Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/6da1c2-252d-4bd2-b56c-bb217cc3b78d/1/Uk1cSl1X7gNdLDcqnlvkBjW8PwY.roa
File: Uk1cSl1X7gNdLDcqnlvkBjW8PwY.roa (raw, json)
Hash identifier: FuJj2JAu+RJkLJgVOZEDlO4Oczz1Vt9VBtBtsxzFGLg=
Subject key identifier: 52:4D:5C:4A:5D:57:EE:03:5D:2C:37:2A:9E:5B:E4:06:35:BC:3F:06
Certificate issuer: /CN=293e0cd8b3e044edb823aef688aafb0b75de8675
Certificate serial: 01856E8B292CC1ABC558B67152DCDC61C14E
Authority key identifier: 29:3E:0C:D8:B3:E0:44:ED:B8:23:AE:F6:88:AA:FB:0B:75:DE:86:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KT4M2LPgRO24I672iKr7C3XehnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/6da1c2-252d-4bd2-b56c-bb217cc3b78d/1/Uk1cSl1X7gNdLDcqnlvkBjW8PwY.roa
Signing time: Sun 01 Jan 2023 18:14:51 +0000
ROA not before: Sun 01 Jan 2023 18:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209782
IP address blocks: 185.126.203.0/24 maxlen: 24
185.126.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:29:2c:c1:ab:c5:58:b6:71:52:dc:dc:61:c1:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=293e0cd8b3e044edb823aef688aafb0b75de8675
Validity
Not Before: Jan 1 18:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=524d5c4a5d57ee035d2c372a9e5be40635bc3f06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:ed:9a:20:8d:23:a8:47:d6:a4:2f:55:e5:1b:
de:66:3a:31:b3:cd:e1:14:34:e2:b3:36:ba:26:dc:
73:98:b1:42:2f:0c:1b:aa:d2:96:35:66:3b:61:26:
7e:d1:a3:53:49:ba:ee:b8:b0:9d:ff:c0:f2:c8:a5:
f2:a7:11:74:d6:2e:f5:55:19:2b:78:b5:63:e6:69:
80:50:8f:36:87:fd:bd:53:f0:c3:fb:7c:66:e6:a5:
4e:60:c9:6e:2e:9e:b7:6b:0c:07:05:6c:26:6d:ef:
07:bd:92:98:17:d1:3f:51:1e:4d:4f:5b:19:4c:1c:
31:58:91:7f:35:bb:a8:d9:16:30:1f:79:d3:10:35:
1c:2d:fc:8b:8c:2d:fc:8e:35:fa:6d:83:92:50:7a:
10:15:b9:20:63:3a:a7:f7:7f:72:19:98:19:0f:ee:
22:06:f0:78:7d:76:9a:93:1f:46:93:38:07:b1:a5:
74:78:60:4c:3f:69:6b:5b:ad:e7:69:81:8d:e8:d7:
89:0e:e0:42:23:1d:0c:36:a6:98:59:25:3d:65:c9:
39:70:4f:44:89:33:ae:bf:18:a8:35:dc:05:9f:7e:
37:e7:95:f2:71:2e:9b:d9:c5:dd:a6:68:7a:b9:c5:
54:8e:1e:1b:ea:0c:b4:f0:f9:ef:e0:83:9b:e3:65:
fb:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:4D:5C:4A:5D:57:EE:03:5D:2C:37:2A:9E:5B:E4:06:35:BC:3F:06
X509v3 Authority Key Identifier:
keyid:29:3E:0C:D8:B3:E0:44:ED:B8:23:AE:F6:88:AA:FB:0B:75:DE:86:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KT4M2LPgRO24I672iKr7C3XehnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/6da1c2-252d-4bd2-b56c-bb217cc3b78d/1/Uk1cSl1X7gNdLDcqnlvkBjW8PwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/6da1c2-252d-4bd2-b56c-bb217cc3b78d/1/KT4M2LPgRO24I672iKr7C3XehnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.202.0/23
Signature Algorithm: sha256WithRSAEncryption
00:03:d5:36:3f:5a:2e:83:20:16:4f:4d:a6:d3:63:0a:64:6e:
0b:10:09:49:10:dd:01:05:84:0e:fe:fe:36:2c:eb:50:0b:a6:
58:f2:b0:51:61:69:01:98:06:58:a4:92:18:28:60:33:13:e3:
a5:a9:ae:57:f0:22:73:53:06:7b:a1:95:a1:84:ef:fc:f6:40:
0c:7f:fb:b2:11:5e:04:de:24:27:ff:fd:7d:0c:91:dd:a3:9c:
1b:f6:3b:29:df:78:f5:eb:69:40:3a:13:60:83:28:b5:11:65:
d3:52:8b:fc:95:35:f6:e1:51:bc:64:a5:47:46:25:4f:93:1a:
d4:79:b6:cf:4a:47:60:bc:dc:2c:2b:1f:14:72:1a:72:a1:e5:
09:5c:11:a7:d4:cb:e4:87:8e:db:93:c6:4e:65:39:8f:62:5a:
07:eb:2f:0c:fe:00:f2:ae:cd:86:29:43:c3:4f:ae:cd:fa:db:
58:b9:d0:e8:8c:68:33:19:f5:0f:fc:73:46:e6:e1:b7:3d:9c:
df:0c:d1:2b:4b:56:4c:43:d8:dd:13:21:4c:cf:d8:21:49:48:
0d:61:c4:82:c1:10:65:78:e9:5d:1d:ea:ae:a6:0a:85:13:7d:
a2:ce:b9:61:17:fa:83:2a:c9:5b:aa:44:fe:62:8a:f2:95:99:
66:b8:66:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:46:04 2025 by rpki-client