Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/863093-5ed6-43b2-bbda-14c6c5055f88/1/dK1dlekbitW_zRGaG5JDDWXPB8k.roa
File: dK1dlekbitW_zRGaG5JDDWXPB8k.roa (raw, json)
Hash identifier: Dket/XJlVXhgFzQws6a4Ptb7IJEyck2NQPln1vgs/SI=
Subject key identifier: 74:AD:5D:95:E9:1B:8A:D5:BF:CD:11:9A:1B:92:43:0D:65:CF:07:C9
Certificate issuer: /CN=b262bf21de51385859416c4c608001e2025a5d25
Certificate serial: 36565D
Authority key identifier: B2:62:BF:21:DE:51:38:58:59:41:6C:4C:60:80:01:E2:02:5A:5D:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/smK_Id5ROFhZQWxMYIAB4gJaXSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/863093-5ed6-43b2-bbda-14c6c5055f88/1/dK1dlekbitW_zRGaG5JDDWXPB8k.roa
Signing time: Sat 01 Jan 2022 02:01:01 +0000
ROA not before: Sat 01 Jan 2022 02:01:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198722
IP address blocks: 185.19.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3561053 (0x36565d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b262bf21de51385859416c4c608001e2025a5d25
Validity
Not Before: Jan 1 02:01:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=74ad5d95e91b8ad5bfcd119a1b92430d65cf07c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a5:75:c7:81:9d:4e:69:ce:6b:7b:d4:7c:9b:
5b:92:9a:c5:4a:bd:d3:bd:2c:45:9d:8c:c0:53:c4:
0e:f6:ed:3e:a0:33:46:61:bd:7f:f7:c6:52:aa:0b:
0b:a9:73:fc:ed:5b:19:01:e7:68:eb:36:13:c5:79:
3c:1b:ac:cd:04:3b:75:fe:5e:23:49:13:3f:91:43:
d3:af:5f:50:20:c0:4e:5f:b4:6d:18:e8:99:6d:3a:
01:82:3e:b4:1f:12:9c:d6:24:9c:84:50:f6:8a:35:
97:f7:92:ad:32:6f:53:a1:58:bb:cf:19:ec:f1:b5:
7e:04:7c:4b:9d:ea:19:a4:78:ac:b0:a7:48:7c:7c:
34:d5:52:8d:4c:69:55:d1:e6:05:cf:9b:dd:d3:ca:
13:2e:87:59:c1:c9:0e:09:6e:6a:d0:1a:a8:78:d0:
7e:52:dd:05:94:f8:82:00:27:1e:12:c7:a6:ab:f4:
ed:9e:5d:de:b8:3c:01:6e:94:20:34:65:2b:e2:d3:
32:ae:c9:96:6f:aa:6d:5c:dc:e9:e7:43:1d:df:e4:
b8:e9:4e:60:d1:6e:ce:a6:86:72:bc:c0:4b:18:ba:
58:94:cf:8c:48:63:07:5e:6d:e1:bf:9d:9b:fc:b9:
b2:ee:c6:a8:2a:2f:b2:75:e1:34:92:b7:ba:19:2d:
03:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:AD:5D:95:E9:1B:8A:D5:BF:CD:11:9A:1B:92:43:0D:65:CF:07:C9
X509v3 Authority Key Identifier:
keyid:B2:62:BF:21:DE:51:38:58:59:41:6C:4C:60:80:01:E2:02:5A:5D:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/smK_Id5ROFhZQWxMYIAB4gJaXSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/863093-5ed6-43b2-bbda-14c6c5055f88/1/dK1dlekbitW_zRGaG5JDDWXPB8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/863093-5ed6-43b2-bbda-14c6c5055f88/1/smK_Id5ROFhZQWxMYIAB4gJaXSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.19.150.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:1c:0c:e6:5e:6a:a0:d2:69:03:cc:8c:f9:ed:44:94:3f:42:
e1:8e:cb:98:c4:9c:cf:24:1a:2d:c4:4e:b0:26:9e:13:22:16:
8f:e4:e1:af:f2:7f:f0:b5:76:98:e5:1b:db:84:53:ce:52:5d:
1f:3b:40:15:0e:0b:99:12:f2:fb:62:dd:1f:ee:5e:4d:fb:37:
8c:12:ec:9a:7a:63:b4:fe:f6:c2:df:9f:e0:55:56:ef:a6:13:
af:07:d6:ed:2d:9b:d3:7f:e4:23:57:39:a0:e8:e6:ba:6b:be:
01:73:07:c7:f1:4a:fb:13:13:e7:44:de:4c:7c:20:52:f7:16:
de:40:a7:b2:73:97:a7:f6:7e:61:f2:83:9f:bb:7f:d7:8e:b8:
e7:f7:cc:03:bb:35:22:84:d5:59:69:8a:02:f2:35:5d:41:dc:
f1:98:ef:62:7c:c5:d9:0f:b9:48:6f:b1:1a:96:8b:bc:e8:3e:
97:45:74:32:92:8f:d8:81:a4:12:f7:87:dc:62:ee:5b:0e:d8:
a3:08:ec:78:c6:83:b3:3b:6f:00:11:6b:e3:49:f2:d0:13:c7:
a8:bd:81:52:c6:52:fb:b4:bb:1c:29:25:75:63:38:0f:ac:02:
66:95:cb:dc:88:34:48:83:33:8f:63:e3:51:66:49:29:25:87:
50:4d:e4:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 03:34:46 2025 by rpki-client