Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/a31ddb-1fd2-461c-bfeb-82ee2d2b4289/1/ChVdQEUdwpAi376v8Flk05llwJw.roa
File: ChVdQEUdwpAi376v8Flk05llwJw.roa (raw, json)
Hash identifier: gXzgCO2U3Tpf2th6CzWhbgMGdzv9wcMNrwZDFXUuEh8=
Subject key identifier: 0A:15:5D:40:45:1D:C2:90:22:DF:BE:AF:F0:59:64:D3:99:65:C0:9C
Certificate issuer: /CN=e277538dec2efcd2f11cc637197d1d9a6fdae9d9
Certificate serial: 03692E52
Authority key identifier: E2:77:53:8D:EC:2E:FC:D2:F1:1C:C6:37:19:7D:1D:9A:6F:DA:E9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ndTjewu_NLxHMY3GX0dmm_a6dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/a31ddb-1fd2-461c-bfeb-82ee2d2b4289/1/ChVdQEUdwpAi376v8Flk05llwJw.roa
Signing time: Sat 01 Jan 2022 03:56:59 +0000
ROA not before: Sat 01 Jan 2022 03:56:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34941
IP address blocks: 85.118.200.0/21 maxlen: 21
185.112.136.0/22 maxlen: 22
2a06:6180::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57224786 (0x3692e52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e277538dec2efcd2f11cc637197d1d9a6fdae9d9
Validity
Not Before: Jan 1 03:56:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a155d40451dc29022dfbeaff05964d39965c09c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f6:55:e4:66:17:64:71:65:92:20:77:b4:32:
87:4b:8c:64:51:c0:fb:9b:2d:46:8f:d6:82:41:54:
21:de:79:47:d9:0b:e1:b2:d6:03:14:39:c0:5a:29:
c5:51:b3:9e:c7:96:7f:22:55:fb:f2:7a:46:84:63:
72:a9:fd:a1:fc:f1:1a:28:b8:cf:82:fe:8c:a6:34:
66:3a:f0:a6:6a:96:11:51:03:49:74:08:22:b2:73:
50:7e:79:cd:69:b5:55:ec:25:07:4e:eb:e3:d4:88:
00:01:0e:f1:ef:06:eb:1e:36:0d:3a:19:30:f7:8c:
65:30:81:4d:f2:c8:0b:dd:f3:96:fb:c9:82:e0:d1:
df:5b:8b:55:56:17:53:e9:96:96:e8:aa:74:d9:bc:
27:3e:c4:fc:15:95:b2:91:fb:6f:bb:3d:3b:5b:06:
22:71:35:37:07:49:02:0e:c5:7f:d2:b6:1e:4b:46:
02:fa:05:bf:e7:56:59:a6:d9:d6:5d:92:e0:aa:f4:
d0:4e:19:d7:d9:b0:37:3b:75:0a:b1:c5:6f:e7:03:
cc:de:2d:e5:4a:76:52:65:87:58:4a:94:15:8a:41:
61:b6:c0:d3:43:95:16:ef:50:cd:3f:b9:e8:2d:4a:
db:0a:d3:bd:a8:96:08:98:da:12:56:19:44:01:0a:
83:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:15:5D:40:45:1D:C2:90:22:DF:BE:AF:F0:59:64:D3:99:65:C0:9C
X509v3 Authority Key Identifier:
keyid:E2:77:53:8D:EC:2E:FC:D2:F1:1C:C6:37:19:7D:1D:9A:6F:DA:E9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ndTjewu_NLxHMY3GX0dmm_a6dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/a31ddb-1fd2-461c-bfeb-82ee2d2b4289/1/ChVdQEUdwpAi376v8Flk05llwJw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/a31ddb-1fd2-461c-bfeb-82ee2d2b4289/1/4ndTjewu_NLxHMY3GX0dmm_a6dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.118.200.0/21
185.112.136.0/22
IPv6:
2a06:6180::/29
Signature Algorithm: sha256WithRSAEncryption
2a:4e:47:e7:b3:24:d1:fd:0a:6a:2b:ba:37:b4:2d:b4:e6:a0:
2d:d3:2c:04:84:36:30:03:37:25:70:03:ec:fc:a8:e8:4e:1e:
b7:8c:79:88:53:c4:35:45:ad:89:f3:ef:84:f7:99:0f:e9:1c:
1d:8f:d1:e3:7c:f9:7b:34:ac:8d:d9:82:7c:00:66:c8:9c:ea:
50:9a:91:5a:af:78:09:c6:84:af:46:d3:b6:55:20:28:2d:75:
9e:bb:9c:cb:40:8d:3a:30:19:e3:0d:87:77:cf:37:45:8c:1b:
e6:ba:7a:7b:36:28:14:c4:d6:8c:2a:24:3c:b7:8e:63:00:fd:
08:54:9c:00:2b:0c:91:78:2e:8e:43:f2:d6:fa:d7:e5:52:fa:
d7:2c:18:76:b0:25:dd:11:11:70:bd:c6:38:91:49:15:dd:7a:
bb:fd:4f:cf:1c:c9:41:87:cd:32:9b:99:74:3a:6a:da:9e:63:
20:11:ca:5d:e1:a8:5a:c4:67:15:12:ef:69:12:5f:f2:2a:29:
ae:7e:be:62:57:68:c5:a7:22:0d:16:20:8c:ed:18:82:10:2f:
f0:a3:db:bd:20:d0:ac:58:55:22:3d:9e:03:94:7d:f0:59:5f:
ee:d9:ae:b8:41:65:6d:71:9b:13:4b:1e:b9:9d:aa:0d:73:22:
b5:c5:32:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:23:20 2025 by rpki-client