Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/5209b6-d64c-4360-8c2b-6f70d53cbef6/1/SuWFJNSUqr961SntIyl9UhonIqE.roa
File: SuWFJNSUqr961SntIyl9UhonIqE.roa (raw, json)
Hash identifier: G19eKnfZRMz3YtZiWLoDMt6Xj7BZxW+gUkUpOQEVCjk=
Subject key identifier: 4A:E5:85:24:D4:94:AA:BF:7A:D5:29:ED:23:29:7D:52:1A:27:22:A1
Certificate issuer: /CN=82a4161acabf66d425ed878c5da96a7d5cb3ffe4
Certificate serial: 0C32C947
Authority key identifier: 82:A4:16:1A:CA:BF:66:D4:25:ED:87:8C:5D:A9:6A:7D:5C:B3:FF:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gqQWGsq_ZtQl7YeMXalqfVyz_-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/5209b6-d64c-4360-8c2b-6f70d53cbef6/1/SuWFJNSUqr961SntIyl9UhonIqE.roa
Signing time: Sat 01 Jan 2022 11:01:00 +0000
ROA not before: Sat 01 Jan 2022 11:01:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59959
IP address blocks: 185.243.124.0/22 maxlen: 22
2a0d:1380::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 204654919 (0xc32c947)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82a4161acabf66d425ed878c5da96a7d5cb3ffe4
Validity
Not Before: Jan 1 11:01:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ae58524d494aabf7ad529ed23297d521a2722a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f2:dc:e0:64:d6:65:33:30:81:61:e0:4a:46:
f4:7c:66:40:23:15:66:25:15:27:da:42:13:a8:97:
8a:f4:eb:da:4b:5d:0e:ed:1a:d9:15:0c:40:fa:d1:
88:85:46:ac:67:60:03:20:5f:4b:4b:44:54:95:06:
3b:26:04:ca:8b:33:5b:23:38:00:9b:1a:ac:ce:71:
ae:06:23:bf:ed:fa:b7:18:22:0c:2b:c4:0e:42:4e:
92:46:86:b8:f8:b9:28:7e:da:56:6d:68:c8:d3:34:
01:0b:fd:58:7c:7f:fb:e2:99:c7:e0:8a:62:b7:1a:
5d:66:df:ff:fc:9e:2b:47:b1:d5:04:a3:0e:c0:08:
cf:f4:f4:1f:72:1d:27:28:f6:ee:18:4d:ee:44:99:
ac:23:d5:3d:2c:b4:7f:7b:cc:7d:2c:dc:ce:d6:82:
33:0b:f0:0b:22:b4:65:3b:25:16:90:58:22:b5:b9:
fe:9a:18:ca:10:58:36:cd:81:e8:a0:a3:45:8a:5b:
89:22:65:a9:f3:79:7d:8e:90:e1:51:ec:2e:f0:d9:
c4:a3:f7:b6:b5:ef:d1:4a:fa:19:27:0c:6b:7e:9a:
73:c8:91:f7:b6:23:d8:d4:3e:f2:78:72:9a:de:95:
66:ed:c7:de:5a:35:81:e4:ff:27:dd:99:91:57:be:
b0:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:E5:85:24:D4:94:AA:BF:7A:D5:29:ED:23:29:7D:52:1A:27:22:A1
X509v3 Authority Key Identifier:
keyid:82:A4:16:1A:CA:BF:66:D4:25:ED:87:8C:5D:A9:6A:7D:5C:B3:FF:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gqQWGsq_ZtQl7YeMXalqfVyz_-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/5209b6-d64c-4360-8c2b-6f70d53cbef6/1/SuWFJNSUqr961SntIyl9UhonIqE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/5209b6-d64c-4360-8c2b-6f70d53cbef6/1/gqQWGsq_ZtQl7YeMXalqfVyz_-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.124.0/22
IPv6:
2a0d:1380::/29
Signature Algorithm: sha256WithRSAEncryption
31:b6:91:0e:d5:af:3e:1e:09:32:12:e6:12:c9:d1:a7:5a:5a:
70:bd:7d:1f:2a:fc:37:55:1e:41:d3:23:1d:6f:84:09:a6:55:
d3:94:90:e7:01:14:e0:4d:a2:14:d0:42:dd:8c:b3:d2:e0:e0:
d7:4d:00:16:98:63:5a:1f:1e:79:c9:22:27:fc:d3:69:42:fc:
2e:25:24:ee:49:c5:57:b3:d8:e0:f2:47:9f:50:57:8b:07:d3:
aa:4d:b3:d2:3e:74:3f:a4:6d:81:3f:fb:da:d2:fa:9a:e8:88:
bc:cf:94:06:0e:6d:ce:21:e2:52:ae:1f:64:ce:82:dc:5d:79:
93:6e:40:97:8a:08:eb:d7:e2:e8:86:dc:23:78:39:86:de:a9:
ab:4c:3c:3e:69:35:ef:fe:42:1a:e8:9a:9c:88:6b:aa:7e:b0:
b2:8e:fd:70:f0:95:11:ea:1c:9a:5c:2d:e5:0d:dd:c9:c8:49:
0e:21:ee:69:53:19:8f:17:80:16:4f:be:48:88:06:a4:2f:46:
84:3d:d3:5c:03:65:4d:93:c4:81:9e:8b:76:2c:88:b6:bf:d6:
fd:35:e6:2a:e9:af:7e:15:86:8c:20:9f:5d:9a:c1:8c:5d:cf:
f6:34:92:74:04:2c:6f:43:c7:0a:ca:62:7c:68:e5:73:2a:c7:
e6:97:46:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:34:39 2025 by rpki-client