Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/c75317-d5fd-4a24-8714-e7dee9a7cad5/1/h_gLVPT9e6ty5Pv-eAdqxAP0zMs.roa
File: h_gLVPT9e6ty5Pv-eAdqxAP0zMs.roa (raw, json)
Hash identifier: DIsgtwIRSU+Z603QzxOFMhzmPX66K2AIp8JaIu0aNNM=
Subject key identifier: 87:F8:0B:54:F4:FD:7B:AB:72:E4:FB:FE:78:07:6A:C4:03:F4:CC:CB
Certificate issuer: /CN=8d3e594bb26e9c08e6fc4736caa5d3c200854dea
Certificate serial: 0184E2A8DF664812A352798FDF385A433F19
Authority key identifier: 8D:3E:59:4B:B2:6E:9C:08:E6:FC:47:36:CA:A5:D3:C2:00:85:4D:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jT5ZS7JunAjm_Ec2yqXTwgCFTeo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/c75317-d5fd-4a24-8714-e7dee9a7cad5/1/h_gLVPT9e6ty5Pv-eAdqxAP0zMs.roa
Signing time: Mon 05 Dec 2022 14:20:28 +0000
ROA not before: Mon 05 Dec 2022 14:20:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8075
IP address blocks: 185.149.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e2:a8:df:66:48:12:a3:52:79:8f:df:38:5a:43:3f:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d3e594bb26e9c08e6fc4736caa5d3c200854dea
Validity
Not Before: Dec 5 14:20:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=87f80b54f4fd7bab72e4fbfe78076ac403f4cccb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:91:0f:c5:a1:a3:77:da:30:fd:c8:74:73:8a:
92:a3:2f:4b:6a:5c:c7:da:a3:c1:71:8c:31:b4:a1:
c8:ad:b8:7e:d6:15:26:f9:44:2e:35:d1:fd:f6:5d:
e5:c8:6f:5c:58:21:e3:96:b0:fd:5a:b5:55:f6:3a:
dc:26:0d:6e:d1:14:17:27:d1:0e:99:05:f4:9e:91:
35:ce:7a:b7:03:92:11:52:aa:d3:67:ad:5d:22:f7:
03:91:a7:fd:d9:68:8a:1e:6f:ec:c1:99:7b:28:be:
a9:0b:cd:78:e5:d0:41:ae:10:ca:00:aa:1b:ba:ce:
4d:93:7e:0d:5c:d8:be:0e:83:39:2b:1b:1c:37:42:
b8:5f:2c:1c:25:f4:a8:a1:82:03:51:a4:61:cf:6b:
aa:d5:a4:89:a2:2e:8b:b2:13:d4:98:ad:5d:9a:8d:
83:5f:b1:12:77:55:c8:91:50:77:6f:5d:f7:6e:fd:
d5:02:51:03:a0:16:31:f5:ea:fd:96:82:14:f7:46:
a6:1d:50:e7:8b:6f:81:0d:37:68:e2:5a:4d:5e:33:
93:8b:f3:69:cd:cb:c7:6a:d3:97:2b:2f:dc:f5:be:
89:ad:5b:5d:0d:0a:0f:9a:65:11:a0:a2:c5:ad:8f:
45:8b:26:33:fb:33:77:98:4f:0c:e0:0c:cd:19:79:
8c:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:F8:0B:54:F4:FD:7B:AB:72:E4:FB:FE:78:07:6A:C4:03:F4:CC:CB
X509v3 Authority Key Identifier:
keyid:8D:3E:59:4B:B2:6E:9C:08:E6:FC:47:36:CA:A5:D3:C2:00:85:4D:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jT5ZS7JunAjm_Ec2yqXTwgCFTeo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/c75317-d5fd-4a24-8714-e7dee9a7cad5/1/h_gLVPT9e6ty5Pv-eAdqxAP0zMs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/c75317-d5fd-4a24-8714-e7dee9a7cad5/1/jT5ZS7JunAjm_Ec2yqXTwgCFTeo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.54.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:e5:b4:21:bf:85:5e:ff:08:fd:6e:83:32:a7:a2:62:e3:4d:
df:1a:2f:13:de:9f:22:95:94:79:23:66:35:fa:bc:2a:e3:20:
ff:a6:0e:2f:56:63:a2:8c:5f:28:51:79:33:a8:e7:29:8e:23:
25:10:95:d9:48:9a:a8:e8:87:71:44:9d:39:77:5d:03:99:53:
fa:72:0d:dc:0f:d4:63:c6:4e:8b:6d:d1:e3:2e:58:52:59:f4:
1a:1e:06:47:da:0a:c6:cc:1e:52:02:7a:ad:8e:fc:d0:85:c8:
e7:cc:79:9f:f9:e9:0c:95:e1:ef:20:b4:34:b8:d5:a1:58:a8:
3e:d8:97:cb:23:bf:00:70:1c:a4:1a:9f:1a:5b:33:4c:59:fc:
aa:f0:43:bb:45:6f:9c:fd:bc:ee:2b:30:b1:36:e5:35:7c:4f:
41:be:68:0a:34:08:c6:88:97:29:31:5d:7e:07:57:7a:61:4f:
9f:95:6c:09:ad:a4:5b:40:15:6d:d4:8f:57:75:1b:3a:89:27:
a7:1a:f1:f0:07:c9:20:83:5b:2b:d2:b3:0a:21:13:34:24:c6:
eb:11:23:dd:97:c5:f7:1b:e1:59:fe:7d:a1:c9:84:32:9d:75:
ed:43:1b:dd:38:44:d4:98:71:fa:20:d3:d7:03:4d:51:87:c5:
6a:8a:71:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:35:12 2025 by rpki-client