Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/67b1ec-208f-4d62-9cbc-ede1e4bb611e/1/T5jiEj4dmkRk6G0zSB1bZbRz4KY.roa
File: T5jiEj4dmkRk6G0zSB1bZbRz4KY.roa (raw, json)
Hash identifier: jhEOpCUP7GAHL4A3Tpla8DceU64FOq4tVxLnDSSpnE8=
Subject key identifier: 4F:98:E2:12:3E:1D:9A:44:64:E8:6D:33:48:1D:5B:65:B4:73:E0:A6
Certificate issuer: /CN=5002a33f5ec6680591c097fdb4aba0e028f40845
Certificate serial: 061DDC31
Authority key identifier: 50:02:A3:3F:5E:C6:68:05:91:C0:97:FD:B4:AB:A0:E0:28:F4:08:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UAKjP17GaAWRwJf9tKug4Cj0CEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/67b1ec-208f-4d62-9cbc-ede1e4bb611e/1/T5jiEj4dmkRk6G0zSB1bZbRz4KY.roa
Signing time: Sat 01 Jan 2022 06:58:24 +0000
ROA not before: Sat 01 Jan 2022 06:58:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58127
IP address blocks: 185.185.112.0/22 maxlen: 22
185.185.112.0/24 maxlen: 24
185.185.115.0/24 maxlen: 24
185.185.114.0/24 maxlen: 24
185.185.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102620209 (0x61ddc31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5002a33f5ec6680591c097fdb4aba0e028f40845
Validity
Not Before: Jan 1 06:58:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f98e2123e1d9a4464e86d33481d5b65b473e0a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:37:23:25:12:3c:f0:3c:fa:d3:ab:0c:92:27:
b9:cd:f7:d3:87:cf:0a:dd:53:e9:99:ae:d6:fe:ff:
9f:70:9b:13:b6:99:8e:3a:37:3b:7c:9f:47:a5:85:
01:7c:1c:cc:e8:f6:2b:79:ff:4e:23:98:ff:63:0e:
a3:6e:29:47:bc:cd:6b:a5:72:c8:fc:33:1a:24:5f:
3f:cb:3d:b7:25:46:b3:54:58:77:30:6e:1f:8b:44:
11:1c:e0:ac:67:65:a6:96:f9:17:13:4b:8a:b2:de:
62:19:4f:c1:60:ab:f7:ce:f5:12:a1:37:96:fd:ef:
aa:40:8c:7a:a2:ff:30:b6:83:ed:d7:3a:19:45:de:
a0:88:14:62:22:6f:78:cc:1d:aa:cc:8f:eb:41:32:
aa:15:b2:68:ce:2f:36:e1:16:61:80:05:35:26:d4:
34:2e:5e:c2:d3:9d:7e:10:db:24:e1:95:d0:e9:23:
08:ca:87:6b:a7:d7:b5:eb:d0:50:d3:ac:3c:90:bc:
32:6b:79:3f:40:23:4c:c8:99:5b:23:39:c3:a8:b3:
14:be:05:df:3c:74:78:48:73:1c:67:04:f9:a6:97:
89:34:d1:d7:28:47:ef:fd:05:39:a5:eb:9c:8d:30:
0d:74:8a:43:71:93:2e:d3:9d:de:4c:b0:3b:cb:ad:
3e:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:98:E2:12:3E:1D:9A:44:64:E8:6D:33:48:1D:5B:65:B4:73:E0:A6
X509v3 Authority Key Identifier:
keyid:50:02:A3:3F:5E:C6:68:05:91:C0:97:FD:B4:AB:A0:E0:28:F4:08:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UAKjP17GaAWRwJf9tKug4Cj0CEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/67b1ec-208f-4d62-9cbc-ede1e4bb611e/1/T5jiEj4dmkRk6G0zSB1bZbRz4KY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/67b1ec-208f-4d62-9cbc-ede1e4bb611e/1/UAKjP17GaAWRwJf9tKug4Cj0CEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.185.112.0/22
Signature Algorithm: sha256WithRSAEncryption
87:9e:2f:16:c0:34:83:cc:55:59:d0:05:95:8e:47:73:c6:68:
e3:d2:8b:d2:23:d2:0e:2c:fe:d9:b0:80:37:26:3c:b1:9e:1a:
18:e1:3b:3a:ce:34:65:4d:ef:fe:ff:62:7e:c7:66:09:31:eb:
02:1c:bd:65:92:a1:e9:fd:42:36:31:7e:30:8c:b0:5e:47:46:
4e:1a:a2:70:56:b6:18:0d:c7:12:78:da:3f:e6:c0:f1:15:70:
63:f8:68:8c:c5:1d:9f:ed:a4:30:ff:6c:11:d7:52:c1:2a:19:
c6:31:04:c1:ca:99:b0:d2:fb:ac:a6:d6:4a:5d:8d:3f:67:ef:
1d:5c:07:2e:26:50:64:86:1a:1c:27:9e:41:1f:98:f8:0a:76:
3c:55:47:6c:1f:3f:18:97:b6:2e:a7:3b:af:a9:09:93:c9:c6:
24:3c:fe:3c:06:21:cf:e5:32:61:54:0a:d4:20:80:1c:45:4a:
04:bb:3a:6b:5c:9b:e0:7c:6b:e9:53:70:de:9e:15:dc:5a:d5:
57:d2:cb:bc:54:de:0f:51:06:0b:75:48:c9:6f:77:b6:b1:17:
ed:0d:24:3d:40:96:aa:10:4f:04:7a:b4:5d:32:9e:64:4a:cf:
e7:44:d1:03:56:60:97:d6:4a:9a:42:8f:6d:f4:fd:72:69:ec:
37:b3:1e:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 07:07:21 2025 by rpki-client