Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/5289c4-02b5-465e-8cbd-773732652f4f/1/P7dmdhBM3ubB_R6cnu5WPdb3iHc.roa
File: P7dmdhBM3ubB_R6cnu5WPdb3iHc.roa (raw, json)
Hash identifier: 3szb7hCtxmCS0pdaaxP6OqLbmrQ4VsoVg3OHdvoRhNs=
Subject key identifier: 3F:B7:66:76:10:4C:DE:E6:C1:FD:1E:9C:9E:EE:56:3D:D6:F7:88:77
Certificate issuer: /CN=529fbab5171a5cb22f6c54f10b3a2cb6db51723e
Certificate serial: 01AF33BF
Authority key identifier: 52:9F:BA:B5:17:1A:5C:B2:2F:6C:54:F1:0B:3A:2C:B6:DB:51:72:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Up-6tRcaXLIvbFTxCzostttRcj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/5289c4-02b5-465e-8cbd-773732652f4f/1/P7dmdhBM3ubB_R6cnu5WPdb3iHc.roa
Signing time: Sat 01 Jan 2022 07:56:31 +0000
ROA not before: Sat 01 Jan 2022 07:56:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209072
IP address blocks: 5.183.140.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28259263 (0x1af33bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529fbab5171a5cb22f6c54f10b3a2cb6db51723e
Validity
Not Before: Jan 1 07:56:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3fb76676104cdee6c1fd1e9c9eee563dd6f78877
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:3e:cc:41:2b:bf:33:8e:3a:c3:3c:3e:59:09:
93:58:2d:f5:fe:0e:a0:8b:22:4f:6c:74:1a:e8:e6:
61:a7:48:69:1a:71:ce:66:2f:14:b1:0e:5c:dc:61:
fc:68:0f:d9:b7:9f:29:e5:86:fb:a7:4e:ca:04:a7:
01:bc:33:fb:ec:ad:87:2c:bb:3e:b5:09:de:74:29:
07:ac:e5:7b:b4:31:e6:2f:da:24:39:da:a2:2b:8a:
b9:a5:10:83:5b:ce:7b:da:18:98:84:02:dc:53:07:
70:44:2d:1e:c6:bb:f4:15:80:b0:54:54:35:83:e8:
97:87:46:88:c6:2a:1d:49:a0:be:84:18:0e:bb:6c:
9c:03:4d:30:5d:a7:09:3b:2b:f1:49:f7:c1:5d:3d:
00:ec:c0:45:42:61:ec:2b:ef:1e:99:e3:ac:04:f9:
91:9a:bb:4c:02:e5:44:c6:d8:77:6e:48:a7:22:5d:
6a:e2:43:85:ea:ce:8e:ad:ce:72:70:fe:92:e8:65:
a2:d1:28:f0:32:41:b7:1d:cc:3e:bf:5a:70:49:56:
af:37:46:26:d8:2e:15:46:96:89:e9:16:80:65:f4:
e2:da:4d:cb:35:d4:15:54:79:fd:92:47:3d:fc:e3:
0b:19:68:a9:69:2f:50:5f:ad:bb:76:d7:01:0b:4b:
91:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:B7:66:76:10:4C:DE:E6:C1:FD:1E:9C:9E:EE:56:3D:D6:F7:88:77
X509v3 Authority Key Identifier:
keyid:52:9F:BA:B5:17:1A:5C:B2:2F:6C:54:F1:0B:3A:2C:B6:DB:51:72:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Up-6tRcaXLIvbFTxCzostttRcj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/5289c4-02b5-465e-8cbd-773732652f4f/1/P7dmdhBM3ubB_R6cnu5WPdb3iHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/5289c4-02b5-465e-8cbd-773732652f4f/1/Up-6tRcaXLIvbFTxCzostttRcj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.140.0/22
Signature Algorithm: sha256WithRSAEncryption
a8:df:c5:8c:23:35:0f:6f:8e:7d:dc:03:3d:6b:5d:6a:29:c2:
2e:6f:a4:02:e5:0a:c8:05:08:3b:a2:18:92:da:b0:41:94:f5:
ed:27:68:e2:5f:d7:5f:c6:51:72:0c:d5:6c:2d:72:e0:07:15:
62:21:8b:cb:d4:62:c3:d0:99:be:9a:56:bd:c0:10:a4:7d:ca:
80:c4:5e:16:21:3e:00:cb:a9:57:a5:94:3c:27:e9:b2:17:86:
14:78:6d:d3:56:56:6b:52:2d:f3:77:3c:e3:6a:11:03:45:96:
7c:1a:f4:ba:d6:74:94:cb:1c:23:0c:4f:b8:a2:b1:32:44:94:
aa:59:80:03:7f:67:95:cf:f3:b9:f6:81:33:6b:55:d4:e5:1f:
d6:b8:b7:32:e4:f1:bd:e8:eb:0d:07:f1:c6:7a:a5:96:9a:61:
b8:38:a7:c1:c6:9f:60:f8:1e:29:cc:b8:a4:f4:11:23:cb:0b:
72:13:d5:03:7a:f9:64:03:86:ab:3d:3c:e3:e0:f4:60:e1:e4:
d8:51:e0:d4:b2:bc:48:11:c2:31:63:b4:69:c2:52:20:77:f5:
3b:e2:6e:16:cc:57:df:fd:ec:f4:2f:00:00:35:41:a4:3a:11:
44:c5:d6:df:82:3e:aa:18:4e:f8:04:67:c1:79:3a:36:22:9c:
3f:1b:3c:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 15:12:01 2025 by rpki-client