Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/344d24-2e11-466d-8ade-38e846148c78/1/MImd5DKzJDn0fvm7IClL0p7JTas.roa
File: MImd5DKzJDn0fvm7IClL0p7JTas.roa (raw, json)
Hash identifier: XcyTAY/EWnumha35uACP/JKTfZK99EfzTWhkG6vPAco=
Subject key identifier: 30:89:9D:E4:32:B3:24:39:F4:7E:F9:BB:20:29:4B:D2:9E:C9:4D:AB
Certificate issuer: /CN=1aa0a328c6fe0f1bca5e6599042dff59e513b25d
Certificate serial: 02ADAD
Authority key identifier: 1A:A0:A3:28:C6:FE:0F:1B:CA:5E:65:99:04:2D:FF:59:E5:13:B2:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GqCjKMb-DxvKXmWZBC3_WeUTsl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/344d24-2e11-466d-8ade-38e846148c78/1/MImd5DKzJDn0fvm7IClL0p7JTas.roa
Signing time: Tue 15 Feb 2022 13:12:26 +0000
ROA not before: Tue 15 Feb 2022 13:12:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 185.252.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 175533 (0x2adad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1aa0a328c6fe0f1bca5e6599042dff59e513b25d
Validity
Not Before: Feb 15 13:12:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=30899de432b32439f47ef9bb20294bd29ec94dab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:23:37:38:23:d6:fe:bc:bd:9b:0e:b7:ff:ae:
99:ea:54:ff:18:dc:ae:b9:55:a6:17:3f:72:40:bb:
02:75:04:38:8d:21:6a:df:a9:36:38:ee:25:e9:f8:
77:f7:36:41:ce:44:8a:42:be:67:bb:df:fa:7b:cc:
28:71:1e:17:08:3d:8e:0d:88:e8:51:bc:17:7a:3e:
13:43:cd:51:92:c4:23:86:8b:b3:91:9c:10:6f:d5:
cf:d8:12:b6:23:25:a3:2f:65:57:31:5c:67:9f:e7:
4b:34:97:d1:47:a6:b9:f5:b3:92:47:e4:54:c1:5e:
c9:b7:79:b8:af:f9:31:95:16:f9:4d:91:bb:34:a0:
83:97:a1:42:b0:0e:f4:27:22:b7:11:5a:5f:46:45:
b5:f5:97:21:b7:7a:a8:75:0f:58:e1:17:00:5b:c0:
b5:d2:97:5a:cb:6b:62:bb:a2:b3:bf:9e:2c:b3:18:
96:41:19:e5:ae:73:1e:7c:8b:90:c6:c4:81:fa:a2:
00:b9:ee:9c:c8:11:ae:0a:14:a6:b6:a5:4b:4e:a2:
94:35:f9:db:ad:bf:04:85:17:6d:83:cd:ac:1b:18:
b5:c3:f4:bf:e1:82:0d:59:35:b2:2c:26:7c:b8:ba:
88:a7:2e:f7:0f:8c:44:b9:d8:74:2b:52:9a:cc:16:
fe:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:89:9D:E4:32:B3:24:39:F4:7E:F9:BB:20:29:4B:D2:9E:C9:4D:AB
X509v3 Authority Key Identifier:
keyid:1A:A0:A3:28:C6:FE:0F:1B:CA:5E:65:99:04:2D:FF:59:E5:13:B2:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GqCjKMb-DxvKXmWZBC3_WeUTsl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/344d24-2e11-466d-8ade-38e846148c78/1/MImd5DKzJDn0fvm7IClL0p7JTas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/344d24-2e11-466d-8ade-38e846148c78/1/GqCjKMb-DxvKXmWZBC3_WeUTsl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.252.7.0/24
Signature Algorithm: sha256WithRSAEncryption
10:d8:b0:c6:33:15:c3:43:f7:0d:2d:fb:e9:df:ae:ec:cc:94:
37:d5:8d:0c:02:4a:6e:d9:17:7d:79:5d:2c:59:a7:72:f9:e6:
96:b3:97:35:cf:4c:9c:5d:68:39:a9:0d:b0:61:c6:95:b2:7b:
bd:aa:da:ec:55:12:2b:24:95:c6:18:fd:9f:2e:d4:27:9d:8c:
09:70:e0:9f:0f:b6:fa:1d:80:a9:6d:1b:85:c2:7b:e7:07:e7:
ee:99:4f:57:c2:24:14:9e:99:33:ef:38:7f:69:10:e2:f0:da:
79:b0:14:88:9a:26:5e:52:a4:e0:05:76:9f:50:b6:b8:2f:77:
9b:62:28:5d:ac:24:e5:72:e1:4a:72:21:80:f3:e8:30:52:6a:
5f:d6:48:ce:81:f6:5a:63:85:a6:6b:28:6d:6b:6c:fc:29:f8:
63:b0:29:99:0a:e8:fb:28:ec:79:fd:1c:7b:b1:78:41:2e:ed:
3e:75:c6:ae:a8:38:b2:97:5e:63:45:ed:59:8c:d0:d3:22:32:
95:70:23:9e:b6:55:1e:17:e2:9d:c8:2f:f5:c6:9d:7d:c5:00:
c2:e7:d5:2c:d6:6f:f3:ac:84:69:d8:39:5d:68:9c:1e:34:08:
a3:09:8d:db:4f:8c:85:3b:e6:35:94:70:9c:8a:82:fb:65:d3:
95:a2:91:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 15:34:08 2025 by rpki-client