Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/N-3oI0Xaor_1z_ra2Dl1dRgSymI.roa
File: N-3oI0Xaor_1z_ra2Dl1dRgSymI.roa (raw, json)
Hash identifier: 5OOuEeAu6zPBrA1j6sjcp45METbaiHJLwFYfpj8AHXs=
Subject key identifier: 37:ED:E8:23:45:DA:A2:BF:F5:CF:FA:DA:D8:39:75:75:18:12:CA:62
Certificate issuer: /CN=d3860a9b36585fb8aa051fc37fcc6a0773990cbf
Certificate serial: 01856C4A6112B44171C274FB3FF0FBA47618
Authority key identifier: D3:86:0A:9B:36:58:5F:B8:AA:05:1F:C3:7F:CC:6A:07:73:99:0C:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/04YKmzZYX7iqBR_Df8xqB3OZDL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/N-3oI0Xaor_1z_ra2Dl1dRgSymI.roa
Signing time: Sun 01 Jan 2023 07:44:51 +0000
ROA not before: Sun 01 Jan 2023 07:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44794
IP address blocks: 185.235.80.0/24 maxlen: 24
2a0d:4d00::/48 maxlen: 48
2a0d:4d00:80::/48 maxlen: 48
2a0d:4d00:3::/48 maxlen: 48
2a0d:4d00:1::/48 maxlen: 48
2a0d:4d00:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:4a:61:12:b4:41:71:c2:74:fb:3f:f0:fb:a4:76:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3860a9b36585fb8aa051fc37fcc6a0773990cbf
Validity
Not Before: Jan 1 07:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37ede82345daa2bff5cffadad83975751812ca62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:58:8a:4e:74:77:be:38:b3:86:10:95:7c:20:
43:66:76:46:64:4d:00:14:60:5d:e4:df:c0:a7:fc:
6c:1c:2a:53:d6:66:dd:de:23:f6:11:e2:c3:b8:30:
6d:46:bd:d9:fa:a5:3a:2b:3b:36:38:2d:99:98:ae:
33:10:6c:2c:ac:9b:b5:83:1b:b8:eb:b8:4b:46:99:
12:1f:cd:3b:55:72:3b:09:94:2c:e8:6e:b0:25:33:
1e:86:f4:06:17:67:4b:37:8e:d9:97:7a:4a:dd:02:
1d:f0:d0:2f:57:37:d1:ba:a1:d7:68:92:8e:99:98:
1a:64:c3:20:06:3e:76:0b:d1:da:db:a7:fc:4c:28:
5c:97:40:e1:b9:7f:14:f7:79:6e:0c:a4:4c:1f:17:
33:9b:7b:53:f5:10:1e:88:72:67:73:ec:71:4e:12:
57:a8:18:58:9f:6e:9a:3f:bd:1d:43:69:4e:a1:7e:
1f:85:5d:aa:41:7d:6e:b1:c7:01:19:dd:df:aa:1f:
d7:9f:10:7a:fe:5c:91:02:23:97:89:27:3a:d6:db:
9d:b1:ab:b9:ff:b3:0f:5d:7a:5d:e4:5c:14:6a:c0:
b5:b0:8b:b2:93:53:00:57:c3:66:91:9b:b7:48:f7:
7f:c3:87:84:77:29:05:88:2a:58:71:0e:6f:06:b4:
f4:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:ED:E8:23:45:DA:A2:BF:F5:CF:FA:DA:D8:39:75:75:18:12:CA:62
X509v3 Authority Key Identifier:
keyid:D3:86:0A:9B:36:58:5F:B8:AA:05:1F:C3:7F:CC:6A:07:73:99:0C:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/04YKmzZYX7iqBR_Df8xqB3OZDL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/N-3oI0Xaor_1z_ra2Dl1dRgSymI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/04YKmzZYX7iqBR_Df8xqB3OZDL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.80.0/24
IPv6:
2a0d:4d00::/46
2a0d:4d00:80::/48
Signature Algorithm: sha256WithRSAEncryption
24:47:f4:88:fa:a9:75:a1:cf:54:9a:78:4e:e0:c3:17:6f:3a:
da:bf:31:a5:f3:93:60:df:bb:72:d1:06:a3:48:a7:c6:d9:10:
a0:36:7f:6d:1f:91:2b:0c:1e:96:9c:35:3d:72:3d:0f:1f:37:
d1:98:49:38:88:56:d9:af:f9:23:da:eb:02:c3:f4:26:3c:48:
b0:7c:a5:3d:26:f2:c3:52:94:9b:84:19:39:a0:22:2b:dd:fd:
29:34:20:aa:16:af:c7:94:78:6a:99:bc:b8:58:75:65:42:6a:
71:ff:54:f6:85:ce:1c:82:7f:15:9e:33:79:24:e6:d1:ff:71:
e6:0b:95:60:05:01:41:16:fe:fa:14:d1:60:f7:54:51:6d:44:
38:26:59:53:38:95:7c:82:ed:83:c1:f2:3a:d6:65:65:8b:5e:
79:78:0b:71:ea:99:99:b5:d4:78:9e:af:a5:e1:3b:2d:60:88:
17:60:60:0a:7d:73:76:e5:c4:0b:59:d2:d5:f2:1c:40:41:7a:
9c:27:6f:fb:77:69:fe:8c:7a:79:1c:e6:ce:fc:71:eb:83:a1:
3c:36:f8:63:2b:e0:35:35:8b:d3:9b:87:74:b9:e6:a6:22:d4:
3b:8d:db:1c:06:53:65:d2:88:38:41:74:6d:c4:86:e4:ff:bf:
f7:15:70:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:07 2025 by rpki-client