Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/9120cb-0b06-4861-b657-757838670948/1/UVpZzMdBWJ6XmaUYCRbl8A0Q_Yg.roa
File: UVpZzMdBWJ6XmaUYCRbl8A0Q_Yg.roa (raw, json)
Hash identifier: 1tmLQyaLAUDtn0S6xGx8pmzxKt9X26ve/lA4ikIXOpI=
Subject key identifier: 51:5A:59:CC:C7:41:58:9E:97:99:A5:18:09:16:E5:F0:0D:10:FD:88
Certificate issuer: /CN=96773e9cc974301a78b7ee6d994528f1f882e46f
Certificate serial: 16FE9416
Authority key identifier: 96:77:3E:9C:C9:74:30:1A:78:B7:EE:6D:99:45:28:F1:F8:82:E4:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lnc-nMl0MBp4t-5tmUUo8fiC5G8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/9120cb-0b06-4861-b657-757838670948/1/UVpZzMdBWJ6XmaUYCRbl8A0Q_Yg.roa
Signing time: Sat 01 Jan 2022 08:06:11 +0000
ROA not before: Sat 01 Jan 2022 08:06:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48294
IP address blocks: 185.38.244.0/22 maxlen: 24
185.126.248.0/22 maxlen: 22
188.164.224.0/21 maxlen: 24
185.81.244.0/22 maxlen: 24
185.81.252.0/22 maxlen: 24
194.150.200.0/23 maxlen: 24
91.194.46.0/23 maxlen: 24
94.126.208.0/21 maxlen: 24
185.77.56.0/22 maxlen: 22
2a02:5d80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 385782806 (0x16fe9416)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96773e9cc974301a78b7ee6d994528f1f882e46f
Validity
Not Before: Jan 1 08:06:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=515a59ccc741589e9799a5180916e5f00d10fd88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:3d:7a:77:c2:80:91:6c:42:95:89:df:6a:02:
ea:41:11:9a:c1:d8:16:89:b1:01:84:c8:7d:51:fc:
e3:06:71:7a:b0:3b:16:4c:9c:b6:d3:d2:28:b2:fb:
65:d4:e6:a7:56:c9:c3:17:22:26:8f:db:83:11:a6:
55:f2:5c:ce:80:91:65:c4:42:f1:f1:96:1a:8a:dc:
a2:b6:bd:87:39:ca:30:8b:75:36:ed:51:1c:2d:ca:
f8:62:2d:36:19:7c:37:13:d4:b1:b1:13:bd:99:bb:
01:0f:65:81:57:c4:a6:1e:15:94:47:ac:93:ba:ff:
d6:5c:4f:ce:a3:df:db:9f:74:9d:2e:29:eb:3a:4e:
1f:02:04:53:48:57:ca:31:d5:56:dc:85:61:54:13:
14:2f:c4:aa:a3:3b:db:93:6c:b3:ef:e4:01:ee:bc:
8d:d6:d2:73:43:15:ba:3d:9b:49:b5:5c:93:1c:88:
98:15:23:71:20:d0:7b:64:b2:50:db:2c:bb:76:06:
2b:0a:ba:29:8a:d6:d2:56:78:13:20:3f:00:ec:04:
c5:d2:ac:e8:9c:f2:57:5b:09:5a:e3:d6:9c:d6:cc:
36:fa:c0:2a:da:80:34:ce:37:b0:4f:7a:2d:15:ec:
05:50:da:6e:af:d5:ed:2d:69:d5:1d:f8:51:ac:6e:
dd:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:5A:59:CC:C7:41:58:9E:97:99:A5:18:09:16:E5:F0:0D:10:FD:88
X509v3 Authority Key Identifier:
keyid:96:77:3E:9C:C9:74:30:1A:78:B7:EE:6D:99:45:28:F1:F8:82:E4:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lnc-nMl0MBp4t-5tmUUo8fiC5G8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/9120cb-0b06-4861-b657-757838670948/1/UVpZzMdBWJ6XmaUYCRbl8A0Q_Yg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/9120cb-0b06-4861-b657-757838670948/1/lnc-nMl0MBp4t-5tmUUo8fiC5G8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.46.0/23
94.126.208.0/21
185.38.244.0/22
185.77.56.0/22
185.81.244.0/22
185.81.252.0/22
185.126.248.0/22
188.164.224.0/21
194.150.200.0/23
IPv6:
2a02:5d80::/29
Signature Algorithm: sha256WithRSAEncryption
78:9c:da:d7:c3:8a:ef:87:c9:42:31:bd:4c:62:7b:23:38:dc:
9c:13:28:eb:43:bd:e3:e3:8e:55:00:ec:cb:b0:22:45:47:ec:
11:b6:0d:aa:f3:1f:e8:19:d1:53:69:2e:a8:3f:cc:59:a8:6b:
87:5c:cd:d8:d7:4b:36:cb:00:2d:35:67:1f:0c:89:d8:71:c1:
ac:12:e6:ee:18:b6:f3:03:15:e1:3c:23:d8:60:1a:c9:0e:3e:
4f:0c:5b:ac:62:fb:3d:2a:4f:61:e1:09:63:51:10:ac:22:3c:
1e:05:ed:e0:cd:0c:1e:63:45:19:a8:a1:27:b5:b6:39:67:42:
f0:19:14:6a:81:31:c3:86:5b:ed:8d:82:4a:f0:e1:5f:19:74:
01:33:21:e8:ea:94:1b:b0:92:ee:c7:64:15:68:36:16:c5:ce:
83:1f:5f:cc:cd:6d:83:50:8b:02:9c:8b:c2:1f:d4:bb:6f:50:
60:66:9d:df:7d:3e:a4:3a:a4:c4:1f:44:8e:d9:cc:c9:83:9c:
9e:ac:b9:a1:69:b6:98:0a:f2:f9:44:61:80:86:36:8b:b4:44:
c6:2b:36:ab:d3:b8:a0:63:03:fe:69:67:fa:1a:54:ae:41:74:
c2:78:fd:c1:27:b9:bc:f9:4c:0c:64:55:9f:bd:7a:16:67:85:
50:6e:01:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 06:45:35 2025 by rpki-client