Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/4a2604-66b6-4cb0-9d1e-1e167fa113b2/1/U4VJMHVrWYbPGxKrO3Hdt--F2t8.roa
File: U4VJMHVrWYbPGxKrO3Hdt--F2t8.roa (raw, json)
Hash identifier: BfmsL6dfs6/O3lCwYzX9ktpsJwpfCk6XvvqDnybj/kM=
Subject key identifier: 53:85:49:30:75:6B:59:86:CF:1B:12:AB:3B:71:DD:B7:EF:85:DA:DF
Certificate issuer: /CN=500596ce6073e8ededc5105f814ec97191b5e1d5
Certificate serial: B1DD2F
Authority key identifier: 50:05:96:CE:60:73:E8:ED:ED:C5:10:5F:81:4E:C9:71:91:B5:E1:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UAWWzmBz6O3txRBfgU7JcZG14dU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/4a2604-66b6-4cb0-9d1e-1e167fa113b2/1/U4VJMHVrWYbPGxKrO3Hdt--F2t8.roa
Signing time: Sat 01 Jan 2022 07:58:10 +0000
ROA not before: Sat 01 Jan 2022 07:58:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42473
IP address blocks: 185.140.140.0/22 maxlen: 23
2a07:1b80::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11656495 (0xb1dd2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=500596ce6073e8ededc5105f814ec97191b5e1d5
Validity
Not Before: Jan 1 07:58:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53854930756b5986cf1b12ab3b71ddb7ef85dadf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:37:93:f9:05:46:8e:7f:dc:68:0b:ac:0d:ba:
94:25:79:8b:63:0a:9e:8f:4a:7d:8e:ef:e6:61:c0:
7e:cc:8c:ce:b1:b1:39:0e:e9:25:c3:24:37:66:23:
ff:e1:25:f7:e5:49:9a:12:ef:89:7e:c9:12:5a:a5:
2d:ed:bf:55:a3:d8:5c:05:e2:9f:6d:aa:34:e6:a9:
ba:97:f4:ce:3e:21:dd:42:88:71:a7:1a:fb:3f:98:
cb:50:67:e4:99:e5:9d:aa:ac:89:ea:6f:3d:fb:19:
9a:36:34:43:77:74:7c:7e:33:96:ee:2a:25:4a:cf:
81:67:83:80:b0:34:29:a4:62:99:af:f9:19:31:95:
17:09:e1:ae:12:6b:e9:82:b1:9c:17:e9:2c:3e:6d:
22:12:da:e2:d3:3e:c0:4c:26:56:4c:65:b5:9e:a2:
26:64:da:36:51:b2:d6:31:d9:23:ab:b8:13:85:6b:
62:ed:cf:d4:3f:af:98:bb:81:6c:d6:66:40:bb:04:
d7:01:28:21:6b:7f:3e:09:aa:2d:21:55:ab:d1:e3:
24:64:99:86:e9:ea:de:97:b0:cb:47:25:4d:1a:de:
ef:b7:91:4a:9a:e9:ef:c4:cd:b0:29:1b:a0:83:ce:
3f:d1:a5:e5:d4:f8:03:d6:e0:26:26:96:69:68:7a:
2b:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:85:49:30:75:6B:59:86:CF:1B:12:AB:3B:71:DD:B7:EF:85:DA:DF
X509v3 Authority Key Identifier:
keyid:50:05:96:CE:60:73:E8:ED:ED:C5:10:5F:81:4E:C9:71:91:B5:E1:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UAWWzmBz6O3txRBfgU7JcZG14dU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/4a2604-66b6-4cb0-9d1e-1e167fa113b2/1/U4VJMHVrWYbPGxKrO3Hdt--F2t8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/4a2604-66b6-4cb0-9d1e-1e167fa113b2/1/UAWWzmBz6O3txRBfgU7JcZG14dU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.140.140.0/22
IPv6:
2a07:1b80::/40
Signature Algorithm: sha256WithRSAEncryption
06:c0:54:65:83:f6:16:89:ad:2f:37:8d:e0:10:24:8e:b5:08:
53:62:7d:ef:b2:5e:9d:70:55:97:99:33:97:af:c5:6e:5d:6f:
67:79:0b:36:f7:a3:b1:da:4c:7c:25:69:86:e4:8a:e4:c2:a3:
46:48:b5:2d:36:b6:f2:ec:ae:e9:2b:93:c8:17:a6:16:07:bd:
fc:c4:7f:f9:d6:5d:e4:f2:77:70:dd:a7:1b:62:b8:49:30:ba:
8b:59:9a:8e:78:1b:c9:89:ff:02:d6:4a:a0:0f:7c:6c:2c:26:
4f:e5:d7:c9:89:1b:48:97:d2:4a:eb:8d:ed:54:d1:a1:33:2b:
98:e2:ab:1f:c6:c4:51:99:2b:31:71:1c:42:7a:9c:2f:11:80:
8c:17:9d:e9:71:3b:1d:d7:a4:77:7b:c7:7b:a0:46:d9:01:c3:
36:18:3a:53:2c:ae:20:9c:f7:55:4f:64:ca:c0:51:ca:29:a1:
9b:57:b8:68:d3:d9:5c:1a:1a:12:a3:0a:42:27:b0:d1:59:b4:
ba:bb:0e:d1:6b:97:f7:df:28:9c:95:f0:b6:04:78:ff:09:59:
2a:cd:e8:45:82:16:bb:16:4a:22:db:64:43:5c:33:db:f4:6f:
0e:26:26:a5:85:9f:f4:5f:d2:94:93:06:43:22:f6:31:57:58:
af:c6:67:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:10:48 2025 by rpki-client