Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/ecdd93-1aa0-4b9a-b6aa-ecb3126fc8ed/1/Xv5Fzh0SBaeVWKhVnL4RSOcqPwQ.roa
File: Xv5Fzh0SBaeVWKhVnL4RSOcqPwQ.roa (raw, json)
Hash identifier: YQqc6O33OLwY4oLzJFMA+rXbbRNZKHqTbG1XPwbrx0I=
Subject key identifier: 5E:FE:45:CE:1D:12:05:A7:95:58:A8:55:9C:BE:11:48:E7:2A:3F:04
Certificate issuer: /CN=e0cde2c1fce3d6fe2185347dd89dcfd13ebbb151
Certificate serial: 01857139FC55F3B89BC12CF82D3003E5181E
Authority key identifier: E0:CD:E2:C1:FC:E3:D6:FE:21:85:34:7D:D8:9D:CF:D1:3E:BB:B1:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4M3iwfzj1v4hhTR92J3P0T67sVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/ecdd93-1aa0-4b9a-b6aa-ecb3126fc8ed/1/Xv5Fzh0SBaeVWKhVnL4RSOcqPwQ.roa
Signing time: Mon 02 Jan 2023 06:45:03 +0000
ROA not before: Mon 02 Jan 2023 06:45:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47123
IP address blocks: 185.141.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:fc:55:f3:b8:9b:c1:2c:f8:2d:30:03:e5:18:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0cde2c1fce3d6fe2185347dd89dcfd13ebbb151
Validity
Not Before: Jan 2 06:45:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5efe45ce1d1205a79558a8559cbe1148e72a3f04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ef:4c:69:d8:90:55:22:f7:ae:d1:0d:f0:76:
d2:3f:7e:b1:c4:3a:94:4a:09:11:7d:bc:1f:26:89:
fd:21:62:ab:75:04:a4:ef:16:94:da:da:bb:54:aa:
15:56:78:16:a8:1c:34:b6:ab:3c:5e:c9:a7:22:1c:
80:6c:f3:2e:14:ed:c7:88:ac:f0:d2:53:d0:5d:49:
c3:e4:8d:fa:71:ae:08:7b:db:28:c1:8a:b3:54:cb:
f5:43:b0:b6:18:34:0e:df:e7:ac:a9:be:b5:27:5a:
8c:43:18:2d:4b:35:d7:6c:d2:e2:27:e4:70:26:47:
e7:f7:88:01:e7:95:34:8c:73:0d:6a:45:c1:08:dc:
2f:a0:d8:91:8d:8c:25:4b:01:9a:b6:fc:02:2b:5e:
20:31:96:a1:68:a5:36:8b:43:82:02:5c:f6:a4:10:
f7:e1:90:bd:86:a2:76:30:e9:73:3d:c1:86:e2:ba:
80:53:0b:90:25:84:13:63:b2:cc:31:a5:9c:d1:2e:
95:15:46:c8:33:74:ef:c6:31:35:3c:25:b2:98:6f:
a9:bf:72:b1:84:f6:67:c3:76:32:d6:3a:ed:46:c5:
73:45:0c:b3:a1:84:51:06:c3:ab:7f:49:37:c8:0b:
48:80:22:0b:c0:2c:6f:43:91:ab:7c:d9:d0:62:00:
47:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:FE:45:CE:1D:12:05:A7:95:58:A8:55:9C:BE:11:48:E7:2A:3F:04
X509v3 Authority Key Identifier:
keyid:E0:CD:E2:C1:FC:E3:D6:FE:21:85:34:7D:D8:9D:CF:D1:3E:BB:B1:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4M3iwfzj1v4hhTR92J3P0T67sVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/ecdd93-1aa0-4b9a-b6aa-ecb3126fc8ed/1/Xv5Fzh0SBaeVWKhVnL4RSOcqPwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/ecdd93-1aa0-4b9a-b6aa-ecb3126fc8ed/1/4M3iwfzj1v4hhTR92J3P0T67sVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.111.0/24
Signature Algorithm: sha256WithRSAEncryption
01:bf:bf:d9:13:ab:ad:9c:32:e1:34:78:27:39:4e:47:56:15:
3d:10:ae:ac:9b:27:4a:27:33:b1:a7:8d:d1:dd:69:0a:e8:37:
fd:bf:1d:dc:9a:2d:24:9e:9a:f6:d9:bf:43:89:ab:fc:04:7e:
9e:2c:9b:69:9d:d6:c5:0c:80:f1:e1:49:9f:80:bc:88:fa:ee:
ee:46:70:d0:63:9d:88:a5:ba:59:55:f6:b0:03:c1:3f:7d:3f:
b0:00:86:e5:09:66:f2:16:43:aa:29:2e:5e:22:12:d0:b6:e2:
a3:31:e7:7a:a5:00:f7:f3:9e:09:62:25:b6:22:ee:c2:76:16:
e0:90:6a:03:96:51:d8:53:c8:75:2d:3d:ea:23:31:31:82:1f:
e7:35:b4:aa:e5:8d:ce:37:e2:6d:41:76:2d:5e:f4:8e:1d:02:
dc:3d:fd:eb:e4:2c:d9:7d:42:df:b1:48:52:f3:11:be:5c:9e:
ab:96:51:ca:41:58:f9:d2:b9:95:76:7c:b5:2e:4c:ba:82:d0:
32:c4:a1:3b:82:72:d3:d7:0b:07:bc:3e:e0:1a:0e:1d:14:a1:
7a:41:c0:fe:9e:1e:72:d6:1d:1a:49:5c:61:15:66:68:cf:2d:
69:7b:c4:98:66:f0:7f:b6:b3:21:da:88:9c:f4:d3:2e:2c:7e:
9c:f6:7b:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:10:35 2025 by rpki-client