Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/gUBpl2VdwfrFgbzDWr3myWy7m6Y.roa
File: gUBpl2VdwfrFgbzDWr3myWy7m6Y.roa (raw, json)
Hash identifier: byCckWHboe2v9eTb17gnog7HFKRdnvVBX8XD/6s33TU=
Subject key identifier: 81:40:69:97:65:5D:C1:FA:C5:81:BC:C3:5A:BD:E6:C9:6C:BB:9B:A6
Certificate issuer: /CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Certificate serial: 027E08BA
Authority key identifier: 85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/gUBpl2VdwfrFgbzDWr3myWy7m6Y.roa
Signing time: Wed 09 Feb 2022 10:02:12 +0000
ROA not before: Wed 09 Feb 2022 10:02:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211717
IP address blocks: 185.51.44.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41814202 (0x27e08ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Validity
Not Before: Feb 9 10:02:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81406997655dc1fac581bcc35abde6c96cbb9ba6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:42:34:61:87:61:3e:7a:0e:d9:10:16:2e:f9:
0f:86:8a:60:d1:e5:ca:5a:9a:ae:4e:57:40:65:90:
0b:bc:bc:ab:93:20:b9:60:93:cc:49:a0:eb:da:86:
cf:34:77:9c:5a:b2:3e:ba:14:3d:da:93:e1:02:2a:
7b:1c:50:ff:e8:86:20:66:30:4f:23:3e:b2:eb:ab:
25:01:a9:ae:3d:17:ef:b0:8e:b4:cf:7f:7a:79:49:
18:b4:c5:3a:c7:cc:16:4b:6e:e9:ae:d1:72:90:12:
d1:63:0f:5c:ad:a4:21:b4:77:82:49:1a:8d:05:eb:
b6:eb:83:83:02:c6:fd:78:38:97:5c:f4:53:45:84:
fe:d3:53:5e:b3:15:7d:69:1b:84:c4:3a:de:df:fc:
9d:99:0a:db:cd:d0:7e:f9:8c:9f:a4:77:c9:33:a8:
ee:ab:24:03:d3:b3:03:39:c3:fd:72:3d:47:ea:11:
b8:d0:fc:d7:47:a9:a8:b2:01:89:b7:b1:81:5c:27:
3d:7b:3b:41:fa:5d:fd:1e:7b:d7:ae:14:7f:9e:b9:
72:12:05:54:75:a0:7e:18:21:d4:0f:2b:0b:c8:8a:
86:23:24:b1:d9:1e:35:f8:fd:ec:98:a2:74:e5:13:
19:d0:e8:6b:85:e2:36:c0:3f:8a:95:b9:32:92:35:
cb:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:40:69:97:65:5D:C1:FA:C5:81:BC:C3:5A:BD:E6:C9:6C:BB:9B:A6
X509v3 Authority Key Identifier:
keyid:85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/gUBpl2VdwfrFgbzDWr3myWy7m6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.44.0/22
Signature Algorithm: sha256WithRSAEncryption
47:6d:e4:fc:fd:ea:c7:21:90:48:9e:8f:f7:50:bf:69:e4:c3:
fa:36:5b:ec:5a:f7:7e:01:aa:d1:92:c2:75:f9:63:ef:8a:be:
6d:54:52:8f:df:96:56:2e:a5:ed:6d:45:72:cf:96:65:d7:9b:
16:18:10:e9:87:dd:43:db:2e:a3:ee:74:fd:49:c1:0a:0a:ee:
58:4d:fc:ac:b8:3c:0c:a8:1b:50:65:8a:4a:90:98:aa:01:99:
90:c9:6c:64:75:8a:4c:a5:29:4a:86:2d:89:9b:b7:36:c0:56:
98:07:20:f1:89:8a:93:65:d0:ec:46:ed:24:bb:24:a6:be:e6:
60:51:76:ed:a5:da:8f:7e:56:25:21:6e:f4:d1:ce:0e:e3:2b:
21:7b:17:de:3c:1f:fb:cc:e7:75:22:30:4b:a0:b6:4e:54:b8:
ab:bb:ac:0b:40:a3:a5:b6:73:d3:11:7a:e8:69:8d:3d:ef:29:
f0:3e:03:6e:4a:25:75:43:d6:50:7b:3f:0b:d5:4f:de:2f:bf:
1b:e5:d5:e0:9f:70:4a:fc:2b:00:3b:75:5b:a2:5a:46:b2:96:
05:f8:15:cd:e4:56:d0:fb:06:16:b5:51:07:26:c3:68:07:10:
e1:9b:0b:aa:ac:81:d4:39:b2:71:08:19:02:75:30:d6:f0:b9:
fd:41:61:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:50:26 2025 by rpki-client