Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/00c3ab-4a7f-4f74-b556-a488bd42024f/1/Xjx5J9TVUIPTgUxq5_kr-PX45rQ.roa
File: Xjx5J9TVUIPTgUxq5_kr-PX45rQ.roa (raw, json)
Hash identifier: lpuria7+YCeRpkmy7Pl85gpANG9b+jiA+9qs84nYHWg=
Subject key identifier: 5E:3C:79:27:D4:D5:50:83:D3:81:4C:6A:E7:F9:2B:F8:F5:F8:E6:B4
Certificate issuer: /CN=9588d8b4c7aa45a9b2cd737c614871eb7181babe
Certificate serial: 04C2BC06
Authority key identifier: 95:88:D8:B4:C7:AA:45:A9:B2:CD:73:7C:61:48:71:EB:71:81:BA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYjYtMeqRamyzXN8YUhx63GBur4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/00c3ab-4a7f-4f74-b556-a488bd42024f/1/Xjx5J9TVUIPTgUxq5_kr-PX45rQ.roa
Signing time: Sat 01 Jan 2022 08:56:14 +0000
ROA not before: Sat 01 Jan 2022 08:56:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3177
IP address blocks: 185.187.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79870982 (0x4c2bc06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9588d8b4c7aa45a9b2cd737c614871eb7181babe
Validity
Not Before: Jan 1 08:56:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e3c7927d4d55083d3814c6ae7f92bf8f5f8e6b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:30:7e:cc:cc:77:93:dd:f9:0d:d3:3f:67:dc:
1e:2b:52:df:3e:84:72:e5:59:44:1e:a9:53:e7:d3:
50:b5:4a:a8:8d:4e:71:d4:03:7b:fe:72:a4:0a:7c:
90:ee:3d:71:2e:8b:4b:31:11:8f:9e:62:8e:74:3b:
95:2c:87:8a:26:a7:08:a9:57:dd:f3:c3:08:3a:5c:
26:7e:e5:eb:3f:81:47:88:d3:39:05:58:f1:52:27:
d8:b3:9d:aa:52:61:8f:6a:0b:c9:da:78:59:b5:af:
1e:07:6e:9b:d2:8e:06:30:cd:21:12:53:59:11:f2:
0f:09:91:df:22:23:2c:6f:3a:3b:e6:46:a0:8f:1e:
dd:62:ca:d2:e7:12:b1:35:9b:d0:9c:4b:81:76:bb:
eb:d6:f5:4c:6f:9b:65:ff:3e:45:87:15:c9:fa:b5:
a5:b4:01:95:2a:30:eb:28:53:8a:b6:46:12:87:a5:
82:9e:6c:ba:18:8e:95:7c:aa:83:10:d5:5d:b4:40:
dc:86:54:35:dd:fe:12:b0:ce:bb:ff:1f:ac:d4:75:
a9:b8:09:8b:54:25:85:57:84:e3:ba:73:da:78:e7:
2a:0d:85:32:11:42:77:39:35:59:e3:c5:39:c6:e6:
e2:ae:37:08:47:73:d1:9e:26:2d:45:78:28:23:78:
b8:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:3C:79:27:D4:D5:50:83:D3:81:4C:6A:E7:F9:2B:F8:F5:F8:E6:B4
X509v3 Authority Key Identifier:
keyid:95:88:D8:B4:C7:AA:45:A9:B2:CD:73:7C:61:48:71:EB:71:81:BA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYjYtMeqRamyzXN8YUhx63GBur4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/00c3ab-4a7f-4f74-b556-a488bd42024f/1/Xjx5J9TVUIPTgUxq5_kr-PX45rQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/00c3ab-4a7f-4f74-b556-a488bd42024f/1/lYjYtMeqRamyzXN8YUhx63GBur4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.51.0/24
Signature Algorithm: sha256WithRSAEncryption
be:c3:63:89:e7:c9:a0:88:12:4f:09:44:93:1d:48:48:1d:fa:
4d:91:e7:4b:ea:cb:1b:bf:fe:a2:3b:4f:10:e3:d8:b0:82:e4:
72:74:81:8a:c5:89:a3:ff:a7:a1:5b:ca:ac:8c:46:6e:6b:57:
e9:72:d6:24:83:f1:0b:d0:d3:18:89:87:ff:f1:f3:9b:f7:f0:
1d:cd:2a:55:62:dc:cc:82:8a:e6:8b:2d:ef:d3:9e:33:bf:31:
d6:e0:45:72:c6:67:00:44:91:c1:aa:15:f2:b9:ca:36:be:55:
82:30:31:d9:77:02:41:39:a5:37:a3:04:99:73:5a:d5:77:ee:
f9:6f:70:79:1c:2e:35:c4:16:f9:91:bd:95:09:6d:44:47:98:
ee:a0:d1:81:cf:38:0b:19:07:d0:a9:7c:8b:c6:5b:05:a0:42:
ed:dc:ca:8c:52:25:99:fd:ca:bd:79:b6:13:47:87:cc:fd:7e:
b1:1f:c4:1b:4a:bf:23:fe:c2:18:97:f4:38:30:1e:95:ac:40:
9d:ec:c4:ca:e9:3d:da:28:67:29:34:26:47:db:c5:57:ad:97:
a1:7c:7a:22:e6:82:7e:2f:49:2b:b1:c8:bf:1c:16:f4:59:a0:
27:07:8a:c8:be:2f:a1:58:32:ef:38:73:54:b0:0e:96:16:bf:
7f:34:45:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:27:13 2025 by rpki-client