Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/36b3fa-c925-4b09-b8ea-32f59fa5b311/1/UDEPwQ_SJbGrZr9805U2dT0Dpjc.roa
File: UDEPwQ_SJbGrZr9805U2dT0Dpjc.roa (raw, json)
Hash identifier: 7UA56tXRSA6K7jBPE7NtQqxySnIGHGwp1X/pYtwEOYk=
Subject key identifier: 50:31:0F:C1:0F:D2:25:B1:AB:66:BF:7C:D3:95:36:75:3D:03:A6:37
Certificate issuer: /CN=b435f526d7d0909e7f4a7df2c5cad72d2af6b2c3
Certificate serial: 1ACACABF
Authority key identifier: B4:35:F5:26:D7:D0:90:9E:7F:4A:7D:F2:C5:CA:D7:2D:2A:F6:B2:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDX1JtfQkJ5_Sn3yxcrXLSr2ssM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/36b3fa-c925-4b09-b8ea-32f59fa5b311/1/UDEPwQ_SJbGrZr9805U2dT0Dpjc.roa
Signing time: Sat 01 Jan 2022 12:04:49 +0000
ROA not before: Sat 01 Jan 2022 12:04:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199367
IP address blocks: 185.19.144.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 449497791 (0x1acacabf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b435f526d7d0909e7f4a7df2c5cad72d2af6b2c3
Validity
Not Before: Jan 1 12:04:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=50310fc10fd225b1ab66bf7cd39536753d03a637
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:55:02:12:44:85:28:ad:58:1e:91:3d:47:fd:
0d:c4:77:01:a7:bc:98:2f:35:95:3a:83:d1:7a:9a:
c9:08:bd:ed:f2:2f:9f:f3:af:e2:c3:f6:2a:81:55:
04:91:da:72:6f:3e:17:55:53:65:7f:ba:57:39:1e:
ff:49:91:c5:16:04:7e:ff:16:f5:42:41:29:bc:e4:
fa:c8:77:22:ed:2b:ad:2c:ea:32:e8:9e:0a:0e:78:
df:1a:48:a6:99:2b:7b:87:ab:df:2e:4b:bd:e0:e8:
10:d8:2b:57:97:00:22:13:97:46:78:e0:29:da:e5:
96:cc:04:ce:0b:c0:2c:60:7e:b2:3c:9b:17:46:d7:
d3:c5:af:61:72:08:0e:61:79:6b:cf:6e:8f:e5:63:
41:c3:c5:76:c4:39:ac:a4:fc:84:94:01:e3:45:7d:
00:11:c6:ac:e6:53:eb:7c:98:db:61:0c:38:e3:52:
4b:79:a4:84:77:9d:7b:39:4d:86:a0:eb:91:fe:6e:
9a:86:8d:47:e2:e8:01:5a:c9:6e:ce:aa:b9:12:d2:
f6:01:31:5c:d7:3c:a9:7a:a9:20:e4:aa:fb:e3:a3:
84:b1:07:bc:8b:26:a7:b5:75:8d:90:93:16:0c:09:
55:28:9c:8d:f1:40:c0:36:39:b9:83:d0:47:4e:0e:
6d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:31:0F:C1:0F:D2:25:B1:AB:66:BF:7C:D3:95:36:75:3D:03:A6:37
X509v3 Authority Key Identifier:
keyid:B4:35:F5:26:D7:D0:90:9E:7F:4A:7D:F2:C5:CA:D7:2D:2A:F6:B2:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDX1JtfQkJ5_Sn3yxcrXLSr2ssM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/36b3fa-c925-4b09-b8ea-32f59fa5b311/1/UDEPwQ_SJbGrZr9805U2dT0Dpjc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/36b3fa-c925-4b09-b8ea-32f59fa5b311/1/tDX1JtfQkJ5_Sn3yxcrXLSr2ssM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.19.144.0/22
Signature Algorithm: sha256WithRSAEncryption
37:e5:63:82:2f:20:87:8a:c4:de:92:7e:a8:ec:87:3f:4d:33:
00:7b:80:23:bf:84:f4:b0:41:bc:9a:c8:27:0d:fb:9a:a8:3f:
f5:0f:6e:b8:5c:a9:7a:3d:7c:65:9e:7d:2b:0c:02:c0:18:c2:
0c:43:00:93:87:ba:ae:b5:66:b2:bf:e2:9a:c8:b9:e0:f1:43:
fa:2e:68:f0:34:74:76:17:21:7b:84:98:76:07:fb:11:69:10:
9f:95:4c:6c:b3:61:fa:7a:f7:77:cd:89:f6:99:6c:e8:92:df:
55:1e:93:fd:40:4a:2f:be:e1:c9:80:fc:a2:57:56:5c:ed:c8:
e8:33:9c:b6:d2:d6:7d:84:78:a8:b3:3f:7e:31:63:14:8f:30:
7d:98:2e:fa:ea:4b:3f:83:94:f4:da:c9:ac:c3:90:57:15:00:
08:c2:3c:80:f2:ce:e1:5f:ab:1b:40:c1:6d:b6:7b:f0:44:e0:
43:d9:e3:cf:80:7b:5d:0e:ea:7e:7f:1f:b2:ba:de:18:69:c2:
0e:21:1e:82:b6:86:4a:d0:63:94:03:3b:d6:c9:6e:22:f7:e5:
8e:94:e9:86:d1:00:b3:92:ec:b8:e8:7d:27:31:eb:bd:53:eb:
9c:f1:02:e9:ce:dc:dd:6a:6f:52:35:bf:08:ba:87:23:f9:61:
9d:4c:7a:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:52:28 2025 by rpki-client