:C1:2A
X509v3 Authority Key Identifier:
keyid:40:3C:7E:85:DE:49:D7:92:4C:E5:0D:3D:6A:9E:52:E9:E9:C2:E3:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QDx-hd5J15JM5Q09ap5S6enC4xI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/0a0078-648f-4360-94c7-0d6dcb0ecfcf/1/0EOJSQHw7qUCjmxYJlMbxi7-wSo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/0a0078-648f-4360-94c7-0d6dcb0ecfcf/1/QDx-hd5J15JM5Q09ap5S6enC4xI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.56.0.0/22
Signature Algorithm: sha256WithRSAEncryption
18:e2:42:36:c4:03:d1:2b:83:94:9e:29:88:ad:8f:c3:d5:cc:
32:1d:a6:d8:82:22:5a:21:81:5c:44:73:7c:64:12:66:2b:2f:
f0:3b:56:ae:b2:72:b3:6d:de:bc:af:cb:d5:fd:a4:9e:0d:a8:
16:d5:58:d1:b5:f3:31:49:1c:f8:bf:c0:4f:81:5a:6c:86:bd:
d9:e8:bb:d6:d2:d5:cb:6d:65:9c:db:93:35:7d:3b:38:6a:1b:
e2:68:de:61:84:a1:26:50:d3:85:d2:c1:47:14:57:5b:24:0c:
78:36:83:14:06:fc:87:0e:c2:a8:2e:0e:0b:58:62:f1:fe:49:
86:10:d9:6b:8f:38:6c:71:a4:85:b6:bc:2a:91:cb:1d:28:50:
76:21:28:7e:d6:38:0d:42:b7:89:d1:83:67:e7:90:ba:c6:e7:
cf:34:c1:e3:0f:cb:d0:8d:7b:78:d5:c8:1b:d9:2a:3b:dd:6c:
2a:15:5c:09:b5:31:32:4c:26:a9:56:9e:cf:af:92:5a:be:5e:
01:9c:5e:a9:60:1d:cf:5b:60:b3:24:3a:89:58:d0:df:22:96:
30:f4:d8:e5:0b:cd:ee:b9:fb:69:24:c5:e9:a7:14:16:b5:43:
4b:7d:dd:8a:7f:63:c5:ca:4f:b0:38:48:df:82:86:94:c9:d4:
73:50:1d:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:39:52 2025 by rpki-client