Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/1XC30zOav8CSGjgDLU2snejmjEA.roa
File: 1XC30zOav8CSGjgDLU2snejmjEA.roa (raw, json)
Hash identifier: /TdKfgVUJz1G/+ZoX9NDTA6jQGfm5WdmSSv1yAH10sg=
Subject key identifier: D5:70:B7:D3:33:9A:BF:C0:92:1A:38:03:2D:4D:AC:9D:E8:E6:8C:40
Certificate issuer: /CN=50779799a3b8e0f0f1e3c7498c05a33f85fbbbcd
Certificate serial: 0659F4A3
Authority key identifier: 50:77:97:99:A3:B8:E0:F0:F1:E3:C7:49:8C:05:A3:3F:85:FB:BB:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UHeXmaO44PDx48dJjAWjP4X7u80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/1XC30zOav8CSGjgDLU2snejmjEA.roa
Signing time: Tue 31 May 2022 12:04:13 +0000
ROA not before: Tue 31 May 2022 12:04:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206775
IP address blocks: 185.124.243.0/24 maxlen: 24
45.132.68.0/22 maxlen: 24
2a10:1340::/29 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106558627 (0x659f4a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50779799a3b8e0f0f1e3c7498c05a33f85fbbbcd
Validity
Not Before: May 31 12:04:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d570b7d3339abfc0921a38032d4dac9de8e68c40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2a:21:cd:e2:fa:b9:d5:f2:2a:7f:30:ed:19:
e6:90:b3:d3:27:7c:52:a5:c5:95:b6:74:0c:29:b5:
f3:c4:fd:ff:4c:d1:e6:a2:f2:22:4b:20:96:7f:44:
ff:f3:25:dd:9f:f4:1e:40:39:52:fe:b8:6d:81:c8:
6e:4a:29:0c:1a:64:28:56:82:ff:7c:58:aa:ad:5d:
05:25:37:30:83:66:3c:e6:94:3c:7d:69:4d:fb:ba:
85:cc:b2:fe:14:5a:8f:e9:7c:0a:f9:14:8d:04:f0:
00:9b:7f:af:c7:62:2f:6b:67:d9:ea:47:cb:5e:7e:
f1:5a:7c:78:e3:b2:d3:6d:25:77:2b:83:43:36:21:
ea:6b:1e:2f:d9:00:56:bc:ad:5b:7f:5f:cb:ee:de:
90:a7:06:66:fa:d5:d9:c9:fa:66:de:eb:10:bb:ec:
17:3c:03:a6:65:17:0c:a5:09:2a:0f:33:73:60:8a:
8e:b0:c1:94:e3:95:42:6d:2b:67:e8:d1:3a:4e:4c:
97:97:69:a9:a7:cd:0e:83:e2:44:d9:0a:ef:ab:30:
61:64:d4:8f:74:91:ee:a6:e0:2e:d8:11:18:ec:ac:
52:25:24:e0:d0:ce:4c:87:25:0b:b9:50:29:9c:fc:
0e:b0:e7:99:d9:53:c5:d8:d3:62:ed:83:ba:08:9d:
c7:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:70:B7:D3:33:9A:BF:C0:92:1A:38:03:2D:4D:AC:9D:E8:E6:8C:40
X509v3 Authority Key Identifier:
keyid:50:77:97:99:A3:B8:E0:F0:F1:E3:C7:49:8C:05:A3:3F:85:FB:BB:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UHeXmaO44PDx48dJjAWjP4X7u80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/1XC30zOav8CSGjgDLU2snejmjEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.68.0/22
185.124.243.0/24
IPv6:
2a10:1340::/29
Signature Algorithm: sha256WithRSAEncryption
56:8a:9d:42:91:c4:39:44:75:74:87:50:19:1d:3a:59:48:07:
43:0f:20:e0:7a:b8:17:01:06:89:93:7f:2c:7e:e9:5d:e2:ae:
9b:b3:10:52:e8:f1:de:4a:51:d0:a5:ed:4a:a2:23:5f:4d:aa:
70:63:32:17:2f:a3:3a:4e:1c:f5:c8:4f:7f:2d:bf:c7:3f:2e:
f4:c1:75:ce:22:4a:60:5e:b0:99:5b:99:fc:bb:35:89:e3:21:
f4:b0:b0:76:64:3f:ef:b9:12:41:16:ff:a9:f3:0b:f5:fc:d7:
ff:6c:44:89:aa:9b:e7:bc:cc:13:c5:06:04:4f:ee:91:68:80:
a0:98:b2:5f:f8:e5:a7:96:17:61:c4:11:58:b4:76:0c:b4:4a:
4e:e2:dd:a2:b1:a7:58:7c:62:2b:9b:d1:5b:48:81:b4:b4:d9:
cb:d1:e4:fd:62:df:71:ab:f0:2f:91:d5:64:ee:c6:d8:0f:89:
82:85:d2:5b:fc:46:f9:dc:8f:0d:3b:c3:75:c0:45:e3:32:c0:
48:94:4b:8c:78:e5:c3:36:ea:88:87:5d:af:f3:44:1c:cb:4b:
e0:91:ac:2f:9d:8d:73:98:1f:ed:86:9f:98:43:32:7d:40:65:
7c:34:1e:71:e3:e0:8c:b7:ce:e9:ca:ed:aa:b5:14:99:af:8a:
1c:a3:ad:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:18:27 2025 by rpki-client