Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/5f53ee-fb00-4df4-9764-06da2bb06071/1/mlSWgtavpDNBk4hankUsnQ4gJsg.roa
File: mlSWgtavpDNBk4hankUsnQ4gJsg.roa (raw, json)
Hash identifier: 8fqeJa94SYKsCxkM6oCj+ZaRkRYCkBoy8EVAjxi2cY8=
Subject key identifier: 9A:54:96:82:D6:AF:A4:33:41:93:88:5A:9E:45:2C:9D:0E:20:26:C8
Certificate issuer: /CN=7938dfb9eb924079bb706cb616eda572864a9e13
Certificate serial: 15ECE2AD
Authority key identifier: 79:38:DF:B9:EB:92:40:79:BB:70:6C:B6:16:ED:A5:72:86:4A:9E:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eTjfueuSQHm7cGy2Fu2lcoZKnhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/5f53ee-fb00-4df4-9764-06da2bb06071/1/mlSWgtavpDNBk4hankUsnQ4gJsg.roa
Signing time: Tue 22 Feb 2022 11:33:57 +0000
ROA not before: Tue 22 Feb 2022 11:33:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51235
IP address blocks: 185.51.42.0/24 maxlen: 24
185.51.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 367846061 (0x15ece2ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7938dfb9eb924079bb706cb616eda572864a9e13
Validity
Not Before: Feb 22 11:33:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a549682d6afa4334193885a9e452c9d0e2026c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:e5:85:47:1d:17:82:2c:a9:b5:97:d1:2a:61:
28:53:c4:5c:5d:79:6e:89:b9:76:d5:5d:f9:ad:14:
c9:3d:80:52:6f:9e:d8:a4:4c:5e:c7:45:ce:07:65:
43:27:a7:e6:a9:52:c5:48:34:7c:ca:b3:42:65:e3:
f4:3a:6a:a3:be:0d:21:4d:c1:c4:00:34:98:9d:ac:
e3:c2:01:5e:63:13:8e:3d:52:fd:a5:b6:94:62:26:
06:d8:fe:f6:d7:3d:d5:06:9a:ac:e7:a5:37:07:ab:
c4:2d:1c:9a:43:dd:53:0a:e3:6e:6d:dd:ed:af:0a:
32:a4:97:b4:30:5c:b7:36:19:cf:4b:fd:6f:61:fd:
87:6e:69:20:e7:92:9d:d6:90:a7:6b:ca:d8:6b:9b:
73:9b:9b:dc:0e:c0:65:11:e6:d8:24:5a:a9:8e:ae:
4b:3b:b6:17:0d:d3:fe:4c:98:35:ad:44:50:6d:25:
f0:79:31:c4:29:c0:fa:a8:38:60:de:78:ed:95:ca:
a6:e3:b3:e8:1c:f1:ba:72:a1:b0:21:da:11:2d:39:
5e:2e:b7:71:28:95:d3:cd:3d:f9:10:d5:a0:29:ce:
f8:23:bf:de:02:a5:0c:44:7f:fc:a0:1d:2b:d4:08:
49:74:51:b2:0a:c0:8a:c6:96:9b:de:55:8b:13:7a:
24:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:54:96:82:D6:AF:A4:33:41:93:88:5A:9E:45:2C:9D:0E:20:26:C8
X509v3 Authority Key Identifier:
keyid:79:38:DF:B9:EB:92:40:79:BB:70:6C:B6:16:ED:A5:72:86:4A:9E:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eTjfueuSQHm7cGy2Fu2lcoZKnhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5f53ee-fb00-4df4-9764-06da2bb06071/1/mlSWgtavpDNBk4hankUsnQ4gJsg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5f53ee-fb00-4df4-9764-06da2bb06071/1/eTjfueuSQHm7cGy2Fu2lcoZKnhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.42.0/23
Signature Algorithm: sha256WithRSAEncryption
20:86:41:61:3f:1b:95:f2:55:c5:75:e2:07:53:6e:4e:74:0d:
ee:f8:46:03:63:01:80:d2:d9:8e:7f:71:d6:6d:6c:d3:b7:a7:
b5:db:10:34:92:b7:4c:5e:00:fe:42:c2:9d:77:ff:89:2d:e7:
ee:30:ec:e4:dc:f4:62:5f:64:6f:1d:a2:a3:08:c2:a2:02:ea:
0d:af:e6:35:c2:d0:42:b5:a0:83:6c:38:31:79:37:6c:0d:01:
b0:e3:20:13:ef:e9:62:93:3b:df:40:6e:23:7f:6f:29:65:32:
f0:c2:3a:e4:de:40:25:db:71:ab:12:04:99:c0:0e:3d:de:55:
ef:b5:32:2b:3c:14:34:bb:4b:60:e5:8f:8a:cf:90:79:d5:d8:
b1:b1:33:23:9a:24:fe:90:3f:19:f3:c1:b9:a9:30:76:bf:52:
a2:6d:ba:5a:25:8e:b4:87:e1:c6:87:c7:ce:4b:41:5e:17:d3:
d8:80:c2:79:ec:d6:cc:da:ad:22:26:fc:70:dd:e8:76:aa:43:
57:8f:d9:34:d3:26:7a:bd:4c:6c:7a:ef:81:4e:34:2e:79:d4:
9a:63:a4:10:e2:62:73:80:64:40:c2:dd:ad:ae:58:cb:16:07:
78:bc:39:17:02:63:64:1c:39:26:e1:a2:d8:be:97:cf:01:fa:
8c:ce:39:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:45:25 2025 by rpki-client