Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/bfbc8e-eab5-4f20-8eea-96bf143eb452/1/5GB6X1263l4u79OqOGBvenl_JQ8.roa
File: 5GB6X1263l4u79OqOGBvenl_JQ8.roa (raw, json)
Hash identifier: 64Bs78c+BdS+EOOXVZ0PCUeedt6Vx8nsevdeE9W8B0w=
Subject key identifier: E4:60:7A:5F:5D:BA:DE:5E:2E:EF:D3:AA:38:60:6F:7A:79:7F:25:0F
Certificate issuer: /CN=2e249793e5924a9f25f3a0a8dd994b374eb937d2
Certificate serial: 05E0452F
Authority key identifier: 2E:24:97:93:E5:92:4A:9F:25:F3:A0:A8:DD:99:4B:37:4E:B9:37:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LiSXk-WSSp8l86Co3ZlLN065N9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/bfbc8e-eab5-4f20-8eea-96bf143eb452/1/5GB6X1263l4u79OqOGBvenl_JQ8.roa
Signing time: Sat 01 Jan 2022 02:54:30 +0000
ROA not before: Sat 01 Jan 2022 02:54:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42525
IP address blocks: 185.125.80.0/22 maxlen: 24
176.67.184.0/21 maxlen: 24
2a06:b740::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98583855 (0x5e0452f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e249793e5924a9f25f3a0a8dd994b374eb937d2
Validity
Not Before: Jan 1 02:54:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e4607a5f5dbade5e2eefd3aa38606f7a797f250f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:48:b8:64:c8:ad:3b:fb:1b:d7:1c:b1:a0:8c:
1e:5d:32:0a:85:fb:67:05:1a:00:6e:da:f5:73:50:
8d:b8:0a:bb:77:26:49:62:90:a4:64:34:1d:47:41:
f2:b4:58:4f:14:87:b4:11:b9:5d:a5:a7:84:db:3d:
57:eb:f3:52:07:d6:8e:1a:36:ab:fe:8f:82:86:17:
0d:61:a6:94:a7:b0:01:7c:20:bc:19:ee:39:17:53:
52:15:ca:4a:ff:42:70:49:f2:02:44:a9:f0:2c:dc:
44:11:25:9c:cc:2f:c5:ca:a2:58:53:66:2d:aa:d7:
33:ad:86:8e:a6:2e:db:a2:80:be:25:e1:72:34:7b:
b4:91:e3:45:10:cf:85:3d:4e:38:88:d8:9a:16:27:
28:d8:ee:42:e4:67:36:4e:74:41:49:9d:cb:af:25:
99:b6:e0:2f:67:ce:c1:51:2b:68:7a:94:05:0b:50:
93:96:b9:75:24:35:7f:44:12:86:f9:28:45:0f:97:
73:fc:3c:de:52:f9:cf:dd:6a:14:a3:2d:71:00:d0:
52:ea:d0:9c:d1:21:c2:ea:5f:4f:5b:c1:33:37:9c:
e3:d1:d6:2d:ba:a5:a0:f0:7c:9e:63:05:1d:bb:82:
c5:b7:ee:1f:15:19:98:56:c9:cf:7d:c5:76:77:3a:
4e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:60:7A:5F:5D:BA:DE:5E:2E:EF:D3:AA:38:60:6F:7A:79:7F:25:0F
X509v3 Authority Key Identifier:
keyid:2E:24:97:93:E5:92:4A:9F:25:F3:A0:A8:DD:99:4B:37:4E:B9:37:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LiSXk-WSSp8l86Co3ZlLN065N9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/bfbc8e-eab5-4f20-8eea-96bf143eb452/1/5GB6X1263l4u79OqOGBvenl_JQ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/bfbc8e-eab5-4f20-8eea-96bf143eb452/1/LiSXk-WSSp8l86Co3ZlLN065N9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.67.184.0/21
185.125.80.0/22
IPv6:
2a06:b740::/29
Signature Algorithm: sha256WithRSAEncryption
a4:a3:ef:9c:b4:81:e6:ca:a5:51:0c:7f:ca:4c:5b:23:d4:11:
41:b4:d2:64:3f:a7:c0:c7:6c:91:3d:b0:7c:3f:7c:fc:ed:89:
8d:a9:3b:b6:14:05:12:19:aa:f8:2c:5b:41:1c:35:9c:ac:49:
87:68:03:b5:c1:53:4b:5c:a1:92:c4:f8:93:96:84:2c:7b:61:
82:81:6a:3a:a7:a9:9e:97:60:6f:c2:47:b7:40:53:f5:87:da:
72:2e:ae:c9:e9:3d:71:f9:2d:30:b8:b6:43:e4:b3:9a:a6:29:
38:9b:72:20:23:5b:fb:91:44:98:37:82:1a:d6:90:41:36:42:
1d:11:54:4a:16:05:b5:4d:b8:7f:10:69:27:3b:38:d1:3a:fa:
54:52:8d:bf:24:2f:fa:70:65:b3:1a:95:d0:cc:6d:2f:56:e2:
a0:a2:0f:1e:3d:94:12:7d:f5:80:2d:ea:e3:bb:30:a5:ab:83:
c7:22:38:aa:79:fd:a5:72:3d:03:23:04:3e:8c:b1:74:d7:60:
f6:fc:f8:cf:ee:44:02:e6:c3:e5:ec:dc:70:1a:57:43:d6:e8:
1a:2a:ab:26:4f:1f:6e:1e:17:d1:f3:67:07:2b:fd:8a:54:27:
c3:87:0f:62:07:94:46:c5:24:1c:2d:1c:9c:f5:0b:32:36:9b:
d9:83:28:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 02:29:32 2025 by rpki-client