Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/b35d6a-8bd4-42bd-abdd-15107bca45b5/1/el_0gsLeeqmmQqhjqGvFpdmapfU.roa
File: el_0gsLeeqmmQqhjqGvFpdmapfU.roa (raw, json)
Hash identifier: b1fL3PcXa95761e8nQ1/DlSb/u7/0cY+PcrRkys/TEg=
Subject key identifier: 7A:5F:F4:82:C2:DE:7A:A9:A6:42:A8:63:A8:6B:C5:A5:D9:9A:A5:F5
Certificate issuer: /CN=53f8bacc3659dcb3389aa47e3664a5f8284e00af
Certificate serial: 05E4CCED
Authority key identifier: 53:F8:BA:CC:36:59:DC:B3:38:9A:A4:7E:36:64:A5:F8:28:4E:00:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U_i6zDZZ3LM4mqR-NmSl-ChOAK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/b35d6a-8bd4-42bd-abdd-15107bca45b5/1/el_0gsLeeqmmQqhjqGvFpdmapfU.roa
Signing time: Sat 01 Jan 2022 14:07:58 +0000
ROA not before: Sat 01 Jan 2022 14:07:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207309
IP address blocks: 194.30.186.0/24 maxlen: 24
2a10:3d80::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98880749 (0x5e4cced)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53f8bacc3659dcb3389aa47e3664a5f8284e00af
Validity
Not Before: Jan 1 14:07:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a5ff482c2de7aa9a642a863a86bc5a5d99aa5f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3f:c2:92:18:06:6b:e8:6f:e0:a7:37:fb:6b:
65:e1:d0:33:92:91:7c:db:2f:d4:00:44:ed:b9:2d:
0b:6e:e7:bf:09:d6:fa:0b:c9:9b:8b:d3:3e:94:85:
ce:aa:fb:18:73:32:c0:b2:66:8e:d9:d8:a8:59:56:
7a:5c:90:ce:76:33:a5:09:f2:21:be:b3:29:b4:99:
3a:61:a7:61:f4:d7:15:ed:2d:16:e1:ac:0e:b2:1b:
06:c6:02:61:ae:48:f3:1e:0c:4d:9e:74:36:06:c2:
aa:2c:11:d9:6c:c9:95:41:3f:d9:c9:98:33:db:3e:
dc:08:90:1e:30:88:db:27:27:e8:9a:00:58:42:ac:
b1:72:60:fa:8e:75:5d:21:ad:4a:4d:87:2d:98:4d:
dd:0b:42:34:6b:ad:52:15:c0:b4:41:cc:e2:fb:c6:
74:4a:f4:81:f2:c4:31:df:f6:87:f5:80:18:88:d6:
e7:89:b3:46:9b:79:e3:37:b2:ea:34:cb:2d:96:87:
11:30:b4:d1:7f:0d:df:47:d7:32:39:35:91:45:50:
21:0b:46:4c:95:ef:49:a0:35:b6:5b:c2:f2:88:ff:
bf:3f:b2:02:c9:6e:5c:06:fb:d3:59:d1:f3:d0:78:
30:a1:0e:f9:2c:db:f2:44:86:19:03:c7:dc:75:5a:
7e:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:5F:F4:82:C2:DE:7A:A9:A6:42:A8:63:A8:6B:C5:A5:D9:9A:A5:F5
X509v3 Authority Key Identifier:
keyid:53:F8:BA:CC:36:59:DC:B3:38:9A:A4:7E:36:64:A5:F8:28:4E:00:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U_i6zDZZ3LM4mqR-NmSl-ChOAK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/b35d6a-8bd4-42bd-abdd-15107bca45b5/1/el_0gsLeeqmmQqhjqGvFpdmapfU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/b35d6a-8bd4-42bd-abdd-15107bca45b5/1/U_i6zDZZ3LM4mqR-NmSl-ChOAK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.30.186.0/24
IPv6:
2a10:3d80::/29
Signature Algorithm: sha256WithRSAEncryption
78:ba:56:5c:c5:64:f2:bc:c9:92:6f:f6:29:25:51:53:bc:4e:
3f:58:c8:a9:15:b4:fb:5f:92:bb:ad:96:5b:eb:91:c4:4f:c3:
7f:85:ab:d6:36:9e:b9:29:9e:03:60:3b:98:19:4e:2b:87:cf:
a3:27:b8:f2:20:fb:2f:c0:07:1e:5d:55:3b:2f:9f:0f:39:fe:
6a:f2:0a:db:55:05:8c:8d:00:cd:08:b3:3b:07:de:03:34:ea:
99:5a:1d:dd:72:06:23:da:36:7c:41:2e:32:dd:0d:67:27:83:
33:62:40:0e:cf:a7:ed:4e:10:9c:65:f3:06:5b:c1:31:bc:c6:
9b:e9:e2:13:2c:de:51:c8:76:ce:ee:ce:ef:92:9c:7b:c7:82:
0c:e4:ff:2f:2f:07:df:e4:b6:9b:a6:cf:f6:66:c2:2b:f2:33:
44:c1:00:cf:97:6b:9f:43:45:2e:d6:d0:1d:e3:90:75:71:cf:
4a:05:0c:a5:14:d0:7e:82:0d:53:d9:cb:cc:d2:ea:b7:31:41:
81:ae:ff:23:2a:28:23:f7:73:47:f2:f9:44:b2:c0:fc:e8:82:
b5:21:25:a1:04:75:3d:18:e7:84:04:b5:72:9a:48:0a:2e:c7:
9d:39:e3:95:ef:95:94:0f:64:a0:8a:4d:d3:b7:3d:9d:d6:40:
3c:15:32:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 18:54:21 2025 by rpki-client