Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/5o5OH-NpOsUFH5JkWk44cs_JZQc.roa
File: 5o5OH-NpOsUFH5JkWk44cs_JZQc.roa (raw, json)
Hash identifier: apOQ20JAYg/mD7vP0DS40Yw+RCS0b1iNRFgnm4G2jqo=
Subject key identifier: E6:8E:4E:1F:E3:69:3A:C5:05:1F:92:64:5A:4E:38:72:CF:C9:65:07
Certificate issuer: /CN=2af5e4866ba09820124a6e511104fc41fa541995
Certificate serial: 03B46402
Authority key identifier: 2A:F5:E4:86:6B:A0:98:20:12:4A:6E:51:11:04:FC:41:FA:54:19:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/5o5OH-NpOsUFH5JkWk44cs_JZQc.roa
Signing time: Sat 01 Jan 2022 05:56:54 +0000
ROA not before: Sat 01 Jan 2022 05:56:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47796
IP address blocks: 185.110.236.0/24 maxlen: 24
185.110.239.0/24 maxlen: 24
185.110.237.0/24 maxlen: 24
185.110.238.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62153730 (0x3b46402)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2af5e4866ba09820124a6e511104fc41fa541995
Validity
Not Before: Jan 1 05:56:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e68e4e1fe3693ac5051f92645a4e3872cfc96507
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:24:df:95:1a:48:ce:8a:b4:41:d3:3d:b1:24:
39:cc:8b:45:9a:1b:f4:f0:a1:1b:fe:08:5c:c6:45:
ba:f0:fd:d1:0e:b5:39:d7:1f:a3:53:70:15:a9:b6:
bd:64:89:3c:ad:83:7f:da:37:60:c7:d6:c9:3b:44:
43:60:66:5c:92:fc:02:b3:97:56:8d:66:70:ca:cc:
89:0f:d9:2b:9b:37:b9:9e:b7:83:b8:86:95:b8:e7:
f0:1b:37:f4:aa:98:a0:3c:e6:52:f6:f8:2c:00:29:
d8:75:f4:37:a2:32:0a:10:e5:b5:cb:6e:bb:d8:de:
f9:2d:7d:6c:76:dd:75:9f:b0:d7:8d:c6:04:22:fa:
0c:b6:d0:af:81:36:d4:e3:56:54:ff:d6:75:99:98:
7f:85:4c:a4:eb:f4:64:f0:91:0f:b3:e4:28:87:2b:
65:1b:49:e9:d2:86:e6:03:1a:a5:8b:ec:f5:42:88:
a8:01:d3:00:57:a2:4f:af:39:82:8e:dc:26:7b:6c:
5e:8a:24:f0:48:d0:0b:5e:7b:7e:2b:70:a5:2f:c3:
9b:d5:04:ff:af:07:c6:48:a2:7f:67:27:07:93:d8:
56:7d:de:f9:fd:02:fa:25:d8:47:89:ae:0b:93:bf:
bc:35:39:82:42:e2:78:10:23:93:1e:22:58:ef:97:
aa:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:8E:4E:1F:E3:69:3A:C5:05:1F:92:64:5A:4E:38:72:CF:C9:65:07
X509v3 Authority Key Identifier:
keyid:2A:F5:E4:86:6B:A0:98:20:12:4A:6E:51:11:04:FC:41:FA:54:19:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/5o5OH-NpOsUFH5JkWk44cs_JZQc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.110.236.0/22
Signature Algorithm: sha256WithRSAEncryption
85:db:e3:a2:fe:ff:15:72:86:95:9c:80:f2:6d:11:76:ba:9d:
0e:4d:b1:f2:98:1d:99:c5:4a:fe:b6:55:c6:2a:6d:7e:28:45:
99:85:3a:a1:90:32:df:d8:b3:eb:15:ad:5b:d3:5a:d3:58:98:
9f:9c:16:20:20:9c:f2:bb:dc:0f:94:c2:e7:7e:03:0b:af:8f:
e2:83:36:56:a1:f9:41:d2:a3:ad:00:f2:c9:ca:0f:63:2b:63:
91:b5:b5:6a:5a:45:2c:7e:50:b5:eb:d3:50:1e:bb:2d:ee:5d:
c3:f5:bd:8c:c3:66:cc:b2:9b:86:2a:54:dc:94:36:9d:a1:8e:
b6:2e:7d:65:4f:b8:01:84:51:f6:c2:d1:bb:c1:db:59:1f:e3:
c6:53:cb:9b:d0:ff:1f:2c:0a:fc:01:00:cd:e9:fe:6b:ba:9e:
02:23:bd:75:c3:df:09:3c:e4:e5:15:88:91:e3:97:cf:17:51:
8e:13:f8:d4:ec:4f:50:61:22:52:e0:e1:d6:50:0b:ce:63:24:
ca:85:28:77:98:4a:f5:f4:59:f3:cd:dc:27:38:51:7b:53:41:
53:b2:8d:d8:dd:56:0f:ca:70:4a:c4:10:f1:00:e5:ee:75:00:
d8:8d:f6:91:26:6d:42:41:2f:1f:fb:44:d2:4b:58:03:3c:1b:
d0:e8:2b:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:44:44 2025 by rpki-client