Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/e552f4-96ca-4259-a82a-e35a67e5d9e2/1/PeyyWY7WLVRLzqCjRUnpUfCSW7M.roa
File: PeyyWY7WLVRLzqCjRUnpUfCSW7M.roa (raw, json)
Hash identifier: Q/YGrf/kWwZOknvz7RK+wJDH9ljzDs0BKVvCwG5t7qo=
Subject key identifier: 3D:EC:B2:59:8E:D6:2D:54:4B:CE:A0:A3:45:49:E9:51:F0:92:5B:B3
Certificate issuer: /CN=b28599292a6324297e02fff3c5119bee0b317548
Certificate serial: 1362B2A3
Authority key identifier: B2:85:99:29:2A:63:24:29:7E:02:FF:F3:C5:11:9B:EE:0B:31:75:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/soWZKSpjJCl-Av_zxRGb7gsxdUg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/e552f4-96ca-4259-a82a-e35a67e5d9e2/1/PeyyWY7WLVRLzqCjRUnpUfCSW7M.roa
Signing time: Sat 01 Jan 2022 08:01:00 +0000
ROA not before: Sat 01 Jan 2022 08:01:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203455
IP address blocks: 185.133.132.0/22 maxlen: 32
2a05:70c0::/29 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 325235363 (0x1362b2a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b28599292a6324297e02fff3c5119bee0b317548
Validity
Not Before: Jan 1 08:01:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3decb2598ed62d544bcea0a34549e951f0925bb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:fc:4b:bb:01:d4:95:9c:49:6a:8a:e5:08:60:
09:84:18:23:3b:be:d9:50:6d:1e:16:20:c9:c3:06:
d8:05:8e:f4:ab:66:b5:bb:62:a0:5f:07:26:29:19:
04:7f:18:32:89:84:8f:87:b3:59:50:f4:07:51:f3:
66:15:71:17:1b:4d:fa:76:98:ae:61:50:20:21:96:
48:05:d3:ab:55:bc:43:38:0c:a0:f0:90:60:56:96:
72:24:d2:07:4e:a3:6b:b6:ff:b4:fb:21:65:93:67:
0b:0b:c8:ef:23:e8:ae:27:73:17:66:88:3c:ad:3d:
94:d4:c6:8e:80:76:41:b8:14:8e:d5:8c:02:c2:e8:
59:19:1f:f5:83:fd:be:42:99:0d:f7:1b:61:73:ed:
b9:68:be:7d:e2:f0:1e:15:a9:d4:f4:fb:01:af:d1:
98:ae:38:8e:b8:1d:4c:af:ae:82:54:6c:2f:08:c9:
f5:f8:a0:53:f1:e9:92:71:80:bf:ef:45:eb:3a:f0:
64:d9:f0:42:26:bf:90:ff:aa:28:0b:08:b2:99:39:
a8:75:81:b6:f1:f9:b1:1e:69:7a:0b:bf:e6:f4:87:
2a:49:65:96:5a:e8:51:69:a0:0e:54:44:45:80:3f:
9c:94:d4:d1:73:0b:d8:81:36:3d:aa:14:8d:f6:90:
04:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:EC:B2:59:8E:D6:2D:54:4B:CE:A0:A3:45:49:E9:51:F0:92:5B:B3
X509v3 Authority Key Identifier:
keyid:B2:85:99:29:2A:63:24:29:7E:02:FF:F3:C5:11:9B:EE:0B:31:75:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/soWZKSpjJCl-Av_zxRGb7gsxdUg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/e552f4-96ca-4259-a82a-e35a67e5d9e2/1/PeyyWY7WLVRLzqCjRUnpUfCSW7M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/e552f4-96ca-4259-a82a-e35a67e5d9e2/1/soWZKSpjJCl-Av_zxRGb7gsxdUg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.133.132.0/22
IPv6:
2a05:70c0::/29
Signature Algorithm: sha256WithRSAEncryption
7f:25:76:7e:e2:1c:cd:97:31:d9:8d:33:6d:43:a6:ce:a8:34:
f6:8e:8e:7e:16:70:da:29:ae:f3:10:6c:36:ed:14:e3:bb:be:
36:c0:6c:59:62:ec:af:04:aa:70:e9:bf:6f:55:ca:96:11:1c:
fd:f1:42:fd:fd:b6:c5:bf:4b:69:ea:9e:a8:22:61:34:5f:97:
f6:9e:91:d8:0b:73:db:7d:dd:5d:fb:0c:51:3b:0c:72:f7:eb:
30:14:2a:50:82:f3:67:42:d3:1d:f0:64:31:ef:53:c2:90:56:
dd:cb:4e:26:04:4f:43:50:ba:5c:ad:df:7b:9c:22:c5:f7:77:
4d:0c:1b:97:64:f7:75:aa:76:74:a9:d9:e7:9a:3a:86:cb:07:
c8:4b:79:c6:ea:b6:aa:17:77:5b:17:df:c4:ca:57:85:b1:53:
73:0b:ef:d9:54:14:15:57:f8:91:f2:3b:c9:7d:ad:81:38:a5:
2d:ef:a8:6e:b4:db:dc:8d:a5:d1:eb:b2:f6:42:43:f3:a6:1b:
2f:91:6d:8a:18:f3:72:1e:9b:b5:d3:86:49:66:dd:08:e7:d8:
14:81:b5:1f:cf:99:1c:ff:bc:90:b1:48:81:d9:3c:7a:fb:51:
48:a4:d0:b0:85:1f:05:63:a7:1a:e2:c7:56:6c:13:3f:3b:fd:
fc:4a:64:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 13:48:20 2025 by rpki-client