Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/4a273c-f053-41f8-8715-3c0b9254a6f8/1/lN0Aop0lEO5FKWtryivLEQo1Mjk.roa
File: lN0Aop0lEO5FKWtryivLEQo1Mjk.roa (raw, json)
Hash identifier: o4G2pl+wcRDN3QURkS2N2ACswA307aN8P6b74d7F3fY=
Subject key identifier: 94:DD:00:A2:9D:25:10:EE:45:29:6B:6B:CA:2B:CB:11:0A:35:32:39
Certificate issuer: /CN=089fcf2ab6e6dbc1634ee591fc1b74a41de3ea5f
Certificate serial: 03AC73E0
Authority key identifier: 08:9F:CF:2A:B6:E6:DB:C1:63:4E:E5:91:FC:1B:74:A4:1D:E3:EA:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CJ_PKrbm28FjTuWR_Bt0pB3j6l8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/4a273c-f053-41f8-8715-3c0b9254a6f8/1/lN0Aop0lEO5FKWtryivLEQo1Mjk.roa
Signing time: Sat 01 Jan 2022 07:03:20 +0000
ROA not before: Sat 01 Jan 2022 07:03:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205494
IP address blocks: 185.212.228.0/22 maxlen: 22
2a0b:7dc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61633504 (0x3ac73e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=089fcf2ab6e6dbc1634ee591fc1b74a41de3ea5f
Validity
Not Before: Jan 1 07:03:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=94dd00a29d2510ee45296b6bca2bcb110a353239
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:0c:16:75:46:91:e1:38:3f:f2:e4:9c:1c:46:
b8:ec:29:98:9f:14:aa:e0:fd:0b:f7:c8:0e:48:4f:
c6:5e:e4:bf:5e:1d:77:a3:ac:2d:8a:be:ec:60:1f:
de:8f:be:cb:5b:0a:5a:38:d1:a6:86:a1:b1:f9:8c:
de:a9:72:dd:13:43:cb:8e:26:53:49:c7:5c:7c:c4:
9c:52:34:46:e4:da:dd:f1:f5:be:68:30:d4:12:51:
80:51:ee:f8:ff:ce:7d:9a:19:a6:84:a6:6b:e5:f1:
f7:33:f8:dc:15:b3:85:8e:ac:17:fd:2b:ed:6b:17:
1d:e8:72:ae:fb:0b:41:f4:2d:84:5f:e7:85:63:57:
02:00:b2:50:c0:3c:52:bd:d8:2c:45:d7:54:a9:78:
f2:b6:68:5b:8d:42:9a:ba:78:79:cd:f4:5c:f9:64:
b8:23:88:51:b0:00:07:9f:fe:ed:31:2a:c1:e4:c9:
75:fc:9d:59:dd:27:13:f5:89:fa:02:eb:e3:bf:db:
5b:f8:a2:01:8d:1c:04:09:63:0e:45:a0:92:56:c1:
af:94:4f:1b:8b:75:66:19:21:22:34:a5:6b:f1:dc:
4a:36:05:93:db:2c:89:89:92:49:64:71:81:84:bd:
01:45:4f:f4:6a:9a:0c:9e:f7:e7:a8:e0:10:b1:7a:
05:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:DD:00:A2:9D:25:10:EE:45:29:6B:6B:CA:2B:CB:11:0A:35:32:39
X509v3 Authority Key Identifier:
keyid:08:9F:CF:2A:B6:E6:DB:C1:63:4E:E5:91:FC:1B:74:A4:1D:E3:EA:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CJ_PKrbm28FjTuWR_Bt0pB3j6l8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/4a273c-f053-41f8-8715-3c0b9254a6f8/1/lN0Aop0lEO5FKWtryivLEQo1Mjk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/4a273c-f053-41f8-8715-3c0b9254a6f8/1/CJ_PKrbm28FjTuWR_Bt0pB3j6l8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.228.0/22
IPv6:
2a0b:7dc0::/32
Signature Algorithm: sha256WithRSAEncryption
22:48:3b:a3:15:20:f7:10:12:de:c7:11:cf:7b:cd:4f:2f:59:
99:67:36:8e:61:3d:b1:30:6f:e4:59:eb:5d:27:5d:e9:31:95:
e8:f8:99:23:c7:58:ad:f9:14:53:6c:07:2c:45:84:8b:c8:af:
18:0e:dd:40:19:6e:38:79:15:f2:28:cd:93:fa:cd:82:63:54:
59:fe:c9:da:bc:ab:a4:46:76:40:0f:f8:b7:4c:e9:ba:b7:be:
de:b8:82:f4:1d:fe:43:db:33:ac:2a:e5:55:62:3d:8e:bc:ef:
b1:9a:3c:ea:1b:30:e5:6d:3a:a3:39:3f:8f:2b:c0:8a:b8:5c:
ed:25:41:00:e8:69:7a:83:8d:dc:cd:49:7a:cb:c5:ae:e2:4e:
e4:a6:33:27:d4:11:c9:c7:5a:08:00:bb:37:30:50:83:6c:32:
31:9b:29:83:dd:50:8d:21:69:40:ef:39:ed:85:36:ca:d8:18:
8b:aa:0f:0f:8d:9f:7e:6e:ed:de:97:eb:0f:f5:3b:0c:8a:0a:
63:46:1b:60:dc:6c:2e:21:30:39:8b:f9:ea:3a:1f:7c:db:7d:
ef:30:ea:41:e1:8b:9f:46:5a:c3:c7:98:c6:76:8e:d5:e2:4b:
00:ac:e9:c7:c9:cd:17:3d:83:8d:6e:7a:d2:d9:29:cb:7e:ec:
2b:63:1f:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:47:21 2025 by rpki-client