Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/1b35c5-7ac6-4253-86ea-7744ef3c0b99/1/jET5HRPEZBx8Lsm1BISXJYCG4ts.roa
File: jET5HRPEZBx8Lsm1BISXJYCG4ts.roa (raw, json)
Hash identifier: diwC6qZHJVlljPptvtTF4vcqDmevRHznAysQhJzp0lk=
Subject key identifier: 8C:44:F9:1D:13:C4:64:1C:7C:2E:C9:B5:04:84:97:25:80:86:E2:DB
Certificate issuer: /CN=7e4b54dfd41610774fe7f242d7dd3873a658473b
Certificate serial: 018572D5D5F9181EE00D57A887E0A839CC44
Authority key identifier: 7E:4B:54:DF:D4:16:10:77:4F:E7:F2:42:D7:DD:38:73:A6:58:47:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fktU39QWEHdP5_JC1904c6ZYRzs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/1b35c5-7ac6-4253-86ea-7744ef3c0b99/1/jET5HRPEZBx8Lsm1BISXJYCG4ts.roa
Signing time: Mon 02 Jan 2023 14:14:54 +0000
ROA not before: Mon 02 Jan 2023 14:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51561
IP address blocks: 185.207.140.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:d5:d5:f9:18:1e:e0:0d:57:a8:87:e0:a8:39:cc:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e4b54dfd41610774fe7f242d7dd3873a658473b
Validity
Not Before: Jan 2 14:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c44f91d13c4641c7c2ec9b5048497258086e2db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a9:db:90:5d:7e:97:88:1c:ec:0e:1c:54:6e:
99:ad:13:0a:d9:86:78:e7:cd:a4:65:83:4b:22:c8:
74:d6:db:1f:8a:bb:c1:fc:21:aa:b9:d7:bb:de:08:
01:50:a3:04:4d:bb:ce:cc:3f:54:8f:c2:1a:3c:9a:
af:4e:ba:f1:43:86:4b:13:56:99:98:bd:4c:d2:a1:
a3:a3:84:f8:9c:76:ea:9c:ae:84:80:c8:87:b1:a8:
aa:ab:4d:48:c8:34:8c:b9:83:59:d8:30:13:6d:3f:
35:ff:42:0d:73:8b:4c:8a:9c:86:f6:8c:a6:c0:af:
b6:ce:8f:45:72:f8:e4:58:fb:1a:87:47:be:53:0b:
08:8b:ce:e8:90:13:21:99:71:e1:33:32:62:0a:d0:
47:d5:42:e3:29:00:76:f7:d0:20:9a:70:6c:2b:de:
f0:14:99:e1:38:64:5c:bc:b7:31:30:2c:97:70:65:
73:1c:1d:09:bc:4c:88:0a:02:08:43:74:3b:80:e6:
b6:83:a9:db:7d:fa:f1:cd:65:d2:c6:c0:be:7a:6c:
09:b3:72:67:fe:c5:44:52:ba:59:ba:78:0e:6f:a2:
34:00:3b:69:35:64:61:cb:35:16:33:cf:2b:84:ca:
87:b9:b6:d0:cd:63:ec:23:9f:2c:bd:56:fb:92:8e:
f5:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:44:F9:1D:13:C4:64:1C:7C:2E:C9:B5:04:84:97:25:80:86:E2:DB
X509v3 Authority Key Identifier:
keyid:7E:4B:54:DF:D4:16:10:77:4F:E7:F2:42:D7:DD:38:73:A6:58:47:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fktU39QWEHdP5_JC1904c6ZYRzs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/1b35c5-7ac6-4253-86ea-7744ef3c0b99/1/jET5HRPEZBx8Lsm1BISXJYCG4ts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/1b35c5-7ac6-4253-86ea-7744ef3c0b99/1/fktU39QWEHdP5_JC1904c6ZYRzs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.140.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:3a:11:8a:42:12:03:e9:e8:cc:d7:e1:d1:05:e6:25:4a:e3:
d2:08:84:06:d0:9c:6e:4a:37:eb:05:75:06:bc:16:fe:c9:5f:
c9:55:98:d7:c1:74:7e:6c:0f:6e:ba:63:d5:88:5c:02:e1:42:
59:57:bb:9d:cc:f7:75:10:c2:2d:a9:75:db:6c:f3:01:b0:cd:
2a:80:b1:11:f4:79:03:96:7d:6c:65:26:c1:ff:b6:e8:13:db:
0d:93:e3:28:9e:29:e3:7c:74:8a:f8:c3:ee:50:39:f2:ae:76:
8a:ad:ec:ec:e5:ab:3f:c5:7e:02:79:fd:d5:67:6e:63:b4:6b:
54:6f:b7:dd:6c:99:f1:66:ea:68:c8:8f:b5:39:68:51:44:98:
0b:47:fe:09:80:5a:56:27:8c:bb:fc:02:e1:00:6f:24:29:dc:
eb:c3:ec:ee:30:ce:e7:73:15:71:27:df:ce:7c:5a:cc:3c:22:
f8:4c:1e:12:1b:6f:98:44:66:f4:51:07:ee:14:bc:4e:f6:48:
ba:00:12:94:69:71:50:80:b6:b2:a6:09:6a:fd:a2:2a:8e:2c:
26:9f:a7:96:00:52:ce:fd:81:80:73:eb:20:c7:d1:b6:30:3c:
b7:72:fe:96:f4:3f:d2:33:7d:d2:56:be:c2:e5:d1:94:44:c3:
72:2d:69:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:36:44 2025 by rpki-client