Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/925ab9-21fe-4bbf-ac0e-6e7561535bbd/1/8UtZpOcNVttVv8Ub2lNwDAPEA58.roa
File: 8UtZpOcNVttVv8Ub2lNwDAPEA58.roa (raw, json)
Hash identifier: +CABDz5dC9MJdMc3us7iNIJaKBDA+8w2oMaRvIhZI2I=
Subject key identifier: F1:4B:59:A4:E7:0D:56:DB:55:BF:C5:1B:DA:53:70:0C:03:C4:03:9F
Certificate issuer: /CN=cfdb3d904b34440546b6241d7894d93300bcbd28
Certificate serial: 067F41
Authority key identifier: CF:DB:3D:90:4B:34:44:05:46:B6:24:1D:78:94:D9:33:00:BC:BD:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z9s9kEs0RAVGtiQdeJTZMwC8vSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/925ab9-21fe-4bbf-ac0e-6e7561535bbd/1/8UtZpOcNVttVv8Ub2lNwDAPEA58.roa
Signing time: Mon 23 May 2022 18:26:29 +0000
ROA not before: Mon 23 May 2022 18:26:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202789
IP address blocks: 185.154.112.0/22 maxlen: 24
2a07:8c80::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 425793 (0x67f41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfdb3d904b34440546b6241d7894d93300bcbd28
Validity
Not Before: May 23 18:26:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f14b59a4e70d56db55bfc51bda53700c03c4039f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:c3:e4:44:1e:fe:c2:8b:83:2b:c4:1d:13:c9:
17:d7:99:7e:cd:b6:78:30:85:c2:ee:5a:75:1a:b6:
c3:77:9c:24:c2:e5:61:14:20:85:c6:09:09:23:57:
a9:16:d0:8c:20:32:1a:97:2f:b8:f5:0e:13:f4:2e:
c2:27:4a:35:43:32:80:7a:ef:43:ab:1a:dd:40:2d:
15:7c:ca:58:4d:82:b9:56:78:45:f5:b1:e7:81:4c:
fa:2f:a7:fe:9c:78:f9:e4:b2:d3:f9:4d:03:59:40:
28:11:17:77:07:09:42:29:ce:e6:a7:80:e5:03:ab:
71:e2:70:a5:14:98:89:3e:bc:26:9a:cd:40:c7:b5:
07:99:6b:65:c4:d0:73:48:f0:a0:92:e2:1a:f6:24:
2b:61:dc:ca:d5:06:9b:c5:97:80:ce:94:9f:45:73:
95:80:48:6a:8c:a6:99:28:61:b8:7d:5d:cf:1a:18:
4b:e3:bb:49:c5:34:70:78:4b:2d:c6:c9:05:3b:16:
5c:a6:29:f6:39:28:70:e9:da:fa:b1:fd:96:9f:28:
c0:ae:f8:26:a9:19:91:73:7d:51:7d:7f:e3:01:cc:
f7:d7:91:ef:83:4d:9d:c2:17:1c:dc:1d:2e:18:15:
d1:d2:d1:98:39:46:db:a5:6f:8d:12:07:06:52:7e:
da:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:4B:59:A4:E7:0D:56:DB:55:BF:C5:1B:DA:53:70:0C:03:C4:03:9F
X509v3 Authority Key Identifier:
keyid:CF:DB:3D:90:4B:34:44:05:46:B6:24:1D:78:94:D9:33:00:BC:BD:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z9s9kEs0RAVGtiQdeJTZMwC8vSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/925ab9-21fe-4bbf-ac0e-6e7561535bbd/1/8UtZpOcNVttVv8Ub2lNwDAPEA58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/925ab9-21fe-4bbf-ac0e-6e7561535bbd/1/z9s9kEs0RAVGtiQdeJTZMwC8vSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.154.112.0/22
IPv6:
2a07:8c80::/29
Signature Algorithm: sha256WithRSAEncryption
72:ee:ae:19:6a:8e:5f:e0:3b:42:4e:d7:f6:eb:73:b2:69:67:
5e:41:53:1f:cb:5f:a6:04:74:49:4c:dc:7e:a2:f9:c8:1d:b8:
5d:45:a6:f4:a1:a2:aa:e6:66:58:45:15:c1:21:42:54:9f:88:
b6:5b:d9:ee:a3:30:9c:c3:f1:28:b2:69:15:3e:94:19:af:6a:
36:45:0d:a8:8d:1e:1b:91:f9:80:1c:76:89:2c:91:d6:94:4d:
d6:d5:f9:da:da:9a:99:fb:ca:91:6e:a6:76:19:b9:3d:64:a1:
02:06:68:2e:de:46:82:ba:84:b8:87:de:0f:60:c8:83:69:8e:
ac:6d:f6:0d:1b:ff:8a:e9:b9:55:4d:13:22:be:93:f3:46:b4:
dc:7b:77:0a:3d:e2:36:64:42:3f:a2:9d:69:58:60:cb:b1:13:
95:ad:b1:a9:cc:0e:ea:22:d0:9d:86:60:19:9a:d6:47:1b:00:
80:13:96:8d:62:99:4d:0f:63:b9:49:ba:42:ff:c7:da:42:66:
33:f5:66:86:fb:36:ac:42:3d:4e:29:0e:b2:a0:3b:c7:0a:69:
6c:95:c4:f0:2b:b5:d4:f1:45:12:fd:38:d3:7a:15:35:f8:ac:
c7:60:7d:a4:31:c1:df:07:b7:c2:30:0c:7a:b3:73:23:de:f2:
83:bd:9a:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:12:28 2025 by rpki-client