Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/4BgooN952Mu9DVf8LtxISAgM2yU.roa
File: 4BgooN952Mu9DVf8LtxISAgM2yU.roa (raw, json)
Hash identifier: kjBrI4sOhkde61R7ZhNYq77oJ11SMNtMe+DofINVgwM=
Subject key identifier: E0:18:28:A0:DF:79:D8:CB:BD:0D:57:FC:2E:DC:48:48:08:0C:DB:25
Certificate issuer: /CN=408562e2b8961b22e29c762d6c990331ba36666f
Certificate serial: 03861C2D
Authority key identifier: 40:85:62:E2:B8:96:1B:22:E2:9C:76:2D:6C:99:03:31:BA:36:66:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIVi4riWGyLinHYtbJkDMbo2Zm8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/4BgooN952Mu9DVf8LtxISAgM2yU.roa
Signing time: Sat 01 Jan 2022 14:07:14 +0000
ROA not before: Sat 01 Jan 2022 14:07:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50795
IP address blocks: 185.83.82.0/23 maxlen: 23
185.83.80.0/22 maxlen: 22
185.83.80.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59120685 (0x3861c2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408562e2b8961b22e29c762d6c990331ba36666f
Validity
Not Before: Jan 1 14:07:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e01828a0df79d8cbbd0d57fc2edc4848080cdb25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:87:ff:11:5a:6e:9c:3f:2b:7c:e9:dd:55:2d:
90:e8:3c:c9:03:d6:58:55:0a:f3:7f:99:6e:de:c3:
7a:67:7f:9f:a1:c8:2a:9b:cb:1c:77:f9:e0:6f:fc:
d0:d4:78:43:64:7c:80:2b:92:7b:a7:24:90:1d:6c:
93:1f:73:ab:0d:1c:a9:c0:ba:f5:46:0e:dd:bd:ed:
bb:23:00:1b:56:7f:21:f9:9a:bb:5e:52:33:89:3b:
0c:e1:83:21:6f:9c:2b:1e:bd:76:f2:b3:90:89:73:
86:6d:f1:83:69:5f:41:b4:26:88:07:be:dc:5b:e7:
bf:bd:eb:8d:95:40:17:d3:c3:4d:ab:0b:54:67:e8:
9e:be:fe:33:42:70:b9:e9:6a:6e:34:c8:d5:6d:46:
e2:18:47:22:0d:65:c9:09:6e:2f:f0:c7:a0:9e:be:
5f:2d:fd:0b:d5:89:6b:b4:4c:d5:5d:b3:02:c8:1b:
27:0c:a6:8b:3f:e5:d5:c1:e2:58:d9:89:7b:f7:d5:
13:6b:3c:a3:2d:e2:cf:81:b4:75:12:5f:3a:a2:ec:
e4:74:7c:f1:03:3f:a8:6e:92:5a:76:dd:4e:a3:75:
0b:9f:31:de:58:66:c1:d0:49:30:ba:49:2b:28:ce:
b5:90:3d:02:9f:cf:39:0b:62:f9:ee:97:4c:ac:2c:
03:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:18:28:A0:DF:79:D8:CB:BD:0D:57:FC:2E:DC:48:48:08:0C:DB:25
X509v3 Authority Key Identifier:
keyid:40:85:62:E2:B8:96:1B:22:E2:9C:76:2D:6C:99:03:31:BA:36:66:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIVi4riWGyLinHYtbJkDMbo2Zm8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/4BgooN952Mu9DVf8LtxISAgM2yU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.83.80.0/22
Signature Algorithm: sha256WithRSAEncryption
57:e5:e7:4d:c4:5a:1d:e1:2b:a4:f5:7b:28:8a:e9:c4:fc:ae:
d3:a0:9d:27:e5:21:5a:18:fc:3b:bd:5f:bf:80:5b:ec:bd:af:
43:b2:6e:a5:a4:42:f3:7c:90:8b:d2:85:db:1b:28:2a:0a:21:
8e:57:8d:5f:00:7e:42:bb:db:61:d6:ae:20:43:a2:87:b3:07:
0a:9f:8c:3d:7f:40:48:38:b7:cc:52:cc:4c:41:e0:1c:10:eb:
e3:15:48:7d:a3:10:02:6b:1e:73:9e:40:fa:07:ea:6e:02:45:
b2:2d:dc:00:2e:b0:4f:5e:81:13:8f:a7:0d:cd:8a:05:a6:fc:
91:de:93:1e:4d:0f:a5:4b:72:e5:d7:98:22:c4:de:e8:c3:f2:
11:05:ea:d8:0c:36:df:a4:dd:65:84:9d:f9:2c:fe:3a:19:ad:
c3:46:69:1e:41:cc:e7:18:a6:53:80:db:95:2c:e0:81:0a:33:
9f:ff:5a:9c:f8:b9:99:e4:0d:98:47:ce:0e:38:15:81:44:49:
e6:5a:0c:d3:77:57:c4:62:50:c5:a6:27:d9:75:51:9b:ae:15:
71:ac:70:77:b8:ab:e1:7f:c9:8b:d9:82:07:6f:d0:f8:64:ab:
f3:e7:52:32:2e:bc:07:fc:e4:ea:aa:cc:e6:e5:e2:b0:6a:f1:
ee:b0:39:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:48:39 2025 by rpki-client