Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/76dba0-d86b-4d84-b15a-4d6d1256bf9b/1/M1eDoEsZRETUMHXHFierkZIJgac.roa
File: M1eDoEsZRETUMHXHFierkZIJgac.roa (raw, json)
Hash identifier: HTnF8T1QhcVCqQ58b9uhILlNecS3uLqBp9mG3hQXfb8=
Subject key identifier: 33:57:83:A0:4B:19:44:44:D4:30:75:C7:16:27:AB:91:92:09:81:A7
Certificate issuer: /CN=be5271f0e1587c14434f2480f91410185507cfa1
Certificate serial: 05A48045
Authority key identifier: BE:52:71:F0:E1:58:7C:14:43:4F:24:80:F9:14:10:18:55:07:CF:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vlJx8OFYfBRDTySA-RQQGFUHz6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/76dba0-d86b-4d84-b15a-4d6d1256bf9b/1/M1eDoEsZRETUMHXHFierkZIJgac.roa
Signing time: Sat 01 Jan 2022 15:57:39 +0000
ROA not before: Sat 01 Jan 2022 15:57:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202604
IP address blocks: 185.159.96.0/22 maxlen: 23
2a07:b380::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94666821 (0x5a48045)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be5271f0e1587c14434f2480f91410185507cfa1
Validity
Not Before: Jan 1 15:57:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=335783a04b194444d43075c71627ab91920981a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:6d:17:ee:9b:10:71:59:53:90:64:30:dd:55:
38:73:05:46:25:c1:80:cb:56:0b:65:46:a4:a8:8a:
c3:da:16:3f:ab:1a:cc:14:e1:76:8d:3d:e0:26:91:
64:1d:c6:f5:ed:17:23:f3:6f:f6:33:37:d4:25:0d:
f1:ee:04:1b:f6:07:c5:bd:00:f3:06:4b:5c:dd:fb:
0a:d5:7f:6c:b8:b5:ed:5e:0f:8d:78:71:2d:f6:b3:
af:13:d1:f3:d0:ff:ad:94:e4:0a:ea:97:88:95:c8:
2f:7f:d5:ef:49:e0:b3:98:23:e4:fc:a8:1c:da:31:
3a:9c:3e:49:9f:7c:7a:0b:5f:89:c1:cc:ad:2a:1a:
22:51:ee:fe:c0:f4:1b:1c:77:63:84:54:8c:51:b8:
ad:9b:88:dc:95:0b:4a:b7:1b:0e:25:24:c4:f6:23:
51:10:b5:f8:97:88:ca:11:bd:f9:d7:d1:e3:42:20:
72:1b:6e:be:36:b1:14:99:b5:7e:a4:76:50:04:ca:
37:30:35:a8:88:d6:ad:f2:32:ef:9e:cb:5c:a0:3e:
9d:7e:f2:dd:b1:b7:c9:92:1a:d3:9f:c0:72:d9:20:
40:a7:ba:67:61:78:87:a1:02:0b:b2:84:c2:c1:52:
94:a7:1a:a3:6c:de:57:e0:8b:41:f7:fc:2b:ca:09:
71:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:57:83:A0:4B:19:44:44:D4:30:75:C7:16:27:AB:91:92:09:81:A7
X509v3 Authority Key Identifier:
keyid:BE:52:71:F0:E1:58:7C:14:43:4F:24:80:F9:14:10:18:55:07:CF:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vlJx8OFYfBRDTySA-RQQGFUHz6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/76dba0-d86b-4d84-b15a-4d6d1256bf9b/1/M1eDoEsZRETUMHXHFierkZIJgac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/76dba0-d86b-4d84-b15a-4d6d1256bf9b/1/vlJx8OFYfBRDTySA-RQQGFUHz6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.159.96.0/22
IPv6:
2a07:b380::/29
Signature Algorithm: sha256WithRSAEncryption
3e:b0:b0:28:9b:68:f3:60:df:90:62:f4:76:88:b6:3d:ea:d0:
b9:60:cb:cf:cd:20:4f:e6:c0:4f:64:09:9f:44:1c:70:00:6c:
bb:2b:37:2a:22:48:9d:71:06:41:0e:2e:73:c3:bb:12:b3:cb:
cf:f3:62:d3:e7:8b:df:86:10:67:d2:95:2a:5f:a9:a7:9b:42:
38:3e:db:8e:2a:da:d9:96:b5:88:a9:3c:26:4d:12:eb:8a:a9:
e1:b1:5b:b6:87:82:08:c4:57:17:ca:c2:61:42:90:e5:74:7f:
58:57:f6:10:fa:ae:04:3c:ac:8a:2d:fb:3f:e4:d9:d6:30:1e:
93:7e:7f:5f:4a:b9:82:2a:48:37:27:e9:0f:6b:0f:b4:1e:47:
05:ee:c0:ea:d6:95:4c:84:7a:b0:d2:ce:2b:01:8e:f8:6e:ed:
d9:93:8b:33:f6:b1:1c:68:6a:1c:be:31:3b:7b:81:1b:a8:fb:
ae:c5:a1:b0:5b:a9:a8:ba:e0:64:7c:02:b8:5c:7f:be:98:9c:
10:b5:e9:f3:26:3a:ce:2d:da:2b:4b:ef:97:e5:cc:cb:aa:42:
ef:f2:96:01:33:91:68:39:fc:31:e2:3a:94:35:e0:04:65:d9:
2c:0d:27:56:d4:3e:b1:93:1a:c8:c5:e8:a6:e4:66:b4:4d:01:
a9:6f:c5:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:17:45 2025 by rpki-client