Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/DMHLYYDoy5b38c3-3oiQHFhI73E.roa
File: DMHLYYDoy5b38c3-3oiQHFhI73E.roa (raw, json)
Hash identifier: veY/ux7BdEHVZyQOvsr+mW+to+EI7o1alZqdwhGeczc=
Subject key identifier: 0C:C1:CB:61:80:E8:CB:96:F7:F1:CD:FE:DE:88:90:1C:58:48:EF:71
Certificate issuer: /CN=d3860a9b36585fb8aa051fc37fcc6a0773990cbf
Certificate serial: 0D448292
Authority key identifier: D3:86:0A:9B:36:58:5F:B8:AA:05:1F:C3:7F:CC:6A:07:73:99:0C:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/04YKmzZYX7iqBR_Df8xqB3OZDL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/DMHLYYDoy5b38c3-3oiQHFhI73E.roa
Signing time: Sat 01 Jan 2022 15:58:57 +0000
ROA not before: Sat 01 Jan 2022 15:58:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62303
IP address blocks: 185.235.81.0/24 maxlen: 24
2a0d:4d00:81::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 222593682 (0xd448292)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3860a9b36585fb8aa051fc37fcc6a0773990cbf
Validity
Not Before: Jan 1 15:58:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0cc1cb6180e8cb96f7f1cdfede88901c5848ef71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:02:a4:6a:09:55:df:d7:09:ed:03:e5:0c:6c:
5d:4d:25:b0:2f:54:07:b3:b1:cd:c9:3c:8a:d9:82:
e8:e0:56:dd:12:8f:18:24:82:32:9d:89:6f:29:33:
1b:7e:7c:29:eb:2d:41:5a:cf:3b:5a:a0:8a:29:b5:
d9:5e:5b:f1:86:38:b6:73:c5:d4:52:21:d2:cb:a2:
a2:a6:35:1e:78:c6:62:d9:86:48:ed:32:63:85:9f:
db:cb:ae:bb:6c:51:78:cd:55:fe:82:1b:06:b6:81:
b9:f6:91:35:6e:d8:93:3c:ee:32:b4:5a:74:35:b6:
23:9c:94:6b:09:19:96:91:71:bf:d3:de:28:07:7b:
ac:e6:94:2c:74:5d:84:c4:4c:e7:b4:15:4c:5d:96:
71:34:3e:ad:fe:76:ae:5a:c7:2f:f9:90:bc:0c:a8:
79:f6:0c:da:9e:24:42:c2:12:a5:da:87:a7:05:b5:
4b:f9:43:ce:06:78:63:49:69:a4:d9:1a:8a:ad:a2:
a9:b5:2b:4a:0c:d3:dc:df:6a:b7:06:11:80:17:ba:
22:de:2d:21:8f:16:de:e0:1d:70:13:9b:54:ba:9c:
3c:24:2a:94:ac:92:5e:0f:d3:4b:cf:b5:18:c3:de:
64:5a:9f:7c:ef:fb:92:74:a4:3e:22:a9:77:c9:5d:
63:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:C1:CB:61:80:E8:CB:96:F7:F1:CD:FE:DE:88:90:1C:58:48:EF:71
X509v3 Authority Key Identifier:
keyid:D3:86:0A:9B:36:58:5F:B8:AA:05:1F:C3:7F:CC:6A:07:73:99:0C:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/04YKmzZYX7iqBR_Df8xqB3OZDL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/DMHLYYDoy5b38c3-3oiQHFhI73E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/04YKmzZYX7iqBR_Df8xqB3OZDL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.81.0/24
IPv6:
2a0d:4d00:81::/48
Signature Algorithm: sha256WithRSAEncryption
3d:c0:b8:23:c7:e0:21:c2:66:a9:78:de:1d:66:d2:cc:30:13:
70:33:db:11:df:14:62:13:62:44:68:be:fb:74:c2:35:83:56:
04:96:ad:1d:83:89:f8:6d:19:1c:81:08:23:9b:50:48:76:da:
11:32:21:f2:ad:07:3c:5c:c4:5d:c6:9e:46:2a:f3:4e:55:98:
f2:ea:6c:49:9d:4e:bd:11:74:55:b6:00:dd:2c:96:81:e5:4e:
9e:69:74:dd:02:d3:f1:70:fb:7c:84:a0:5b:ac:6f:8a:bc:66:
03:e5:c7:ec:4a:af:83:d6:83:ca:2f:e0:eb:b6:e3:2a:08:20:
86:af:7d:b5:02:d1:e7:21:35:73:fd:83:c7:3e:ee:86:60:e3:
34:db:1b:0d:34:54:a2:f2:f7:fe:11:90:7a:6b:30:3f:b4:c3:
5a:74:c7:e3:11:02:5e:9c:21:61:95:8b:24:5c:f0:b8:3a:98:
20:2c:70:f8:5d:5b:9b:d5:9b:58:c2:31:32:67:2d:43:7f:14:
a9:90:0e:68:60:0c:10:9d:38:e2:36:19:18:b5:b5:6d:cc:ef:
d1:17:ba:c7:4c:a8:55:ce:f3:a9:9d:0e:02:01:02:dc:a2:23:
85:44:eb:02:be:c2:01:81:53:fb:fb:a4:a8:74:0a:96:65:1e:
e9:01:23:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:14:59 2025 by rpki-client