Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/78bd05-6006-462f-a187-0ecf4220023e/1/JxMEFEGpU8sb1EcQaOJeQjmxLSk.roa
File: JxMEFEGpU8sb1EcQaOJeQjmxLSk.roa (raw, json)
Hash identifier: 6SntGI9oIBmEOOVMaddUtzsb1ZiozgSLT1c1xIAAK3w=
Subject key identifier: 27:13:04:14:41:A9:53:CB:1B:D4:47:10:68:E2:5E:42:39:B1:2D:29
Certificate issuer: /CN=7e6750e58ca0a2b75f2c53bdf6f61ff63ec831cb
Certificate serial: 0F7EDFF0
Authority key identifier: 7E:67:50:E5:8C:A0:A2:B7:5F:2C:53:BD:F6:F6:1F:F6:3E:C8:31:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fmdQ5YygordfLFO99vYf9j7IMcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/78bd05-6006-462f-a187-0ecf4220023e/1/JxMEFEGpU8sb1EcQaOJeQjmxLSk.roa
Signing time: Sat 01 Jan 2022 06:58:27 +0000
ROA not before: Sat 01 Jan 2022 06:58:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29504
IP address blocks: 185.193.84.0/22 maxlen: 22
2a0a:3640::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 259973104 (0xf7edff0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e6750e58ca0a2b75f2c53bdf6f61ff63ec831cb
Validity
Not Before: Jan 1 06:58:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2713041441a953cb1bd4471068e25e4239b12d29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:68:08:db:2b:ad:74:b9:f2:23:d0:92:b4:a8:
0f:02:f5:26:9f:9e:5b:fe:79:b9:d2:d1:c7:50:57:
83:61:dc:26:1d:51:63:7c:09:39:11:07:1f:22:aa:
8c:db:21:12:1a:8e:18:c5:40:38:ed:65:f7:b1:f7:
d1:b0:65:60:e1:2e:7e:b0:72:c2:da:0b:d5:4f:53:
f8:8f:d2:d7:2b:2d:2a:49:3f:42:a0:bd:5b:17:78:
7b:62:2e:38:52:6e:93:79:be:2f:57:80:18:06:87:
c0:aa:85:13:bb:f0:71:58:ff:6d:9c:28:47:b1:19:
ee:30:d1:84:fe:67:c1:9e:ae:b0:d3:b9:57:45:3b:
7a:d9:64:97:f0:f2:4b:ba:a8:79:be:76:f2:ee:e4:
47:8d:da:25:96:70:b3:53:08:b8:46:cb:86:79:7f:
5d:a0:bd:53:d4:39:0d:9c:54:d9:ab:fc:4d:7d:2a:
e9:d9:f0:45:0f:1e:09:f9:37:e3:bb:6c:d6:75:92:
3d:64:59:4e:26:4e:6c:50:65:bc:b9:c5:9b:49:6d:
cd:b1:1f:ac:c8:54:a3:2f:a2:e9:4c:28:02:47:40:
de:fd:b8:58:2b:a5:47:32:06:65:a3:95:3f:e4:6b:
a2:f4:78:a2:e4:f6:bf:a8:48:9f:bc:21:94:9b:76:
4b:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:13:04:14:41:A9:53:CB:1B:D4:47:10:68:E2:5E:42:39:B1:2D:29
X509v3 Authority Key Identifier:
keyid:7E:67:50:E5:8C:A0:A2:B7:5F:2C:53:BD:F6:F6:1F:F6:3E:C8:31:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fmdQ5YygordfLFO99vYf9j7IMcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/78bd05-6006-462f-a187-0ecf4220023e/1/JxMEFEGpU8sb1EcQaOJeQjmxLSk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/78bd05-6006-462f-a187-0ecf4220023e/1/fmdQ5YygordfLFO99vYf9j7IMcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.193.84.0/22
IPv6:
2a0a:3640::/29
Signature Algorithm: sha256WithRSAEncryption
25:12:af:76:97:28:c7:02:a6:06:76:b7:78:ed:01:97:a2:b3:
40:f1:49:f6:df:66:9d:f8:7e:4e:b5:e1:0f:6d:a8:e3:b6:d1:
ba:f2:f1:c7:48:2f:ff:20:33:5a:40:d5:af:10:4c:85:05:f6:
1c:7b:c0:a9:39:a1:71:eb:92:1c:b3:41:40:2a:c4:d8:c7:6d:
a2:46:32:90:a1:fd:ad:b7:c3:e6:ab:f8:3e:3b:40:71:4c:f1:
40:ff:cf:44:27:50:e6:b4:a5:ee:cf:b3:ce:e2:fe:2d:5d:3e:
ad:39:3f:8c:e1:6e:48:1c:9d:16:9f:24:83:f2:1d:4d:8d:97:
d3:fb:32:14:df:3d:66:2f:6c:98:0a:d8:96:a1:5f:f4:f8:d7:
63:93:c5:47:9a:ee:33:6e:35:01:cd:e9:49:54:09:54:dc:d8:
b3:2f:31:9f:4e:92:ab:d2:5f:47:65:e7:67:dc:ee:c2:c8:05:
09:d6:04:dd:0c:ef:00:8e:41:06:e2:8e:76:50:b0:c7:91:68:
d2:45:50:a3:d5:e8:a8:30:5b:79:d3:33:91:62:aa:fb:39:12:
48:fc:66:37:1d:83:78:d9:94:49:63:12:9a:38:57:69:41:9e:
5e:30:b8:f2:6e:fd:c1:ee:32:02:ed:61:41:28:20:a3:63:cb:
88:57:d7:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:47:13 2025 by rpki-client