Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/gipXGc1wY_WyLcVkFAYEA_YdJf8.roa
File: gipXGc1wY_WyLcVkFAYEA_YdJf8.roa (raw, json)
Hash identifier: PQpJPQRdPObUjHsh5D2X7Bko5E9i28SO/24v0ub3cvM=
Subject key identifier: 82:2A:57:19:CD:70:63:F5:B2:2D:C5:64:14:06:04:03:F6:1D:25:FF
Certificate issuer: /CN=5806da5a59251275ceb18694e17415352aedd6aa
Certificate serial: 03BDA64C
Authority key identifier: 58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/gipXGc1wY_WyLcVkFAYEA_YdJf8.roa
Signing time: Sat 01 Jan 2022 05:55:52 +0000
ROA not before: Sat 01 Jan 2022 05:55:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43332
IP address blocks: 185.187.83.0/24 maxlen: 24
185.187.80.0/23 maxlen: 23
185.187.82.0/24 maxlen: 24
2a0b:9b80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62760524 (0x3bda64c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5806da5a59251275ceb18694e17415352aedd6aa
Validity
Not Before: Jan 1 05:55:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=822a5719cd7063f5b22dc56414060403f61d25ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:f3:f6:95:79:48:95:39:18:88:0c:fa:e5:42:
25:34:cf:60:22:1d:b9:8a:a4:16:15:01:c6:c9:4f:
86:52:56:f1:c1:82:6f:62:c9:06:6b:4c:ed:14:50:
b3:1b:c1:02:9f:2f:6b:bb:71:50:2d:26:dd:0b:ea:
95:1b:f7:39:81:e1:f6:27:ec:03:b6:e9:62:5c:38:
1f:35:c9:1b:ef:9b:dd:58:6f:93:cf:3c:b9:29:73:
c0:d4:c2:87:cf:45:db:d9:0a:0b:91:c3:d0:74:68:
70:1f:d1:f5:b9:38:64:d4:3c:19:69:5e:fc:6f:5b:
87:be:86:8e:da:7e:51:6a:15:2e:c2:da:43:43:37:
72:ec:d4:72:ba:7e:98:d7:b5:53:50:1c:27:bf:b4:
84:6c:91:f0:18:43:a1:fa:8d:5a:9b:98:51:24:52:
18:c9:51:46:c0:ef:c4:e5:fb:5e:97:0b:81:a9:e7:
e8:97:a0:64:75:54:ae:c9:0d:6c:cf:3c:b7:d2:78:
76:31:48:4d:41:e6:b9:f6:24:c8:5e:2b:ce:98:f0:
ab:88:b0:e9:c0:42:91:db:11:f6:26:2a:a5:ff:30:
89:fd:19:6a:78:f4:e6:f3:52:f9:d6:22:96:7c:1a:
37:e6:ca:65:eb:bb:d6:a1:29:83:7e:ae:8b:10:2e:
f3:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:2A:57:19:CD:70:63:F5:B2:2D:C5:64:14:06:04:03:F6:1D:25:FF
X509v3 Authority Key Identifier:
keyid:58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/gipXGc1wY_WyLcVkFAYEA_YdJf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/WAbaWlklEnXOsYaU4XQVNSrt1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.80.0/22
IPv6:
2a0b:9b80::/29
Signature Algorithm: sha256WithRSAEncryption
57:d6:03:06:62:f7:3f:47:6d:83:41:11:6f:f5:89:52:02:3f:
a5:71:fa:e1:6f:c1:6e:5a:48:6f:8a:22:cc:23:e4:87:1a:ac:
c1:7c:8f:27:4f:a8:d8:2a:47:0c:2d:9f:0e:57:32:8c:50:6e:
49:77:ca:37:4a:58:be:eb:40:e0:4e:8a:15:4b:0b:11:ea:fa:
9c:c8:d1:91:71:d7:4c:8e:02:0b:53:97:d3:ae:22:f1:59:56:
e3:35:bb:6d:6e:6e:89:64:46:54:e5:2c:98:68:c8:d2:93:6f:
f4:7b:12:3f:90:6c:7f:01:87:f1:05:fd:4c:db:74:9a:50:ac:
de:95:33:9e:b1:ae:be:f2:06:ec:da:de:3f:26:16:f1:5e:6b:
54:91:28:32:df:3b:d7:70:c0:7f:f9:90:df:f5:fe:7b:f0:fe:
a3:95:52:2f:7b:79:2b:fb:df:19:1b:8b:47:16:94:9e:33:07:
53:11:e9:5a:49:eb:85:11:eb:96:c5:45:9e:b7:c7:2d:3c:1c:
10:b5:62:f1:a8:e5:0e:02:96:54:d3:31:13:41:00:53:1e:86:
b7:27:59:27:21:47:5e:85:2e:b4:3b:87:c7:46:3b:5b:5b:ad:
5c:de:48:6e:e6:33:20:16:95:52:52:f7:23:d0:32:46:ca:f0:
31:41:ea:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 05:04:22 2025 by rpki-client