Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/oJ1FtZm42xgFsgCw7Qj_dAagDDM.roa
File: oJ1FtZm42xgFsgCw7Qj_dAagDDM.roa (raw, json)
Hash identifier: qAexjzOfq1b6rpxuKP2livHK5cxHHYLu5OTes3CPWlA=
Subject key identifier: A0:9D:45:B5:99:B8:DB:18:05:B2:00:B0:ED:08:FF:74:06:A0:0C:33
Certificate issuer: /CN=b1740c4c079f2d1dee85439f82781b9bae756a95
Certificate serial: 0331D795
Authority key identifier: B1:74:0C:4C:07:9F:2D:1D:EE:85:43:9F:82:78:1B:9B:AE:75:6A:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXQMTAefLR3uhUOfgngbm651apU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/oJ1FtZm42xgFsgCw7Qj_dAagDDM.roa
Signing time: Sat 01 Jan 2022 10:59:47 +0000
ROA not before: Sat 01 Jan 2022 10:59:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209276
IP address blocks: 185.136.226.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53598101 (0x331d795)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1740c4c079f2d1dee85439f82781b9bae756a95
Validity
Not Before: Jan 1 10:59:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a09d45b599b8db1805b200b0ed08ff7406a00c33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:22:9a:74:5c:1f:18:6c:57:59:66:49:5b:19:
17:cd:67:7f:12:56:3d:df:10:32:5d:19:52:71:c0:
f6:7a:ff:34:59:84:ab:a9:22:70:d7:67:1f:dd:ae:
44:14:06:48:e6:4b:a5:86:31:ad:3e:a6:bf:fe:dd:
7f:d0:f8:be:40:6c:65:26:09:1c:1f:d2:2e:ee:6f:
02:0b:14:77:bb:02:d6:95:c9:84:2f:8f:30:be:fb:
cb:06:1a:01:df:57:ff:d6:a6:ca:87:8f:68:41:2d:
66:db:18:99:96:05:84:91:aa:87:80:9c:c9:ba:f2:
c2:07:03:dd:a2:04:a5:a4:be:60:f1:2d:04:a0:58:
00:5a:7a:18:c4:e0:25:a3:66:d9:18:d7:1f:e4:9f:
87:67:93:3a:92:fb:45:b4:2b:4d:43:73:51:fc:69:
b3:24:4a:8c:e7:1b:15:3c:3d:b9:23:a1:f3:99:49:
f8:53:08:d6:2b:42:dc:c9:f8:f9:bd:56:ae:13:61:
10:45:7f:ab:01:af:76:a7:c9:4f:61:30:ff:3b:0c:
e2:d7:47:45:42:78:ad:34:7f:70:4c:e0:35:d7:ec:
79:19:31:d0:97:e8:bf:38:0e:90:d2:58:6c:a1:13:
79:94:2f:2f:56:33:07:6b:d9:7f:fe:05:0e:c4:bb:
6a:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:9D:45:B5:99:B8:DB:18:05:B2:00:B0:ED:08:FF:74:06:A0:0C:33
X509v3 Authority Key Identifier:
keyid:B1:74:0C:4C:07:9F:2D:1D:EE:85:43:9F:82:78:1B:9B:AE:75:6A:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXQMTAefLR3uhUOfgngbm651apU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/oJ1FtZm42xgFsgCw7Qj_dAagDDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/sXQMTAefLR3uhUOfgngbm651apU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.136.226.0/24
Signature Algorithm: sha256WithRSAEncryption
68:4f:7a:da:ad:91:10:2a:3c:b4:f3:4b:1d:de:6c:2f:98:6f:
1f:2b:f0:70:4a:b1:06:53:d9:e3:7d:be:f1:b4:a3:dc:5f:74:
68:b2:9a:04:fd:83:a7:6e:71:53:8d:ba:84:f3:db:9f:56:81:
d3:86:ab:be:83:2b:37:f8:35:ee:ad:91:f5:3a:4e:ac:e5:0c:
cb:1f:99:2d:02:96:e0:f4:ed:53:44:f3:5c:85:42:53:41:fd:
23:d4:56:f0:c5:b9:90:1e:50:6c:32:48:84:b4:9e:b8:0c:82:
6c:e6:bb:93:19:bf:ac:4b:c8:03:0b:7b:c0:57:13:4d:11:32:
3d:4e:42:a3:e9:07:33:ec:02:1f:f1:5f:da:5d:1c:07:0d:69:
c5:cc:78:b1:f7:ac:c6:c6:19:f1:b9:19:5b:e5:8a:18:53:f6:
2d:0e:e9:b9:95:b5:ce:f5:34:a7:19:be:87:4e:9b:2d:4b:1d:
a5:fb:8c:15:ad:61:5f:6d:63:1c:10:c0:47:f3:32:a4:ee:e9:
c5:ea:6c:c7:a7:6a:59:76:3b:2c:38:0d:fb:47:15:2f:f8:8b:
17:0f:97:1f:19:f7:7b:c4:b0:f9:b9:6a:34:44:1a:c3:a9:ad:
e2:a4:3b:8b:d4:df:d7:32:44:57:3b:a5:79:67:14:a2:c2:9d:
8d:51:f3:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 05:05:27 2025 by rpki-client