Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/0e4dd5-9c8f-4856-90d7-1e1e9cbf47da/1/tyM4Gnv_PUzQi_pIrpNuYYY2Gc4.roa
File: tyM4Gnv_PUzQi_pIrpNuYYY2Gc4.roa (raw, json)
Hash identifier: kDSfuv/zRFHfJnXMHyb+XA+dY0Stu6OMioUvkRuq1/k=
Subject key identifier: B7:23:38:1A:7B:FF:3D:4C:D0:8B:FA:48:AE:93:6E:61:86:36:19:CE
Certificate issuer: /CN=6911245ae2025155c09bec25a8991d567af1841d
Certificate serial: 13E65158
Authority key identifier: 69:11:24:5A:E2:02:51:55:C0:9B:EC:25:A8:99:1D:56:7A:F1:84:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aREkWuICUVXAm-wlqJkdVnrxhB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/0e4dd5-9c8f-4856-90d7-1e1e9cbf47da/1/tyM4Gnv_PUzQi_pIrpNuYYY2Gc4.roa
Signing time: Sat 01 Jan 2022 15:01:28 +0000
ROA not before: Sat 01 Jan 2022 15:01:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203752
IP address blocks: 185.125.60.0/22 maxlen: 22
2a03:94a0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 333861208 (0x13e65158)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6911245ae2025155c09bec25a8991d567af1841d
Validity
Not Before: Jan 1 15:01:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b723381a7bff3d4cd08bfa48ae936e61863619ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:0c:74:2e:44:7f:0a:7e:73:c7:25:81:80:17:
17:6e:c9:d3:98:27:f2:65:b9:6d:57:0a:d8:1b:6d:
fc:16:eb:56:21:e6:90:55:37:99:03:d8:68:d5:ed:
cf:79:09:b9:65:55:01:8b:b7:f2:7d:84:ea:91:81:
d0:8f:2b:19:a9:f6:37:27:88:0a:4e:13:f4:82:60:
5f:3b:7a:99:3a:e5:7c:86:ed:19:07:03:19:fc:0f:
66:34:af:f8:f5:dd:65:d4:c4:92:b7:50:d5:8d:06:
36:57:ef:70:46:c2:63:96:92:a9:89:a9:f3:1d:f3:
21:d5:39:54:0f:7b:fb:59:5c:f8:10:fc:30:2c:c0:
3b:aa:83:f8:a4:86:ba:64:2b:4a:a7:69:4e:03:7d:
61:35:12:a6:df:27:70:0e:7b:e7:90:86:28:2f:c8:
bb:d5:8c:fd:47:bb:ee:21:b0:e1:26:f3:c6:e8:9f:
0b:da:50:24:bc:37:d4:7a:e0:25:0c:89:54:00:38:
1a:08:ad:ba:2d:42:52:05:62:37:fb:23:49:d7:ed:
1e:08:2a:25:db:4c:78:15:a5:21:d3:0e:f0:28:ec:
dc:af:e1:7f:fa:11:5b:d5:bd:32:21:a0:88:bc:15:
93:6e:bb:49:e8:eb:e0:86:7b:16:23:93:85:33:2e:
18:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:23:38:1A:7B:FF:3D:4C:D0:8B:FA:48:AE:93:6E:61:86:36:19:CE
X509v3 Authority Key Identifier:
keyid:69:11:24:5A:E2:02:51:55:C0:9B:EC:25:A8:99:1D:56:7A:F1:84:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aREkWuICUVXAm-wlqJkdVnrxhB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0e4dd5-9c8f-4856-90d7-1e1e9cbf47da/1/tyM4Gnv_PUzQi_pIrpNuYYY2Gc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0e4dd5-9c8f-4856-90d7-1e1e9cbf47da/1/aREkWuICUVXAm-wlqJkdVnrxhB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.125.60.0/22
IPv6:
2a03:94a0::/32
Signature Algorithm: sha256WithRSAEncryption
7c:00:3f:c6:1e:17:a0:d8:cd:5c:65:07:cd:ce:6d:17:65:5e:
80:f3:f4:f8:14:b6:87:ca:6f:70:72:cc:39:d6:28:a1:6b:72:
0c:c1:e0:9b:29:7c:ca:d3:a5:ba:4f:9f:b2:35:bd:5a:32:f8:
41:23:da:82:f0:02:48:6c:ae:2d:fd:bd:1e:a9:ea:19:fc:0d:
a8:7c:04:fd:7c:5d:36:9c:42:f9:ea:c2:90:8e:b6:5b:9c:cf:
73:31:96:02:94:92:9a:db:0a:ea:e3:8b:82:94:b2:ad:df:df:
d6:39:73:4e:ab:ef:7b:b8:98:85:97:06:8c:b9:f9:22:4a:83:
0c:dc:fa:59:c4:0b:91:d8:8f:ba:39:75:7b:45:60:b2:db:45:
d9:f1:bf:fb:7e:b1:71:7a:fe:49:6c:66:c3:f0:21:84:fe:e2:
5c:92:72:a7:8d:a9:c4:c0:4f:b3:77:68:9c:02:78:11:e0:61:
84:a3:c0:2f:da:59:99:5b:67:4c:fd:76:46:bc:2c:3c:bb:ef:
7a:35:cc:a7:d6:d7:8a:06:c6:df:0a:f8:cf:63:d7:db:a0:ff:
ff:63:ac:18:71:d4:b4:1e:31:0a:8b:d7:bd:29:25:54:77:fa:
27:32:00:3c:f7:52:df:dc:5c:d5:8f:85:88:95:f7:a0:45:68:
58:8d:21:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 03:02:36 2025 by rpki-client