Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/rBaFdGySQvMYDl16mZ2dX8jgl0A.roa
File: rBaFdGySQvMYDl16mZ2dX8jgl0A.roa (raw, json)
Hash identifier: Dj75J4alnpMFSDJyfETVj7ZLPzBuGVJAzINJSVD92SA=
Subject key identifier: AC:16:85:74:6C:92:42:F3:18:0E:5D:7A:99:9D:9D:5F:C8:E0:97:40
Certificate issuer: /CN=5d7f63401407c1cc797b17034e813d2254f9773e
Certificate serial: 01949A
Authority key identifier: 5D:7F:63:40:14:07:C1:CC:79:7B:17:03:4E:81:3D:22:54:F9:77:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XX9jQBQHwcx5excDToE9IlT5dz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/rBaFdGySQvMYDl16mZ2dX8jgl0A.roa
Signing time: Wed 25 May 2022 23:08:13 +0000
ROA not before: Wed 25 May 2022 23:08:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59895
IP address blocks: 185.65.204.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 103578 (0x1949a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d7f63401407c1cc797b17034e813d2254f9773e
Validity
Not Before: May 25 23:08:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac1685746c9242f3180e5d7a999d9d5fc8e09740
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ba:d6:f9:e5:17:b1:70:59:70:6a:02:6a:36:
ef:10:ba:0b:4a:dd:66:b2:b4:72:c6:75:b0:7b:10:
a9:67:e9:3d:20:bb:57:5b:2d:e4:cb:ba:23:7f:b6:
a9:92:97:a5:8a:f1:31:dd:a3:1c:a8:77:29:c4:d4:
1b:41:44:a5:27:25:99:9e:fb:5f:6f:92:f0:e0:ef:
53:f9:cf:34:22:5e:4b:8a:a9:ac:1a:ed:0d:7a:8f:
0d:6b:70:d8:d6:1a:e6:63:a7:a1:e8:6a:24:3f:78:
7f:a9:36:d7:b0:47:72:a8:ee:c3:4f:ac:30:c0:53:
17:61:e6:a2:ff:64:17:92:20:30:c0:39:25:8f:0c:
59:2a:4f:d0:40:a5:6f:fd:3f:af:fe:f3:46:ac:1c:
20:c9:a1:73:a5:71:85:c8:9a:32:50:4f:66:c1:a3:
a7:73:9d:be:2d:96:0a:79:2a:cf:bb:c1:38:8a:6e:
a1:8e:c8:1e:2a:e4:36:11:e5:f9:05:6d:e6:56:b9:
c7:7c:b0:a0:26:5a:c7:b6:dd:f5:81:8c:50:47:a1:
5d:a4:52:9f:87:7e:8c:c4:f5:d7:ad:c9:a5:10:14:
66:34:17:5b:f1:8f:05:ba:36:e7:18:39:4d:9c:09:
68:6a:39:fc:49:05:3a:e9:98:ba:53:72:c6:aa:4a:
a6:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:16:85:74:6C:92:42:F3:18:0E:5D:7A:99:9D:9D:5F:C8:E0:97:40
X509v3 Authority Key Identifier:
keyid:5D:7F:63:40:14:07:C1:CC:79:7B:17:03:4E:81:3D:22:54:F9:77:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XX9jQBQHwcx5excDToE9IlT5dz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/rBaFdGySQvMYDl16mZ2dX8jgl0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.204.0/24
Signature Algorithm: sha256WithRSAEncryption
50:79:43:56:0f:b1:46:e5:66:5c:7f:32:f1:9e:6b:d1:59:cd:
f7:75:92:9c:35:fa:23:e1:19:f5:eb:2a:3f:66:27:0a:d5:c4:
81:7f:35:5f:c5:18:94:91:58:b0:1e:76:cf:97:c9:60:5e:d9:
24:80:c9:c4:f1:8d:49:38:ef:6e:b6:2b:c0:fe:40:be:b2:d6:
59:e8:ad:b7:2b:22:ef:31:b9:f9:f0:98:15:91:f5:f8:00:c6:
42:3b:5e:a9:9b:ad:d1:0d:c3:fd:8d:d7:e4:18:e0:4a:4a:5f:
94:ff:72:35:ea:99:ee:69:cf:a0:68:66:fb:83:66:b7:06:f7:
95:c2:67:b5:21:c7:2a:b4:84:9e:c1:21:69:d7:b4:87:b7:eb:
67:b8:fb:83:33:6a:77:72:87:45:1e:5e:e3:71:1b:b3:d1:5f:
c2:32:b1:0a:28:53:58:de:b8:41:1c:04:f7:dc:3c:fc:95:7e:
e8:d4:e8:b5:4f:33:eb:65:6a:22:31:8d:d9:1c:56:7f:ac:49:
e8:1a:4d:8a:5d:63:14:47:f0:bb:d8:bd:97:6b:73:30:fc:bc:
63:6e:b9:09:06:32:5f:35:25:ce:f5:5f:a2:a1:54:65:f5:c2:
6b:dc:10:2d:44:70:cd:a2:40:51:3e:56:8f:e1:c9:db:7b:40:
55:01:7e:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:51:37 2025 by rpki-client