Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/0_1c6jC8vnx5MNRZ6rbFCLjYPVw.roa
File: 0_1c6jC8vnx5MNRZ6rbFCLjYPVw.roa (raw, json)
Hash identifier: rzuzBXWsVa7asgsi7HzrqhbLnwTmb80u6L/pHBYceFU=
Subject key identifier: D3:FD:5C:EA:30:BC:BE:7C:79:30:D4:59:EA:B6:C5:08:B8:D8:3D:5C
Certificate issuer: /CN=21021b252222997bfe33b7e4b315ac8d5e067954
Certificate serial: 053D7186
Authority key identifier: 21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/0_1c6jC8vnx5MNRZ6rbFCLjYPVw.roa
Signing time: Fri 17 Jun 2022 09:50:44 +0000
ROA not before: Fri 17 Jun 2022 09:50:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203061
IP address blocks: 193.84.183.0/24 maxlen: 24
185.145.216.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87912838 (0x53d7186)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21021b252222997bfe33b7e4b315ac8d5e067954
Validity
Not Before: Jun 17 09:50:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3fd5cea30bcbe7c7930d459eab6c508b8d83d5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:59:1e:25:61:02:8e:8f:04:66:4a:e0:c0:17:
dd:bd:c9:92:27:2a:2d:e1:5f:e3:ea:cc:88:fe:2c:
2a:d7:aa:54:f4:0e:3f:bb:5d:50:68:47:67:65:58:
b1:d8:08:db:cf:58:25:00:14:00:82:a7:aa:1f:d1:
9c:6c:56:13:ec:ab:92:21:7a:df:41:41:27:89:48:
d1:26:5e:a3:cb:92:99:17:7a:4e:c2:12:db:21:c2:
b9:6f:b3:d3:1c:e4:5f:50:78:bb:52:3e:e2:5e:e1:
f9:77:44:be:eb:27:99:80:e6:0a:76:17:fd:4a:e2:
c4:f5:68:25:02:05:45:5c:4d:87:0a:f0:c0:96:58:
7f:b6:a8:c8:06:5f:e4:d2:64:21:b6:79:a6:a4:b9:
63:e3:e2:f4:b0:57:da:e9:7c:3f:c3:8c:7a:38:38:
aa:6c:62:9e:1a:96:57:8f:2b:75:be:7a:a6:bc:a6:
f7:f7:7a:22:71:7a:72:9b:74:6c:fd:41:75:20:a8:
b1:56:15:fd:a3:cd:b9:aa:0e:e4:77:a3:af:a8:5d:
6d:52:08:ea:9d:44:ea:bb:f5:25:bf:80:ae:df:7b:
72:e4:67:a5:47:a2:e3:e6:d4:b5:cc:2a:a0:78:7e:
71:de:24:ca:dc:4a:2f:37:5e:f0:9a:46:37:cf:07:
bd:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:FD:5C:EA:30:BC:BE:7C:79:30:D4:59:EA:B6:C5:08:B8:D8:3D:5C
X509v3 Authority Key Identifier:
keyid:21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/0_1c6jC8vnx5MNRZ6rbFCLjYPVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.216.0/22
193.84.183.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:7e:d8:69:d2:ed:1e:c7:1b:ba:c2:28:4b:85:86:a8:2b:e9:
9d:d4:b5:68:0b:fb:c6:34:cc:bc:14:36:fa:d0:45:aa:91:af:
72:fb:bd:1a:3a:08:ab:08:4e:d6:fd:cb:6b:d6:e4:4d:ee:31:
39:65:24:64:1d:23:85:ea:2a:3f:2d:1e:45:86:17:f0:f3:f2:
a4:7c:79:4e:f7:9d:69:10:73:13:5e:80:d1:59:4b:5f:46:48:
c8:32:0b:3c:f6:04:31:c9:4c:02:ee:ce:b6:4b:31:ff:52:8c:
c6:fc:29:c7:5b:76:89:2b:62:f7:70:08:a0:db:8b:69:ca:ec:
df:8d:13:13:3f:4e:a6:c8:4c:40:29:90:a5:75:91:e9:b1:9b:
f9:05:1d:d2:4d:57:4f:cb:4c:7d:34:4d:d4:65:3c:ef:88:6f:
35:ad:0c:30:95:6a:e3:ba:fb:e3:01:3a:cf:a7:8c:48:77:86:
58:2d:ee:27:f3:45:ca:0d:f6:bf:97:04:cc:35:c9:45:b5:17:
51:30:94:a0:ba:eb:c4:9c:f9:c2:12:80:29:14:08:36:46:d9:
1c:87:04:36:8f:f4:dc:4a:c7:4d:f8:2c:93:06:d7:4f:e7:dd:
11:3e:03:2e:b1:28:d0:4e:c0:86:2d:7f:20:ed:49:28:f8:96:
f1:c1:54:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 14:54:01 2025 by rpki-client