Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/UjkA_cXSifOFvbxQgTyQ1_ZEMSk.roa
File: UjkA_cXSifOFvbxQgTyQ1_ZEMSk.roa (raw, json)
Hash identifier: Ot8zxvb2+UkWkF6OHxT5fl18wQ6OCs2A9AhbvZjMMSw=
Subject key identifier: 52:39:00:FD:C5:D2:89:F3:85:BD:BC:50:81:3C:90:D7:F6:44:31:29
Certificate issuer: /CN=351652b838ff2d9672ac8ca66ba660dd4e45d699
Certificate serial: 0183F602083B5BB9E09917D5368667CED721
Authority key identifier: 35:16:52:B8:38:FF:2D:96:72:AC:8C:A6:6B:A6:60:DD:4E:45:D6:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRZSuDj_LZZyrIyma6Zg3U5F1pk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/UjkA_cXSifOFvbxQgTyQ1_ZEMSk.roa
Signing time: Thu 20 Oct 2022 15:27:51 +0000
ROA not before: Thu 20 Oct 2022 15:27:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205304
IP address blocks: 185.222.140.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f6:02:08:3b:5b:b9:e0:99:17:d5:36:86:67:ce:d7:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=351652b838ff2d9672ac8ca66ba660dd4e45d699
Validity
Not Before: Oct 20 15:27:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=523900fdc5d289f385bdbc50813c90d7f6443129
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:a4:67:5c:c1:46:95:cb:2e:1c:7b:57:af:d8:
63:24:90:35:d2:78:e5:a9:46:bd:00:51:7b:bb:63:
4d:0b:59:19:50:28:b5:01:fd:41:36:d2:d0:81:81:
2d:35:74:7f:48:8d:18:6a:14:b1:cb:12:3e:80:2a:
31:86:0f:99:c7:79:d7:0e:f4:d9:b5:29:92:28:7d:
cc:7f:70:76:f0:c6:b5:71:ce:12:c1:69:a2:8e:8f:
a6:2e:e9:a4:cd:f2:b3:e7:50:a6:9b:2f:54:6b:2b:
a6:11:6d:b1:ac:64:f9:85:a3:ea:bd:91:94:93:cd:
5d:f5:80:cb:d8:27:8b:1e:12:96:4b:fa:e2:47:ff:
a1:66:94:4f:ea:85:9e:e8:e0:86:bd:04:36:74:b9:
32:2c:2b:6b:0e:2f:05:4c:b1:eb:52:95:c5:b2:bf:
0e:2b:fb:09:d8:81:4e:e6:69:bd:ae:bf:47:95:42:
5b:a9:95:0d:00:3b:4f:52:41:d6:a0:1d:33:9a:8e:
22:06:da:d2:5b:cd:3e:a9:f8:a0:4f:f9:d4:5f:42:
e5:2b:22:ac:b4:e0:bb:d2:54:d3:01:54:c1:2c:85:
9b:39:64:06:40:3d:9f:52:1b:c2:d2:2e:c4:05:ce:
eb:d1:e6:94:e3:5a:79:cc:5c:f6:9e:50:c0:4f:11:
d6:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:39:00:FD:C5:D2:89:F3:85:BD:BC:50:81:3C:90:D7:F6:44:31:29
X509v3 Authority Key Identifier:
keyid:35:16:52:B8:38:FF:2D:96:72:AC:8C:A6:6B:A6:60:DD:4E:45:D6:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRZSuDj_LZZyrIyma6Zg3U5F1pk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/UjkA_cXSifOFvbxQgTyQ1_ZEMSk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.140.0/22
Signature Algorithm: sha256WithRSAEncryption
18:26:9d:ef:2b:93:c4:96:1b:e3:c7:21:c4:8a:b4:19:e8:72:
cb:d3:14:89:c9:5b:8c:12:e7:fd:59:ff:4a:50:d2:e0:05:1a:
70:ea:77:39:22:fc:e9:26:c8:07:12:24:d5:95:15:8a:37:9e:
c7:50:9f:69:a0:62:63:9a:eb:65:e5:f6:89:fa:2a:9b:ac:63:
8b:ab:1b:a7:98:87:fe:5a:4b:a6:89:83:e1:0d:e1:46:88:47:
18:88:9d:a6:10:e4:98:9f:fa:91:65:4d:7d:fd:a3:34:64:cd:
73:73:75:a6:9d:f8:04:bd:2c:28:be:3a:23:45:9f:17:1c:ae:
94:9c:59:95:39:c0:1c:10:09:f6:f2:cc:90:73:bc:e6:45:39:
81:e9:de:fd:6e:64:5f:52:93:58:19:f1:79:28:7a:69:58:ee:
2d:2b:9c:f7:e3:bd:81:7f:f8:b8:68:47:0f:99:c9:06:3a:57:
3e:eb:ed:16:de:b4:a0:90:24:39:81:b1:54:ec:d5:7b:4e:bf:
e4:dc:4d:34:32:d7:df:ca:a8:f0:e0:4a:59:30:80:92:98:ac:
9b:21:7b:9b:8f:68:d6:36:8b:ec:c5:b0:03:b2:b0:68:20:6b:
97:39:2f:da:61:e9:a2:8c:7a:3b:af:25:7c:97:67:9a:b3:80:
45:13:5d:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:44:32 2025 by rpki-client