Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/5f53ee-fb00-4df4-9764-06da2bb06071/1/suXdlyrJyScfq6dO-pUZTxpfGxo.roa
File: suXdlyrJyScfq6dO-pUZTxpfGxo.roa (raw, json)
Hash identifier: qIZO4pT7Epz+UrPsy+xmtjfLAb5uzg9hCIz77Qvs+Fk=
Subject key identifier: B2:E5:DD:97:2A:C9:C9:27:1F:AB:A7:4E:FA:95:19:4F:1A:5F:1B:1A
Certificate issuer: /CN=7938dfb9eb924079bb706cb616eda572864a9e13
Certificate serial: 018B576CE40598D856943176D8AF62958F40
Authority key identifier: 79:38:DF:B9:EB:92:40:79:BB:70:6C:B6:16:ED:A5:72:86:4A:9E:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eTjfueuSQHm7cGy2Fu2lcoZKnhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/5f53ee-fb00-4df4-9764-06da2bb06071/1/suXdlyrJyScfq6dO-pUZTxpfGxo.roa
Signing time: Sun 22 Oct 2023 12:47:15 +0000
ROA not before: Sun 22 Oct 2023 12:47:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51235
IP address blocks: 185.51.42.0/24 maxlen: 24
185.51.43.0/24 maxlen: 24
2a04:c147:4000::/34 maxlen: 34
2a04:c147::/34 maxlen: 34
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:57:6c:e4:05:98:d8:56:94:31:76:d8:af:62:95:8f:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7938dfb9eb924079bb706cb616eda572864a9e13
Validity
Not Before: Oct 22 12:47:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b2e5dd972ac9c9271faba74efa95194f1a5f1b1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:1f:f1:07:66:42:d4:d0:11:ab:4f:f6:d7:89:
ab:15:3f:40:d8:ba:bd:c1:a6:56:5f:ed:be:12:34:
e8:38:da:ad:d5:fd:c1:14:f8:3a:d9:20:57:4b:d3:
54:2b:d2:cc:88:61:42:9c:e9:e6:67:5e:39:63:0a:
e6:30:e4:fa:2a:cc:f0:52:5e:9b:28:2b:2c:e6:0c:
47:82:6e:b0:ea:11:54:88:67:2a:f0:91:45:6f:66:
72:c9:00:60:93:46:99:a2:bb:12:d6:d1:06:6f:8f:
d8:19:cc:7a:b8:08:90:30:0d:c0:7f:49:ff:a2:78:
72:73:4c:62:f2:af:cb:3e:13:4c:12:21:b2:1e:4e:
b8:ba:23:04:25:0f:c8:43:fe:27:a5:ab:50:33:99:
8b:9e:53:95:8e:d7:0e:b0:60:df:2a:b0:36:5c:fa:
37:bd:76:1d:2b:13:c2:39:35:9a:d6:81:0a:ba:ba:
03:4d:05:89:6c:9d:71:49:c0:19:2f:99:9f:8a:35:
1e:c7:f9:56:82:47:e0:bd:7b:c0:b5:98:e7:c1:21:
1f:f2:ec:8e:c1:56:07:5d:8d:ea:a6:5a:e6:a6:6d:
81:72:7b:7f:41:f0:dc:85:66:07:d2:2a:d3:23:cb:
6d:b5:b2:9b:bf:e6:08:ee:da:37:e1:77:67:f4:19:
03:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:E5:DD:97:2A:C9:C9:27:1F:AB:A7:4E:FA:95:19:4F:1A:5F:1B:1A
X509v3 Authority Key Identifier:
keyid:79:38:DF:B9:EB:92:40:79:BB:70:6C:B6:16:ED:A5:72:86:4A:9E:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eTjfueuSQHm7cGy2Fu2lcoZKnhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5f53ee-fb00-4df4-9764-06da2bb06071/1/suXdlyrJyScfq6dO-pUZTxpfGxo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5f53ee-fb00-4df4-9764-06da2bb06071/1/eTjfueuSQHm7cGy2Fu2lcoZKnhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.42.0/23
IPv6:
2a04:c147::/33
Signature Algorithm: sha256WithRSAEncryption
92:5e:fb:e2:0d:95:38:fc:ea:cf:e7:2a:7c:77:c8:11:1c:5a:
df:39:21:08:a3:5a:df:68:62:49:73:02:8f:e0:84:e3:19:f7:
8a:3f:e4:88:a5:f4:1d:3d:e8:6f:0b:d0:ca:fc:b8:c7:f4:ac:
30:6f:2b:d5:8a:8f:f3:3c:e2:f4:91:fb:74:f7:0c:43:a7:f5:
98:1d:09:bb:54:0e:cf:e7:9c:63:96:6c:45:67:de:d1:40:66:
6e:52:97:7f:8b:1e:52:24:5f:60:88:ef:b3:aa:eb:42:95:0e:
56:05:ba:a5:ee:52:09:ca:50:ae:17:63:bf:fe:50:a8:f6:f6:
4c:92:f8:56:66:98:10:4f:56:a7:ce:87:d5:62:27:68:26:c2:
f9:35:bd:cb:de:aa:fd:ca:75:13:32:8d:9b:ae:fd:c3:09:ff:
d8:5b:dd:74:60:eb:82:21:f5:3e:1d:ae:84:66:90:14:b2:07:
43:bb:1b:33:e9:13:4e:88:1c:1c:0a:d1:a9:5a:e2:df:d2:0c:
91:48:27:f3:65:ad:52:f1:6b:aa:7e:66:f6:c5:78:c0:80:b7:
d2:b2:e0:fd:db:d8:e5:7f:81:dd:38:b1:c9:2d:4c:50:9b:8d:
88:42:2a:05:38:f1:6d:96:38:0c:ae:b9:32:7a:dc:23:4b:c0:
21:3c:76:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:32:38 2025 by rpki-client