Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/3544a7-d556-4701-957a-428be9008fba/1/Z5yMpaob19_GoTjjbNGhhR8nXy8.roa
File: Z5yMpaob19_GoTjjbNGhhR8nXy8.roa (raw, json)
Hash identifier: hsXmGG6ydSBafBAq0fsQyD4VuTYlPqNf/Lc/7tO4QH8=
Subject key identifier: 67:9C:8C:A5:AA:1B:D7:DF:C6:A1:38:E3:6C:D1:A1:85:1F:27:5F:2F
Certificate issuer: /CN=dc6917645d9d220435f91c7e46c8110cf89acbe4
Certificate serial: FED7
Authority key identifier: DC:69:17:64:5D:9D:22:04:35:F9:1C:7E:46:C8:11:0C:F8:9A:CB:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GkXZF2dIgQ1-Rx-RsgRDPiay-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/3544a7-d556-4701-957a-428be9008fba/1/Z5yMpaob19_GoTjjbNGhhR8nXy8.roa
Signing time: Mon 31 Jan 2022 17:24:06 +0000
ROA not before: Mon 31 Jan 2022 17:24:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204661
IP address blocks: 185.172.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65239 (0xfed7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc6917645d9d220435f91c7e46c8110cf89acbe4
Validity
Not Before: Jan 31 17:24:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=679c8ca5aa1bd7dfc6a138e36cd1a1851f275f2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:e3:b8:71:c1:84:7d:1f:e1:48:2d:9a:db:59:
3a:e7:70:39:e2:c9:29:bd:b6:9b:ec:63:f4:1b:53:
6a:8b:04:f9:c6:df:27:69:e2:6e:ed:d0:37:53:88:
5f:80:15:2e:11:0a:8f:f3:d0:00:d8:50:89:46:4d:
09:06:51:ea:91:e5:1e:0c:7e:bf:e0:ff:6c:0a:7d:
15:3c:c9:7f:47:08:23:7c:e9:08:5a:3a:47:92:2d:
20:75:d9:c8:64:72:2f:88:15:a8:46:59:50:2e:58:
61:c6:58:ec:25:70:34:9b:ad:80:f8:07:58:76:36:
c5:d0:e7:cd:fd:aa:f4:4e:36:2a:cc:dd:d6:a8:75:
ac:ec:96:2e:83:2a:b5:a2:c3:b6:41:ff:26:fe:28:
f0:98:61:4c:bc:c4:35:e1:f9:2a:8e:46:ad:22:84:
eb:f5:72:14:6a:25:60:6c:25:14:60:95:0a:15:9e:
64:17:28:17:70:e7:68:53:61:65:67:2d:05:c1:3e:
74:d9:90:15:49:bd:50:db:05:d2:6d:a5:db:55:60:
38:dc:84:cf:10:e3:49:a8:81:6f:cf:9d:46:21:ee:
2c:5c:5d:dd:53:f8:e6:ae:73:9f:a3:4f:97:12:34:
01:9a:40:ac:49:ec:a7:44:81:62:00:8a:47:9d:96:
83:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:9C:8C:A5:AA:1B:D7:DF:C6:A1:38:E3:6C:D1:A1:85:1F:27:5F:2F
X509v3 Authority Key Identifier:
keyid:DC:69:17:64:5D:9D:22:04:35:F9:1C:7E:46:C8:11:0C:F8:9A:CB:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GkXZF2dIgQ1-Rx-RsgRDPiay-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/3544a7-d556-4701-957a-428be9008fba/1/Z5yMpaob19_GoTjjbNGhhR8nXy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/3544a7-d556-4701-957a-428be9008fba/1/3GkXZF2dIgQ1-Rx-RsgRDPiay-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.224.0/24
Signature Algorithm: sha256WithRSAEncryption
41:70:0e:94:49:97:c6:bd:81:70:33:95:c9:1b:87:3d:35:5c:
75:64:b1:97:97:b6:1e:cc:ff:d6:a9:74:ef:4c:e0:8a:91:cc:
13:74:1f:c2:8d:09:ec:6a:2d:94:77:23:5f:03:ee:f7:a0:0e:
92:c2:71:a2:8f:14:f1:19:f4:9d:b1:a8:37:5e:0a:c6:37:05:
30:5d:05:2d:e6:e6:f7:6c:e9:62:73:a8:ef:47:2f:7c:cf:73:
2c:6a:08:dd:ca:91:5b:ba:86:bc:9d:3e:08:b9:3e:42:a0:d7:
3b:5a:d8:db:89:ae:52:47:4a:e6:6d:15:94:6c:14:26:7c:91:
15:ea:67:95:be:72:8e:ce:17:e5:fb:5c:d2:0a:58:0b:da:ed:
88:81:6e:ff:93:26:f1:f3:bc:5f:b8:c0:47:e2:43:13:22:53:
e5:22:ca:8f:0f:2b:3d:eb:b5:41:bd:b9:cd:66:aa:ce:35:d0:
42:15:21:1f:2a:07:48:3a:d9:ef:86:d3:9f:60:81:e4:04:6f:
3a:da:31:26:b4:46:9c:32:e6:81:b9:48:7b:a7:43:ec:b6:13:
a6:9f:7e:6a:ab:03:77:bc:1b:cf:be:48:05:88:0b:32:bd:a5:
60:c2:55:c1:d3:15:c7:d1:a2:4d:76:33:df:84:80:81:e9:a7:
f8:9d:a0:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 01:27:58 2025 by rpki-client