Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/0a3827-b6c5-4c3a-96e6-e8db018b36dd/1/leIUI1CCkcxzWEeXK93GAmtuNgQ.roa
File: leIUI1CCkcxzWEeXK93GAmtuNgQ.roa (raw, json)
Hash identifier: +lMOQt4PRFS8477LKgQrzDhI3R/Mli/t7Wt5BBWVu6A=
Subject key identifier: 95:E2:14:23:50:82:91:CC:73:58:47:97:2B:DD:C6:02:6B:6E:36:04
Certificate issuer: /CN=9b835e9b4d376ee6ab6cad275e243cf404c12af4
Certificate serial: 13033BBC
Authority key identifier: 9B:83:5E:9B:4D:37:6E:E6:AB:6C:AD:27:5E:24:3C:F4:04:C1:2A:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m4Nem003buarbK0nXiQ89ATBKvQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/0a3827-b6c5-4c3a-96e6-e8db018b36dd/1/leIUI1CCkcxzWEeXK93GAmtuNgQ.roa
Signing time: Sat 01 Jan 2022 05:02:40 +0000
ROA not before: Sat 01 Jan 2022 05:02:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200652
IP address blocks: 185.100.60.0/22 maxlen: 22
2a06:1740::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 318979004 (0x13033bbc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b835e9b4d376ee6ab6cad275e243cf404c12af4
Validity
Not Before: Jan 1 05:02:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95e21423508291cc735847972bddc6026b6e3604
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f4:8f:5d:15:e9:dc:3f:de:8a:51:e2:cf:ca:
cb:b1:40:76:51:1d:e5:85:5a:9f:d6:91:f5:aa:7b:
e0:75:df:ff:a7:a9:52:a8:11:fa:1e:85:13:0a:b3:
2d:85:8c:55:0f:75:7b:ba:c5:d7:45:4a:0a:f9:17:
b9:b7:ff:a9:18:f1:0e:a8:2c:5a:02:e9:44:54:69:
ad:d0:51:db:3a:c7:7e:02:00:dc:5d:15:22:06:d3:
9b:f3:ec:e4:40:b8:96:99:fb:5c:8f:ca:63:f9:52:
15:de:e2:27:03:6a:40:8b:6e:da:59:a1:59:81:fe:
36:4d:1d:3f:49:4a:56:71:06:b3:c5:fd:c4:9b:6b:
93:60:4b:a5:20:8d:dc:e8:23:7b:cc:0c:7b:e6:76:
83:9b:e3:f7:bb:32:d9:bf:25:e7:96:ef:e2:04:c9:
3a:81:71:f5:f4:f6:be:cc:3c:2f:3e:b4:98:6d:3f:
8e:3e:01:7c:c8:76:d6:35:88:98:f8:33:0b:9f:ed:
36:01:aa:f0:85:5a:e3:ae:38:68:4b:f3:92:18:0e:
87:a4:b5:bc:0c:9b:09:0d:68:1f:c7:26:a7:46:22:
a3:db:70:7d:3c:83:76:0a:fd:ad:e2:f7:2f:28:3f:
1a:9d:61:50:19:90:85:51:3d:bf:15:4e:29:c6:0b:
30:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:E2:14:23:50:82:91:CC:73:58:47:97:2B:DD:C6:02:6B:6E:36:04
X509v3 Authority Key Identifier:
keyid:9B:83:5E:9B:4D:37:6E:E6:AB:6C:AD:27:5E:24:3C:F4:04:C1:2A:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m4Nem003buarbK0nXiQ89ATBKvQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/0a3827-b6c5-4c3a-96e6-e8db018b36dd/1/leIUI1CCkcxzWEeXK93GAmtuNgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/0a3827-b6c5-4c3a-96e6-e8db018b36dd/1/m4Nem003buarbK0nXiQ89ATBKvQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.100.60.0/22
IPv6:
2a06:1740::/29
Signature Algorithm: sha256WithRSAEncryption
47:ee:84:b5:e7:f2:42:1d:9f:28:8f:13:d1:e0:3a:b1:0d:e5:
70:58:8b:a5:c3:a3:47:c2:a4:30:21:b9:25:d8:1d:a8:90:4d:
d3:d4:fd:20:55:05:84:82:cd:65:b1:76:be:b2:57:ea:6e:90:
84:22:7b:c8:73:13:bf:e3:16:a4:1b:02:29:07:6d:c9:00:9d:
9f:1e:3b:3e:e8:77:df:18:38:90:92:ea:72:ce:4d:4e:c8:91:
5e:66:e8:8b:5d:6b:83:da:d2:6f:eb:fd:72:2c:b7:8f:27:36:
66:d0:fa:85:da:32:41:9d:92:df:b5:dc:70:fb:08:1d:ba:0b:
48:a7:82:57:40:6a:bd:aa:74:11:df:30:a3:c8:1d:cc:4c:41:
6d:b8:fb:f3:07:5c:42:70:90:93:6e:1c:b4:a4:ba:7c:33:34:
27:5f:ee:dd:30:d7:80:70:ff:32:be:67:2a:be:b3:d8:f6:04:
a5:ec:c9:3d:5f:00:94:24:2b:86:9f:29:61:7a:90:59:60:ec:
d0:ae:23:3e:6f:a0:c4:f8:26:7d:e8:77:a4:f1:3e:91:73:3d:
a6:f1:15:d8:64:17:50:93:59:87:f7:19:9a:4b:14:1c:9a:54:
61:f2:64:33:c1:d8:7c:63:7c:27:59:86:d8:76:d7:53:bd:e2:
b8:45:be:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:24:23 2025 by rpki-client