Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/4b28b8-77f6-46d3-b8d5-83bc413a048d/1/UcJsLYQk7-4_aCmOwK1eU-eGOF8.roa
File: UcJsLYQk7-4_aCmOwK1eU-eGOF8.roa (raw, json)
Hash identifier: gJ7o9SIEQqgj7A64DpVQXb/pU+5hpmOyevh5TfidsZk=
Subject key identifier: 51:C2:6C:2D:84:24:EF:EE:3F:68:29:8E:C0:AD:5E:53:E7:86:38:5F
Certificate issuer: /CN=6bb9125b8a10d322348681a2d2ac7d67d2ad2535
Certificate serial: 089CFC29
Authority key identifier: 6B:B9:12:5B:8A:10:D3:22:34:86:81:A2:D2:AC:7D:67:D2:AD:25:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a7kSW4oQ0yI0hoGi0qx9Z9KtJTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/4b28b8-77f6-46d3-b8d5-83bc413a048d/1/UcJsLYQk7-4_aCmOwK1eU-eGOF8.roa
Signing time: Sat 01 Jan 2022 12:04:22 +0000
ROA not before: Sat 01 Jan 2022 12:04:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29119
IP address blocks: 185.165.248.0/23 maxlen: 23
185.165.250.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144505897 (0x89cfc29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bb9125b8a10d322348681a2d2ac7d67d2ad2535
Validity
Not Before: Jan 1 12:04:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51c26c2d8424efee3f68298ec0ad5e53e786385f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:9e:79:e3:2b:64:c9:c6:2b:0c:61:e1:6b:8a:
ae:3c:8a:2b:dc:73:dc:f9:16:d6:2b:e4:bb:a2:5f:
5b:be:2d:82:f6:db:f4:68:30:fe:84:40:60:d3:b1:
79:68:3b:de:95:fa:5a:e2:f4:0a:80:a8:d0:9c:c6:
43:3c:e5:c5:54:92:f0:37:7e:6e:62:02:07:34:dc:
42:b7:fe:ad:5c:7b:59:14:b8:ad:6f:5b:30:67:57:
f8:b4:63:26:8e:db:a4:fa:69:cf:34:97:46:19:c2:
c3:ee:19:a8:ab:4c:6e:d8:71:a2:35:f3:f6:0b:25:
78:6a:ca:ff:4f:4c:d3:4a:e9:1b:44:06:f8:3b:fe:
67:27:ed:1f:cf:b3:9a:88:ea:5d:cc:d1:ea:77:2d:
0e:7c:22:b6:31:52:3d:67:b6:36:61:b7:a0:82:99:
0e:1c:5f:f4:bc:a8:40:de:be:44:a3:68:7c:59:0e:
09:a1:6f:04:0f:1a:36:e8:ef:4d:4a:fc:02:97:07:
8e:b1:f4:08:3d:29:85:71:e3:5b:9d:5f:34:2b:8e:
91:ba:a2:b8:cc:40:7d:51:09:06:ec:d6:df:84:68:
6e:3c:4c:76:84:92:1c:ed:fa:9e:47:e5:c3:14:ab:
97:72:df:22:0e:89:2a:8b:bc:62:6b:8b:fc:0e:a5:
ec:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:C2:6C:2D:84:24:EF:EE:3F:68:29:8E:C0:AD:5E:53:E7:86:38:5F
X509v3 Authority Key Identifier:
keyid:6B:B9:12:5B:8A:10:D3:22:34:86:81:A2:D2:AC:7D:67:D2:AD:25:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7kSW4oQ0yI0hoGi0qx9Z9KtJTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/4b28b8-77f6-46d3-b8d5-83bc413a048d/1/UcJsLYQk7-4_aCmOwK1eU-eGOF8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/4b28b8-77f6-46d3-b8d5-83bc413a048d/1/a7kSW4oQ0yI0hoGi0qx9Z9KtJTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.248.0/22
Signature Algorithm: sha256WithRSAEncryption
83:ea:d6:b9:6d:90:20:a1:a9:e9:c7:93:6b:68:69:26:18:96:
f1:ad:10:19:b0:a7:f9:7e:c6:ad:56:32:34:d7:0c:b9:10:7e:
71:b4:34:ca:92:b8:4d:a6:81:4a:be:04:c5:40:8e:1a:1a:2b:
23:fc:68:8a:04:6a:4d:a5:d9:42:d4:c8:aa:15:07:9a:31:14:
c0:c9:ad:01:c7:6e:e5:0a:34:e3:54:e1:a4:fd:21:af:ef:0c:
ce:cb:9a:f2:e0:1f:4d:08:85:b9:c0:fe:86:db:af:c8:35:ca:
63:57:b3:4e:14:1c:dc:b9:f7:cf:62:83:4f:32:52:b7:de:7a:
60:f8:fe:06:82:a2:69:1e:be:02:14:8b:ea:ad:84:77:14:86:
ae:2e:8e:3a:86:06:ab:54:a9:1c:e0:ff:5f:dd:72:59:08:95:
e0:90:71:b0:46:61:18:f6:c5:ea:a7:f3:7f:a9:7d:37:30:fe:
b1:41:93:e1:8c:c1:a0:d4:31:f5:a8:c4:e5:5e:58:26:74:86:
46:e9:52:91:1e:e8:61:90:be:67:2a:7b:04:48:ec:0c:21:59:
8d:6a:b7:60:82:e7:6b:14:84:f7:a2:ee:94:40:d7:c9:96:35:
59:e0:cb:61:9d:09:6f:03:e9:77:35:d5:32:71:1f:c9:29:81:
3f:23:ca:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:12:59 2025 by rpki-client