Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/060720-7320-49b5-89ab-8d2a653ba999/1/UiSYv7t74UgLhmVzbcM5jtoZJWk.roa
File: UiSYv7t74UgLhmVzbcM5jtoZJWk.roa (raw, json)
Hash identifier: QvgQtczjUqKH0ycVlUgmo/z2jZVpIk+hVVCWaaKR/1U=
Subject key identifier: 52:24:98:BF:BB:7B:E1:48:0B:86:65:73:6D:C3:39:8E:DA:19:25:69
Certificate issuer: /CN=ff1ba40007ccdcd0930f1a2bdc4b02e29945767a
Certificate serial: 089F50F2
Authority key identifier: FF:1B:A4:00:07:CC:DC:D0:93:0F:1A:2B:DC:4B:02:E2:99:45:76:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_xukAAfM3NCTDxor3EsC4plFdno.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/060720-7320-49b5-89ab-8d2a653ba999/1/UiSYv7t74UgLhmVzbcM5jtoZJWk.roa
Signing time: Sat 01 Jan 2022 04:02:18 +0000
ROA not before: Sat 01 Jan 2022 04:02:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50300
IP address blocks: 185.104.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144658674 (0x89f50f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff1ba40007ccdcd0930f1a2bdc4b02e29945767a
Validity
Not Before: Jan 1 04:02:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=522498bfbb7be1480b8665736dc3398eda192569
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:44:c7:10:25:8d:2b:29:88:1f:df:5b:9c:12:
7e:63:e6:d3:90:8d:06:00:06:b8:9d:af:cb:e2:1d:
a8:71:f1:0d:93:00:ce:b9:55:4b:a4:da:cb:18:90:
9f:a0:98:90:77:5d:35:2d:d7:ab:2e:87:c9:ed:3e:
db:d3:89:55:26:7f:d6:7e:cc:c3:9a:27:39:92:d2:
00:f0:3b:53:b3:98:a3:90:c0:ea:20:e8:68:59:b9:
96:e0:9d:1a:83:15:df:ca:05:33:49:a4:94:a4:ce:
ee:27:b0:96:aa:88:8a:b0:58:0e:e7:6e:ba:0a:63:
8f:5c:db:1c:db:2f:df:43:a1:6a:3a:16:13:e6:d6:
b0:c7:9d:b9:4c:a7:00:ec:b8:81:7c:eb:4a:71:be:
b0:08:06:e9:88:42:08:9f:fb:76:c9:57:3c:a4:f8:
6a:b3:66:7c:71:c0:58:2b:8d:4f:a0:82:4c:af:26:
f8:29:36:b7:6e:53:4c:58:7c:c6:6e:3d:31:52:af:
87:8a:45:40:c1:6d:13:01:a9:46:0c:16:3a:8f:dd:
67:05:6a:16:a0:39:22:bc:d0:0f:a3:22:eb:fc:79:
72:2b:ad:f6:16:68:1a:71:b3:8c:1d:cf:70:1b:68:
90:23:56:03:2e:04:19:33:e4:7b:67:9f:8b:f0:cf:
1a:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:24:98:BF:BB:7B:E1:48:0B:86:65:73:6D:C3:39:8E:DA:19:25:69
X509v3 Authority Key Identifier:
keyid:FF:1B:A4:00:07:CC:DC:D0:93:0F:1A:2B:DC:4B:02:E2:99:45:76:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_xukAAfM3NCTDxor3EsC4plFdno.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/060720-7320-49b5-89ab-8d2a653ba999/1/UiSYv7t74UgLhmVzbcM5jtoZJWk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/060720-7320-49b5-89ab-8d2a653ba999/1/_xukAAfM3NCTDxor3EsC4plFdno.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.104.136.0/24
Signature Algorithm: sha256WithRSAEncryption
99:a7:25:15:cf:53:5e:a0:40:36:0c:18:9b:d7:ae:29:24:5d:
89:8d:a1:79:b4:30:cf:c9:0a:f6:23:df:1a:38:2f:e7:0b:2f:
b2:99:3d:42:90:47:23:1f:56:01:42:04:24:64:10:27:cb:d1:
6b:c4:bb:de:a4:de:00:60:fd:e0:9f:6a:04:62:8a:12:82:fe:
78:54:13:f9:34:26:94:63:0f:77:03:90:90:dd:61:8c:fa:da:
25:56:d2:a6:41:af:fc:b4:92:53:70:25:9e:ee:0c:f1:66:f4:
94:07:10:a9:80:2c:71:7c:f3:5e:d7:16:d3:f9:c3:34:ec:a8:
01:3a:09:52:68:af:a1:0e:73:a4:29:7e:e5:ed:e4:3f:8a:4e:
17:bd:37:d1:f2:c7:e0:be:d6:52:46:6b:29:72:b1:7c:92:c6:
69:a3:f3:29:ae:de:ee:58:d2:0b:e2:b8:fd:c1:c0:93:ec:25:
30:f7:fe:55:6c:eb:c4:ed:64:7f:4a:ff:ce:14:73:a8:cd:2c:
c9:c4:f3:92:87:52:5a:be:05:fa:fc:5c:4a:37:dc:81:dc:d4:
bf:7a:e0:14:4c:c3:bd:c3:82:e6:99:e2:3f:33:6e:fe:35:06:
ff:60:63:6e:bb:ae:cf:04:22:b1:64:91:c8:49:81:f4:33:af:
8a:f8:5c:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 02:24:28 2025 by rpki-client