Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/5f53ee-fb00-4df4-9764-06da2bb06071/1/g_L9iVkp4j61wiWEcQZxe7P8ONY.roa
File: g_L9iVkp4j61wiWEcQZxe7P8ONY.roa (raw, json)
Hash identifier: fwSi7Cr5e2l+0UJgRDFMnXdebP+9KzDexYSmTsvtPrw=
Subject key identifier: 83:F2:FD:89:59:29:E2:3E:B5:C2:25:84:71:06:71:7B:B3:FC:38:D6
Certificate issuer: /CN=7938dfb9eb924079bb706cb616eda572864a9e13
Certificate serial: 157769C0
Authority key identifier: 79:38:DF:B9:EB:92:40:79:BB:70:6C:B6:16:ED:A5:72:86:4A:9E:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eTjfueuSQHm7cGy2Fu2lcoZKnhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/5f53ee-fb00-4df4-9764-06da2bb06071/1/g_L9iVkp4j61wiWEcQZxe7P8ONY.roa
Signing time: Sat 01 Jan 2022 08:05:42 +0000
ROA not before: Sat 01 Jan 2022 08:05:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44400
IP address blocks: 185.51.40.0/24 maxlen: 24
185.51.41.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 360147392 (0x157769c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7938dfb9eb924079bb706cb616eda572864a9e13
Validity
Not Before: Jan 1 08:05:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83f2fd895929e23eb5c225847106717bb3fc38d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:99:7d:ef:aa:c7:38:7f:f2:fb:32:54:8f:34:
b1:93:2f:4e:a8:22:bb:84:c2:98:fb:84:d8:7e:be:
72:37:ae:e6:f8:1b:11:a7:7b:c0:7c:60:6e:bb:98:
99:b2:ff:78:03:3b:57:cb:dd:08:fe:b9:a6:55:df:
47:12:a4:e3:12:0e:14:89:69:cc:57:c7:84:bf:b0:
f8:75:c2:67:5d:3d:11:a3:64:7a:55:cd:38:00:ff:
d8:ef:45:db:7c:cd:e0:1f:a2:9e:83:bf:4e:c0:61:
ea:a9:40:c0:d2:cc:35:99:86:ff:b5:b3:8e:6e:09:
de:1f:f1:b0:c1:ff:c2:47:1f:04:df:17:21:ff:07:
65:af:ea:e4:2c:4d:b9:d2:55:63:e6:b5:04:62:e1:
d2:46:a3:ea:7a:de:fc:43:17:d0:7e:01:7f:64:3d:
87:e7:07:98:83:bd:56:71:2a:80:b7:1f:e1:6a:c2:
04:29:5a:03:cb:61:74:49:1e:8f:27:51:ba:a1:68:
da:9b:eb:3b:ae:96:11:27:16:53:d6:bd:1f:d5:ec:
6e:a0:b2:79:51:bd:eb:fb:7c:3f:36:8e:22:84:11:
76:01:00:9a:44:3b:23:8f:90:01:bd:f1:42:7e:72:
a9:2f:2e:c3:f2:d7:3a:db:d4:cd:4b:6b:1d:62:70:
c8:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:F2:FD:89:59:29:E2:3E:B5:C2:25:84:71:06:71:7B:B3:FC:38:D6
X509v3 Authority Key Identifier:
keyid:79:38:DF:B9:EB:92:40:79:BB:70:6C:B6:16:ED:A5:72:86:4A:9E:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eTjfueuSQHm7cGy2Fu2lcoZKnhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5f53ee-fb00-4df4-9764-06da2bb06071/1/g_L9iVkp4j61wiWEcQZxe7P8ONY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5f53ee-fb00-4df4-9764-06da2bb06071/1/eTjfueuSQHm7cGy2Fu2lcoZKnhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.40.0/23
Signature Algorithm: sha256WithRSAEncryption
a5:58:28:ae:1c:57:b4:3c:f0:f0:ac:ea:0c:2d:74:4d:b0:82:
77:98:57:d3:3c:1b:d7:0c:94:39:af:d5:46:ab:ce:f7:fa:44:
45:1d:4a:d5:68:81:ed:cc:bb:c0:de:8b:15:b7:85:36:ed:aa:
0b:da:38:75:19:17:5b:46:22:93:c0:ae:6e:0a:ec:f1:57:e7:
08:a6:b6:e2:f4:be:c3:b7:38:9c:57:ff:b6:8c:ea:b2:4b:24:
a7:b6:aa:ef:a2:9d:35:56:90:2e:26:da:84:51:7d:3a:77:6d:
d8:fb:7e:53:4c:2d:94:70:08:9a:1c:37:c2:ad:bc:f9:1e:3b:
30:dc:1b:22:e0:25:ce:ea:d9:15:e1:68:80:20:23:d7:0a:ee:
42:b5:7c:ca:fd:58:04:c2:04:c6:b2:7e:02:82:fa:14:92:a4:
c7:d5:8e:72:52:75:e8:e1:bb:8c:5a:47:8a:6e:00:38:3e:47:
b0:48:47:7e:6f:6a:eb:0e:35:d4:e3:ee:c1:47:c7:e5:65:65:
49:d6:b8:de:e5:b4:f3:fb:0b:2c:df:bc:f9:1f:06:44:bb:0d:
c4:14:b6:08:49:31:81:79:08:2f:9c:37:9f:3a:91:f4:87:df:
dd:a1:8e:13:da:20:85:b7:f4:75:1d:62:5b:83:a4:88:09:32:
83:97:87:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:51:51 2025 by rpki-client