Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/1433ea-1080-46e5-b612-297e282d66a8/1/di1bPDL2wW3NOwFEU37RqzFlva8.roa
File: di1bPDL2wW3NOwFEU37RqzFlva8.roa (raw, json)
Hash identifier: 0TMCkvI7/ayoJMlvmnF+/3o0em2e+UFTWs5MlAupD2k=
Subject key identifier: 76:2D:5B:3C:32:F6:C1:6D:CD:3B:01:44:53:7E:D1:AB:31:65:BD:AF
Certificate issuer: /CN=26a5aa918cbfeb3e12997f33890feb258907b343
Certificate serial: 04D472DA
Authority key identifier: 26:A5:AA:91:8C:BF:EB:3E:12:99:7F:33:89:0F:EB:25:89:07:B3:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JqWqkYy_6z4SmX8ziQ_rJYkHs0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/1433ea-1080-46e5-b612-297e282d66a8/1/di1bPDL2wW3NOwFEU37RqzFlva8.roa
Signing time: Tue 07 Jun 2022 03:14:20 +0000
ROA not before: Tue 07 Jun 2022 03:14:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58321
IP address blocks: 185.123.160.0/24 maxlen: 24
194.60.251.0/24 maxlen: 24
94.152.254.0/24 maxlen: 24
94.152.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81031898 (0x4d472da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26a5aa918cbfeb3e12997f33890feb258907b343
Validity
Not Before: Jun 7 03:14:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=762d5b3c32f6c16dcd3b0144537ed1ab3165bdaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:c0:2f:4e:60:2f:61:6c:3d:da:5a:7e:9d:03:
ed:0a:53:97:db:d6:87:5a:39:d2:4b:10:0d:81:3f:
d8:0a:50:45:b9:c9:7f:b6:f9:c6:fd:e9:66:fc:9c:
ad:e0:3c:c3:41:5b:34:9c:a8:af:48:ad:03:3c:54:
14:12:d7:a9:b2:37:70:bf:06:ae:8b:9e:0d:e7:80:
d6:a3:8b:7b:6e:56:99:c2:46:80:fa:7e:b5:7a:01:
19:bf:64:24:16:31:0e:f0:20:8d:b7:76:75:8f:27:
94:f5:2d:44:0a:23:c6:f2:49:ea:15:37:14:3e:a5:
17:e6:e7:ec:89:9f:0d:53:62:0f:3e:6b:0c:b2:53:
dc:41:46:43:87:f2:27:37:49:7a:64:97:cf:04:28:
df:f5:bb:80:89:4a:4b:2e:94:9c:68:89:67:5a:12:
e1:9e:88:35:09:e7:fd:1e:be:75:62:41:81:19:20:
ce:81:ab:f4:82:f7:b6:a1:dc:35:47:81:17:91:95:
cd:c4:bc:88:99:67:51:4a:2a:95:cb:98:7b:c6:24:
ef:11:25:41:07:6d:e4:d2:25:af:74:2b:b4:1b:aa:
66:1c:fe:0d:27:b9:8e:9a:27:ee:e0:ff:ab:d2:bd:
fb:e4:2e:03:56:c1:80:1e:4e:76:49:d0:2c:0a:f1:
bd:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:2D:5B:3C:32:F6:C1:6D:CD:3B:01:44:53:7E:D1:AB:31:65:BD:AF
X509v3 Authority Key Identifier:
keyid:26:A5:AA:91:8C:BF:EB:3E:12:99:7F:33:89:0F:EB:25:89:07:B3:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JqWqkYy_6z4SmX8ziQ_rJYkHs0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1433ea-1080-46e5-b612-297e282d66a8/1/di1bPDL2wW3NOwFEU37RqzFlva8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1433ea-1080-46e5-b612-297e282d66a8/1/JqWqkYy_6z4SmX8ziQ_rJYkHs0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.152.254.0/23
185.123.160.0/24
194.60.251.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:6f:83:9b:bc:88:dc:ae:f6:02:6c:25:dd:c5:5a:5f:4e:a8:
34:79:6d:da:42:1a:56:30:aa:71:0d:d5:01:88:9a:e0:4b:80:
65:92:ce:d8:e4:37:34:58:a2:e8:c0:8a:1f:78:fd:60:a2:5a:
e8:e9:bf:5c:c9:4d:26:fb:a1:d3:65:a3:f6:03:60:b9:1d:ac:
f3:d6:7b:db:8d:6f:43:a1:fb:bc:d7:ac:18:13:e0:a6:4c:95:
e6:79:53:76:33:b4:6f:c6:d5:1c:0e:6e:c3:19:cd:53:0f:23:
7a:9e:7c:4b:b7:86:41:b8:63:d7:6f:22:0f:52:2f:e8:26:c1:
f6:e9:70:39:a3:9f:81:c3:76:51:b1:15:64:35:34:aa:4d:6c:
dc:86:b5:5e:c6:22:7d:e3:5c:07:0c:bd:87:44:b6:11:7c:22:
1f:47:57:84:f1:ff:37:09:2b:f3:c3:ab:6f:7e:7d:da:97:4d:
a7:b2:6a:57:98:3f:2c:77:67:24:c1:8a:9d:36:05:88:d2:ca:
f8:74:8b:34:2d:48:6c:95:e5:47:ff:0a:f3:7a:c3:8a:60:ce:
8c:32:e8:c5:1c:e8:89:7f:da:0b:fc:b2:06:a2:80:a5:20:f3:
6a:02:90:97:cd:cf:08:07:76:8e:1a:50:e9:eb:a1:67:7b:84:
f6:99:81:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:53:59 2025 by rpki-client