Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/1c9ddc-dc4d-4571-82db-ce53526e6699/1/k5-R2dEcRZvBiWQcEcqqv8rzGgM.roa
File: k5-R2dEcRZvBiWQcEcqqv8rzGgM.roa (raw, json)
Hash identifier: V2IObTCmwDKZDk1JhtF7123pTb00wm62K5fiYiGAs9w=
Subject key identifier: 93:9F:91:D9:D1:1C:45:9B:C1:89:64:1C:11:CA:AA:BF:CA:F3:1A:03
Certificate issuer: /CN=69c977d45c29d81bd923fdeb1f092ff34644e33c
Certificate serial: 0DE03C45
Authority key identifier: 69:C9:77:D4:5C:29:D8:1B:D9:23:FD:EB:1F:09:2F:F3:46:44:E3:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/acl31Fwp2BvZI_3rHwkv80ZE4zw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/1c9ddc-dc4d-4571-82db-ce53526e6699/1/k5-R2dEcRZvBiWQcEcqqv8rzGgM.roa
Signing time: Sat 01 Jan 2022 08:04:09 +0000
ROA not before: Sat 01 Jan 2022 08:04:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49544
IP address blocks: 185.191.240.0/22 maxlen: 22
2a0a:2140::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 232799301 (0xde03c45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69c977d45c29d81bd923fdeb1f092ff34644e33c
Validity
Not Before: Jan 1 08:04:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=939f91d9d11c459bc189641c11caaabfcaf31a03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:1f:b2:84:47:14:b9:84:7e:37:64:37:e2:62:
7b:1c:4b:cd:c9:4e:38:88:f7:85:49:ad:07:24:33:
76:73:e6:30:52:49:3c:bc:98:c1:61:d3:9e:66:24:
89:e4:00:aa:26:e6:e9:20:6a:20:5c:87:d6:a8:45:
9d:86:16:9f:e8:ea:c9:0f:f8:ea:ca:3b:3e:41:51:
fa:b9:ec:f9:4e:68:1f:e5:16:5b:a2:a8:53:1e:9a:
94:4d:fc:a8:fe:a8:15:3f:7f:c5:8b:a5:fb:6e:d9:
8e:24:0b:e1:ca:f3:8f:41:a3:a0:bb:e9:b8:d5:05:
f6:41:cf:12:b6:b3:44:99:d9:27:c6:21:75:ea:72:
ac:ba:d6:90:c5:e9:ae:34:68:44:2a:c1:48:64:52:
8c:d5:73:bb:25:29:1e:ae:3b:e7:c4:6e:4f:95:73:
07:21:31:c1:15:90:4a:ed:55:f2:95:56:4e:39:93:
97:69:a7:f8:9b:b9:be:e5:1c:d3:2f:3a:90:b4:ac:
d0:b0:c1:e3:f9:da:5e:a2:42:58:75:6d:75:0c:1a:
ee:da:f2:8a:5a:71:fd:07:22:30:6f:e3:b4:ae:5f:
9d:b5:1e:4a:36:c2:e9:2e:29:f1:15:e8:6b:09:f6:
5a:8d:85:fc:b8:6e:85:8e:e8:e4:6b:38:0e:89:44:
65:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:9F:91:D9:D1:1C:45:9B:C1:89:64:1C:11:CA:AA:BF:CA:F3:1A:03
X509v3 Authority Key Identifier:
keyid:69:C9:77:D4:5C:29:D8:1B:D9:23:FD:EB:1F:09:2F:F3:46:44:E3:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/acl31Fwp2BvZI_3rHwkv80ZE4zw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/1c9ddc-dc4d-4571-82db-ce53526e6699/1/k5-R2dEcRZvBiWQcEcqqv8rzGgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/1c9ddc-dc4d-4571-82db-ce53526e6699/1/acl31Fwp2BvZI_3rHwkv80ZE4zw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.191.240.0/22
IPv6:
2a0a:2140::/29
Signature Algorithm: sha256WithRSAEncryption
22:9d:0b:c1:e8:88:a0:fe:df:e6:0b:dc:ac:ef:78:c1:37:12:
ae:52:da:2b:47:18:9a:bf:bb:6f:15:42:97:7f:33:1c:29:b6:
0a:d3:d8:24:12:06:13:56:8a:10:76:75:0a:97:9f:6a:b7:3f:
ec:56:f8:6f:66:7f:2c:ca:fc:b8:00:40:9a:6b:55:a6:7d:87:
ef:23:39:96:d3:43:83:9f:0f:36:77:65:18:b0:e4:76:fe:da:
b7:00:d7:ae:cf:f2:26:87:59:07:1c:1c:e0:ff:3e:b0:71:bc:
c0:ef:fc:dc:be:64:9b:f4:28:fe:d4:86:cc:99:2e:c9:c9:ea:
41:93:3b:27:e3:a2:51:bd:ef:eb:ab:43:91:32:c1:10:68:13:
e3:e8:6e:2d:37:9b:28:9d:6d:ab:ad:86:ba:4d:80:57:ad:e9:
87:68:0f:a7:a5:5a:8c:c9:55:c0:81:7e:61:ae:92:f6:24:ce:
bc:0f:9d:9c:c8:1c:b5:af:79:07:93:12:01:8c:f0:47:be:3d:
de:5d:6c:56:53:00:b0:f0:6f:5e:bc:a0:29:43:a1:3f:c6:dc:
34:d1:ff:59:a3:6b:7b:7d:63:4c:40:54:2e:7f:99:10:0e:d9:
ba:36:7c:74:f5:ca:ab:b7:57:04:1c:1f:b2:32:53:e1:9e:90:
fa:4d:6f:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 12:18:19 2025 by rpki-client