Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/a8007b-08ce-4af4-a383-c4a52dcee23d/1/l4LZE0vLmtRAMZre7kFvDNW1IhY.roa
File: l4LZE0vLmtRAMZre7kFvDNW1IhY.roa (raw, json)
Hash identifier: GantTRHkVL3hajepMtxpxHjDIN8v7PPS1UTX2vmbTzc=
Subject key identifier: 97:82:D9:13:4B:CB:9A:D4:40:31:9A:DE:EE:41:6F:0C:D5:B5:22:16
Certificate issuer: /CN=df798581e73704ee38c9be15e72370f176c60311
Certificate serial: 30063A
Authority key identifier: DF:79:85:81:E7:37:04:EE:38:C9:BE:15:E7:23:70:F1:76:C6:03:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/33mFgec3BO44yb4V5yNw8XbGAxE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/a8007b-08ce-4af4-a383-c4a52dcee23d/1/l4LZE0vLmtRAMZre7kFvDNW1IhY.roa
Signing time: Wed 25 May 2022 05:41:13 +0000
ROA not before: Wed 25 May 2022 05:41:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24631
IP address blocks: 185.128.83.0/24 maxlen: 24
185.128.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3147322 (0x30063a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df798581e73704ee38c9be15e72370f176c60311
Validity
Not Before: May 25 05:41:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9782d9134bcb9ad440319adeee416f0cd5b52216
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e4:b2:3b:e3:d3:ca:52:9d:fb:4b:88:f2:bc:
6e:4d:24:ed:04:40:a0:db:71:f2:72:5e:e4:e0:7a:
cc:97:62:7a:4f:9a:04:97:3a:f6:8a:b8:c2:17:94:
4f:53:57:1e:cc:d5:91:22:32:cd:74:a2:6d:62:3f:
93:f7:c3:ef:cc:17:e5:43:9c:29:b0:09:dd:8f:ad:
ba:80:0e:39:a3:ba:91:23:30:5c:1c:50:05:af:ac:
de:4b:68:b0:b7:23:c7:69:77:b9:f0:a4:db:20:a5:
f9:af:c8:2d:8d:1c:14:75:b9:e6:38:ef:5b:f4:78:
a0:9e:49:31:40:78:23:2e:3e:e2:80:0e:8d:cc:74:
da:d6:62:24:cb:26:02:94:a9:e5:ef:20:2f:49:89:
04:5a:8a:7f:42:f7:d1:73:ea:0c:5f:7f:28:11:5d:
d3:5b:c2:a3:60:3b:fe:d7:73:36:0c:09:db:66:bc:
db:87:e9:1d:4a:99:3b:1d:b3:0b:b4:8d:73:f6:da:
a5:a2:b5:96:c8:88:23:3a:a9:30:93:6a:77:24:67:
4d:ab:e2:48:84:55:64:7b:f1:06:a8:02:54:05:87:
52:61:80:ef:56:a5:7c:a7:3a:b5:83:9d:1d:7c:bf:
75:ad:67:2a:3b:06:70:b9:34:52:6a:30:08:5d:83:
fe:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:82:D9:13:4B:CB:9A:D4:40:31:9A:DE:EE:41:6F:0C:D5:B5:22:16
X509v3 Authority Key Identifier:
keyid:DF:79:85:81:E7:37:04:EE:38:C9:BE:15:E7:23:70:F1:76:C6:03:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/33mFgec3BO44yb4V5yNw8XbGAxE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/a8007b-08ce-4af4-a383-c4a52dcee23d/1/l4LZE0vLmtRAMZre7kFvDNW1IhY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/a8007b-08ce-4af4-a383-c4a52dcee23d/1/33mFgec3BO44yb4V5yNw8XbGAxE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.81.0/24
185.128.83.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:3a:64:90:9f:cd:a2:76:71:4e:ab:eb:63:98:6f:fa:5b:c6:
12:50:40:98:85:96:c6:b2:1f:7d:b2:fb:a1:3d:a9:28:58:33:
fd:35:fa:14:85:65:c8:bd:e6:dc:f0:b6:ab:1a:f1:9b:4a:7d:
fc:56:c9:40:34:2d:62:b6:b8:49:69:bc:dc:c8:2e:a4:bf:dd:
bf:e0:0e:7a:15:67:c7:41:20:bd:32:a8:d2:1b:af:73:35:3f:
d2:e9:af:dd:b9:48:68:8d:95:c5:39:e1:0c:3b:32:27:2f:91:
58:b3:55:9d:fc:3c:1f:b0:ab:00:3f:ee:a1:2a:39:e4:ee:d6:
1d:30:30:6f:2d:28:0b:cb:31:ce:e0:e2:9f:44:42:60:96:0c:
8c:07:bf:6e:ca:e3:77:f3:84:40:4e:cb:4a:e6:1d:e8:15:c1:
ff:0c:cc:09:f3:5a:0e:9b:e5:f4:29:15:46:e3:a3:89:c2:b1:
cc:75:58:0e:5d:97:7b:5a:31:92:85:7c:db:d5:8b:3a:2a:d1:
a7:77:35:dd:88:29:e8:f1:df:97:a4:23:5a:c8:fa:b3:12:fa:
a4:45:6f:8f:07:3a:2f:8b:89:24:28:47:37:ea:3e:dd:83:5b:
f6:cd:f6:7f:9a:89:ee:c0:84:d2:e7:33:b0:18:60:59:ae:f7:
84:f0:05:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 10:01:11 2025 by rpki-client