Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/5423c1-871f-461c-9970-4db3f188f5b6/1/sYeNZUqdE5jcTP7anS1yEnCwFQ4.roa
File: sYeNZUqdE5jcTP7anS1yEnCwFQ4.roa (raw, json)
Hash identifier: foQdHbXYgWqdANb05UZj3LL5fco8oyCrjuZb9EKgZz0=
Subject key identifier: B1:87:8D:65:4A:9D:13:98:DC:4C:FE:DA:9D:2D:72:12:70:B0:15:0E
Certificate issuer: /CN=137837d5d17969d2bc0d44e5634a94bf7d34e90b
Certificate serial: 01856DCAE7E54CEABD3E15C2F567EB5CED8A
Authority key identifier: 13:78:37:D5:D1:79:69:D2:BC:0D:44:E5:63:4A:94:BF:7D:34:E9:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E3g31dF5adK8DUTlY0qUv3006Qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/5423c1-871f-461c-9970-4db3f188f5b6/1/sYeNZUqdE5jcTP7anS1yEnCwFQ4.roa
Signing time: Sun 01 Jan 2023 14:44:52 +0000
ROA not before: Sun 01 Jan 2023 14:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207286
IP address blocks: 185.80.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ca:e7:e5:4c:ea:bd:3e:15:c2:f5:67:eb:5c:ed:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=137837d5d17969d2bc0d44e5634a94bf7d34e90b
Validity
Not Before: Jan 1 14:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1878d654a9d1398dc4cfeda9d2d721270b0150e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:32:08:21:46:4b:03:e2:98:c0:bc:c4:17:70:
50:82:25:13:fa:e8:7c:15:8d:91:4b:f1:38:8d:a6:
b3:70:c6:8b:34:5a:90:11:43:00:4c:33:f8:df:88:
b3:71:82:2b:1a:b3:2a:c9:89:8d:ba:d9:21:15:4f:
83:58:f9:cb:33:a4:69:dc:d0:c0:ff:1d:31:de:47:
f4:a0:8d:4f:6e:51:4d:6c:e1:e8:4a:ae:87:3d:19:
5e:4a:1a:88:8c:a6:ea:09:6f:72:fa:a0:32:f1:27:
a0:30:72:cf:24:bd:bb:60:2c:36:e0:2c:ff:32:b2:
6d:46:15:df:9f:a1:a1:64:b1:e0:cc:63:ac:d7:36:
6c:a0:95:2b:6f:89:48:80:fd:7b:52:5b:56:ef:a0:
af:e1:92:0b:9a:50:b8:3d:5b:30:71:b7:06:da:fc:
7e:9d:3c:41:94:0d:09:92:d5:14:04:48:8b:7c:4e:
22:58:df:93:7c:e3:4f:6c:e0:51:c1:8c:cf:bf:a2:
be:6a:8b:c0:7e:60:07:7b:67:75:f1:79:0d:12:d4:
df:db:75:58:a3:d9:ce:17:5f:97:ae:b3:15:e1:af:
44:a7:6b:02:ae:5c:d6:da:17:f9:27:5b:93:99:94:
b7:85:44:e8:4c:b8:78:88:f0:a8:57:16:ee:bc:d6:
ad:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:87:8D:65:4A:9D:13:98:DC:4C:FE:DA:9D:2D:72:12:70:B0:15:0E
X509v3 Authority Key Identifier:
keyid:13:78:37:D5:D1:79:69:D2:BC:0D:44:E5:63:4A:94:BF:7D:34:E9:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E3g31dF5adK8DUTlY0qUv3006Qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/5423c1-871f-461c-9970-4db3f188f5b6/1/sYeNZUqdE5jcTP7anS1yEnCwFQ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/5423c1-871f-461c-9970-4db3f188f5b6/1/E3g31dF5adK8DUTlY0qUv3006Qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.80.29.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:0b:4e:57:65:8e:60:5c:2f:cf:5a:95:cc:72:96:e6:93:19:
91:15:ee:fb:6b:c0:84:37:cb:ec:37:da:46:07:81:d4:f7:75:
8e:33:aa:bd:22:29:1e:b3:11:08:e5:36:54:3f:a9:d8:d7:f1:
9b:3e:c5:da:43:cb:4a:29:f6:1a:0d:f9:82:53:17:a4:dc:78:
76:19:78:0a:e4:ea:b2:76:5f:ea:a8:4d:ea:6f:17:60:16:74:
26:17:cc:94:04:a1:dc:f5:58:0c:d1:78:a4:9c:44:78:c1:e3:
dd:35:dd:f3:0f:43:f6:3e:86:9b:f3:76:02:40:d6:b8:63:b0:
79:6b:a0:72:00:99:d7:17:d9:2c:7d:27:70:30:b2:65:aa:a3:
54:36:a6:c4:71:52:84:74:8b:8a:bc:f6:c7:a1:2f:2c:82:30:
ba:f1:c4:30:81:75:14:ec:19:0a:06:52:12:c3:79:b0:1d:35:
d4:5b:10:bd:5a:b2:63:e9:d7:e6:bb:ed:32:dd:0b:63:d4:25:
c9:ef:ef:b6:ca:a4:99:a9:f4:97:ed:ae:ee:df:c1:f3:2d:57:
32:3b:69:50:17:15:24:6e:3e:7f:d4:db:ae:0f:3a:cc:c1:b4:
01:74:b4:65:ea:83:58:26:71:7c:bb:21:2c:1b:4b:0b:92:57:
a3:3d:42:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:05 2025 by rpki-client