Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/e02b47-f2e0-4402-814f-e4016ad53cc9/1/5thgLFeVrqTUf1BZi0BOZ_-Vz78.roa
File: 5thgLFeVrqTUf1BZi0BOZ_-Vz78.roa (raw, json)
Hash identifier: wZaPlyLFrjRP63eYkOYR48lgzujLvRAkNGWlMvcDrGQ=
Subject key identifier: E6:D8:60:2C:57:95:AE:A4:D4:7F:50:59:8B:40:4E:67:FF:95:CF:BF
Certificate issuer: /CN=cb1bd62beecab0e903b29811241db244bbf52c39
Certificate serial: 01856CAF05EAECCA7ECB08B11C54403177B2
Authority key identifier: CB:1B:D6:2B:EE:CA:B0:E9:03:B2:98:11:24:1D:B2:44:BB:F5:2C:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yxvWK-7KsOkDspgRJB2yRLv1LDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/e02b47-f2e0-4402-814f-e4016ad53cc9/1/5thgLFeVrqTUf1BZi0BOZ_-Vz78.roa
Signing time: Sun 01 Jan 2023 09:34:47 +0000
ROA not before: Sun 01 Jan 2023 09:34:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212851
IP address blocks: 185.214.65.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:05:ea:ec:ca:7e:cb:08:b1:1c:54:40:31:77:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb1bd62beecab0e903b29811241db244bbf52c39
Validity
Not Before: Jan 1 09:34:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e6d8602c5795aea4d47f50598b404e67ff95cfbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:10:8b:bc:24:2f:15:1d:e0:8c:29:8a:f7:b3:
32:51:f0:0c:da:11:53:3e:08:51:01:11:7c:09:c9:
89:55:1f:2f:6a:ee:9f:3d:54:83:3d:22:b0:2c:0b:
68:78:b5:d5:4a:ce:99:70:ef:27:58:25:9a:ce:64:
8b:05:b3:f9:5d:a7:0e:24:0a:62:cc:40:97:89:44:
dd:51:38:4b:93:dd:ec:77:24:cd:79:87:7c:49:89:
c5:41:d9:5b:21:50:e5:62:b4:a2:ae:3a:08:86:b3:
80:b7:d3:04:b6:6f:7e:b4:70:56:c9:ee:67:2f:05:
04:8f:16:52:da:17:52:d4:ce:9c:58:f3:c4:29:2d:
dc:62:52:99:0f:3c:05:5b:a1:16:a4:cd:ff:78:44:
d8:37:3f:d2:8a:27:b9:c8:11:7a:35:1f:a0:82:4e:
7f:9d:d1:fa:86:be:eb:92:b7:d7:85:5d:ee:16:0f:
12:c3:87:56:dd:a1:32:70:a2:a6:64:45:f4:87:18:
5c:97:e9:4e:6e:60:3d:17:b1:c4:9b:e4:b9:a1:2d:
eb:a1:f7:b6:e0:9b:b6:87:af:8a:83:36:87:dd:a3:
0f:7f:08:8b:04:88:42:e7:35:12:78:83:71:ea:7c:
23:6e:d9:56:a1:8e:b5:35:b7:1f:0e:2f:97:81:d5:
fe:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:D8:60:2C:57:95:AE:A4:D4:7F:50:59:8B:40:4E:67:FF:95:CF:BF
X509v3 Authority Key Identifier:
keyid:CB:1B:D6:2B:EE:CA:B0:E9:03:B2:98:11:24:1D:B2:44:BB:F5:2C:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yxvWK-7KsOkDspgRJB2yRLv1LDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/e02b47-f2e0-4402-814f-e4016ad53cc9/1/5thgLFeVrqTUf1BZi0BOZ_-Vz78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/e02b47-f2e0-4402-814f-e4016ad53cc9/1/yxvWK-7KsOkDspgRJB2yRLv1LDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.65.0/24
Signature Algorithm: sha256WithRSAEncryption
44:f0:90:1e:56:0a:35:5f:15:99:b3:d7:0d:39:40:0f:9b:22:
9c:fb:5d:21:5c:19:6b:98:34:c7:11:ee:f6:07:65:90:22:4d:
32:4a:70:28:28:61:8b:48:c6:60:3f:3a:75:f7:b7:20:35:6c:
b1:e4:d4:af:08:cc:ce:d3:c4:f1:29:fb:e5:b0:02:e1:db:33:
74:91:cd:e4:c8:d7:13:af:f3:4c:87:8e:44:64:e7:5c:bf:87:
b7:38:75:71:3e:08:be:4b:3f:c9:13:f4:0f:1f:79:bb:41:2b:
80:9e:3d:b1:df:e1:1c:98:22:60:9c:97:ce:f6:6d:21:d3:5d:
07:73:cb:cc:e1:87:2d:6d:e4:bc:58:bd:01:5e:60:1d:be:55:
91:b5:df:63:69:25:97:b5:77:43:15:58:64:45:6f:8c:17:0c:
db:f1:8c:f7:c3:b3:99:d0:b9:fc:df:49:50:f4:66:cc:45:fd:
7b:23:95:a1:fd:e5:fb:ad:fc:d6:a9:41:90:66:5c:fd:d9:1b:
8e:44:f0:a9:de:48:0c:fe:23:5b:0e:a5:e7:d9:7d:bc:ce:c7:
ce:69:2a:62:14:2b:a1:b5:e4:50:d1:00:a6:cd:24:d5:91:84:
5a:11:ee:41:13:97:69:9e:c6:1d:5f:c2:66:f0:16:eb:26:a0:
85:49:ae:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:47:14 2025 by rpki-client