Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/45340c-540c-4faf-8a9f-05ce48d5f2d8/1/2TX2a0CFRRDUt_U_jAvpwAG7a6Q.roa
File: 2TX2a0CFRRDUt_U_jAvpwAG7a6Q.roa (raw, json)
Hash identifier: Go0D9G/70kLg7fuBAeyBJWG/aj7IA2UdQyuZfe++jSI=
Subject key identifier: D9:35:F6:6B:40:85:45:10:D4:B7:F5:3F:8C:0B:E9:C0:01:BB:6B:A4
Certificate issuer: /CN=a15a105f5ba627e5be6f1ff91f2597278209931f
Certificate serial: 04E610DB
Authority key identifier: A1:5A:10:5F:5B:A6:27:E5:BE:6F:1F:F9:1F:25:97:27:82:09:93:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oVoQX1umJ-W-bx_5HyWXJ4IJkx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/45340c-540c-4faf-8a9f-05ce48d5f2d8/1/2TX2a0CFRRDUt_U_jAvpwAG7a6Q.roa
Signing time: Sat 01 Jan 2022 03:55:54 +0000
ROA not before: Sat 01 Jan 2022 03:55:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201738
IP address blocks: 185.65.116.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82186459 (0x4e610db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a15a105f5ba627e5be6f1ff91f2597278209931f
Validity
Not Before: Jan 1 03:55:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d935f66b40854510d4b7f53f8c0be9c001bb6ba4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:32:71:c0:9d:64:67:c6:e2:41:27:47:02:0a:
5e:20:b9:c2:0b:db:68:61:44:7a:eb:1b:37:59:78:
05:ed:07:2b:fe:4b:77:b6:c3:9e:7a:67:da:69:2f:
b1:2a:30:80:46:34:66:47:bb:aa:38:65:44:d5:1c:
2e:fb:c4:e5:33:18:40:e0:d6:da:37:88:c6:25:07:
38:5a:5a:37:0e:c0:ad:8f:82:31:fb:17:04:bc:56:
3d:00:bf:b3:31:1a:38:14:fa:48:6b:78:03:2d:38:
d7:31:ee:45:b7:0a:4d:fd:83:db:5e:44:97:a4:b5:
13:aa:e8:21:bc:79:fb:2e:66:6f:52:9b:62:4a:01:
ab:22:7f:56:ec:ac:bd:5d:c6:7a:48:47:e0:2e:70:
84:65:1b:69:cd:0b:6d:37:c0:01:62:f1:7f:49:6d:
9c:2e:aa:cf:fe:69:51:56:63:2b:aa:e7:42:19:4c:
cb:63:3b:98:00:b4:c4:6d:e2:17:e4:e2:4a:df:31:
26:b7:15:9f:83:49:f3:14:de:48:b5:30:ae:22:14:
f0:4e:8f:e5:0a:44:5d:3e:8b:01:41:7d:cf:8c:86:
7f:87:94:2d:d9:b6:b4:38:3e:53:51:25:cc:29:0c:
23:a2:92:9d:28:b8:31:51:83:ef:47:17:fd:98:49:
dc:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:35:F6:6B:40:85:45:10:D4:B7:F5:3F:8C:0B:E9:C0:01:BB:6B:A4
X509v3 Authority Key Identifier:
keyid:A1:5A:10:5F:5B:A6:27:E5:BE:6F:1F:F9:1F:25:97:27:82:09:93:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oVoQX1umJ-W-bx_5HyWXJ4IJkx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/45340c-540c-4faf-8a9f-05ce48d5f2d8/1/2TX2a0CFRRDUt_U_jAvpwAG7a6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/45340c-540c-4faf-8a9f-05ce48d5f2d8/1/oVoQX1umJ-W-bx_5HyWXJ4IJkx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.116.0/22
Signature Algorithm: sha256WithRSAEncryption
59:3c:78:cd:34:c1:e3:3a:3a:9f:6d:0d:47:91:e6:7b:96:c8:
98:f5:06:55:fc:25:8a:87:e7:44:bf:a2:31:71:2b:4e:e7:6a:
54:fb:45:6a:d9:09:af:25:72:1e:ef:59:b2:ae:93:82:9f:1a:
13:17:e2:9c:7b:70:81:a0:44:9f:62:8b:73:89:84:47:31:4b:
ac:93:c1:3d:95:91:ac:d6:cc:ca:1c:b0:77:9b:98:fb:ec:70:
29:17:40:bc:52:25:9a:4f:97:2d:bf:cf:3e:95:cf:a3:b8:41:
64:6f:99:02:9d:04:23:fe:91:e9:9d:2b:ef:17:dc:67:3a:ac:
0c:8d:af:5d:85:84:e4:c4:d3:6e:e0:c9:59:be:e3:cd:4f:88:
a2:0e:a2:b5:9e:20:3b:5a:c9:ca:12:c0:9f:08:3d:63:c6:95:
9d:11:6e:81:e1:d0:b9:ba:7c:7d:be:1a:d0:51:00:37:25:b7:
0b:b6:aa:74:15:96:62:1d:4a:c0:0d:73:b5:12:e3:c5:e5:0d:
aa:bd:e5:ad:4d:bc:3a:94:89:cb:cb:54:c6:88:c0:57:4d:c6:
46:c2:34:fb:66:22:65:79:6f:40:95:7d:54:f4:32:d4:7d:8d:
1d:31:0e:83:3f:ce:8c:6c:58:27:39:80:c2:73:a7:30:69:ee:
f4:d2:6f:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:29:24 2025 by rpki-client