Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/ASXth5q2mJjoO9LAfnreNJvyoAU.roa
File: ASXth5q2mJjoO9LAfnreNJvyoAU.roa (raw, json)
Hash identifier: GtayMs5ssijHkBBjXQwwAOfUrulz5c8KyvUVr/OrFI0=
Subject key identifier: 01:25:ED:87:9A:B6:98:98:E8:3B:D2:C0:7E:7A:DE:34:9B:F2:A0:05
Certificate issuer: /CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Certificate serial: 066645C2
Authority key identifier: 83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/ASXth5q2mJjoO9LAfnreNJvyoAU.roa
Signing time: Tue 19 Apr 2022 14:14:22 +0000
ROA not before: Tue 19 Apr 2022 14:14:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211639
IP address blocks: 185.13.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107365826 (0x66645c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Validity
Not Before: Apr 19 14:14:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0125ed879ab69898e83bd2c07e7ade349bf2a005
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:32:aa:a7:b8:7a:59:95:fc:92:32:8b:4e:77:
38:8f:f9:60:2a:1d:a8:80:30:e9:e9:30:8a:c5:82:
48:99:e7:d1:77:e1:e1:7f:b3:c0:18:3c:00:cf:e6:
6c:a6:cf:16:d7:44:05:d3:b8:86:f7:d3:ad:b0:8c:
3a:8c:97:2a:4f:2e:24:f0:fe:09:f0:64:ce:fc:75:
3b:e7:0c:ab:61:a0:d2:53:9e:63:f4:23:9f:b5:8b:
d4:bc:cf:92:7b:a0:b4:56:8b:ee:38:3c:13:df:62:
0c:96:6e:8b:a1:b1:c4:d9:07:3f:df:e2:20:30:48:
82:9b:d4:f8:2e:a8:21:bf:04:57:42:d6:fc:41:78:
a7:cb:87:21:7a:86:04:d7:56:88:46:cd:82:b3:0a:
98:53:75:ae:52:bc:1b:a3:65:ba:c6:ee:67:88:b8:
ac:9e:53:e4:71:61:8b:a3:a1:4f:e9:fb:16:29:68:
a8:95:75:d3:36:7d:a5:00:f7:d9:fd:0a:52:12:8c:
74:c6:37:02:f6:6a:d0:0e:c0:e5:33:92:87:79:f8:
0b:2d:f7:a2:2b:01:3e:3b:d9:07:af:0b:d4:4d:08:
0e:16:66:0b:8b:1e:e3:9f:99:fc:67:90:c3:a8:8a:
16:ce:61:01:83:aa:66:08:f0:49:5d:85:31:36:b2:
22:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:25:ED:87:9A:B6:98:98:E8:3B:D2:C0:7E:7A:DE:34:9B:F2:A0:05
X509v3 Authority Key Identifier:
keyid:83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/ASXth5q2mJjoO9LAfnreNJvyoAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/gzjvQbLAEFqRzLuciTN_rrEp_4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.13.33.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:68:27:f7:7f:ab:1e:22:d1:8c:68:7d:40:03:89:3d:f0:d1:
2d:bc:a0:5d:11:97:f9:9e:e7:99:de:7a:bc:67:da:74:b4:b4:
ce:ae:9c:77:1a:5b:e7:6b:23:a9:32:59:6b:a5:56:62:a9:20:
4d:51:9c:1e:93:6b:9e:4d:f7:83:e8:12:b9:01:1b:9f:9e:88:
f2:25:81:4a:b2:cb:0a:a7:ef:e4:74:6f:98:c2:8f:c8:b9:ed:
3f:07:3d:76:31:8b:b7:91:29:0f:fb:54:1f:88:95:4a:d0:b3:
1c:5f:02:5b:35:d5:c2:1d:f9:75:eb:30:3b:b9:41:f5:50:a9:
a8:c7:26:87:54:52:c9:68:0b:24:07:b6:67:46:f9:67:fc:b8:
b8:c6:ae:ec:15:a4:5e:d0:03:4a:55:2d:c1:cb:f7:0b:de:1b:
b6:41:d7:af:e4:ba:9f:ed:e9:c0:95:53:bc:c5:54:77:d4:5d:
90:fe:66:d8:17:e3:ac:a9:e2:84:15:93:53:f6:dc:c0:b2:92:
c1:0e:a1:00:8b:48:d8:2c:ba:7f:09:6f:86:71:6e:67:65:f7:
9c:e2:65:52:ac:42:9b:c3:88:07:d4:62:e0:5f:8b:c5:0c:91:
b7:3c:42:d7:44:97:26:4b:0f:4a:24:e2:65:36:75:8e:7d:c8:
2b:e4:ac:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 07:33:48 2025 by rpki-client