Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/c17c15-a142-4b37-b8fe-a3a3eb879f2b/1/V5ezUSyhoCyWIloct4l6z8mFWlo.roa
File: V5ezUSyhoCyWIloct4l6z8mFWlo.roa (raw, json)
Hash identifier: CahZr1gEVq4SlLgBhZwwMSNelZrZl1O5ObB9OL9EwfA=
Subject key identifier: 57:97:B3:51:2C:A1:A0:2C:96:22:5A:1C:B7:89:7A:CF:C9:85:5A:5A
Certificate issuer: /CN=03c33e43ef56527a169d6ac6d7e62c63d1973051
Certificate serial: 0181D3B9F5ADF94165FC351A6DDBFAE7B602
Authority key identifier: 03:C3:3E:43:EF:56:52:7A:16:9D:6A:C6:D7:E6:2C:63:D1:97:30:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A8M-Q-9WUnoWnWrG1-YsY9GXMFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/c17c15-a142-4b37-b8fe-a3a3eb879f2b/1/V5ezUSyhoCyWIloct4l6z8mFWlo.roa
Signing time: Wed 06 Jul 2022 13:36:28 +0000
ROA not before: Wed 06 Jul 2022 13:36:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198930
IP address blocks: 77.87.185.0/24 maxlen: 24
185.66.176.0/22 maxlen: 22
2a05:900::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d3:b9:f5:ad:f9:41:65:fc:35:1a:6d:db:fa:e7:b6:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03c33e43ef56527a169d6ac6d7e62c63d1973051
Validity
Not Before: Jul 6 13:36:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5797b3512ca1a02c96225a1cb7897acfc9855a5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:41:21:6d:4a:fd:f6:81:5f:7c:0e:99:aa:4d:
79:a2:8e:47:5b:43:36:22:ff:80:e1:e6:64:e5:27:
31:9c:47:bb:b6:7c:bf:c8:18:89:80:70:01:4e:8c:
b5:63:dd:5e:1f:ad:fe:00:ab:b9:80:b4:fd:6d:cf:
aa:d4:a1:5d:90:6d:b6:11:68:11:6c:77:27:ac:38:
89:48:8a:2c:57:7a:63:59:45:6b:45:68:e6:2a:32:
3a:f8:87:ce:a1:52:1f:7d:12:1c:c2:c4:c0:61:b4:
aa:4e:4c:30:72:c2:f2:0c:86:9e:e9:7b:9d:7a:62:
8d:16:e3:94:eb:f6:40:07:a0:ab:de:85:a9:c8:06:
c5:d6:73:d3:6d:98:0e:45:e1:03:75:cf:d2:4c:d0:
69:84:23:88:04:54:e2:f0:0b:2a:7f:af:1e:f8:e8:
53:11:a1:64:be:28:6c:01:55:b9:53:c2:b3:09:21:
2d:ca:07:be:87:64:22:6c:ef:a9:89:59:15:fe:e3:
8d:a9:50:8b:10:e3:0a:fe:0b:48:29:c5:22:12:86:
3f:1f:2a:da:54:b8:a5:40:5d:a1:d6:87:1a:e8:4d:
02:e4:cf:37:a7:87:a8:9c:de:11:c1:f0:55:3a:29:
a0:5d:61:b5:62:f6:2a:31:84:3b:06:85:ba:05:4b:
af:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:97:B3:51:2C:A1:A0:2C:96:22:5A:1C:B7:89:7A:CF:C9:85:5A:5A
X509v3 Authority Key Identifier:
keyid:03:C3:3E:43:EF:56:52:7A:16:9D:6A:C6:D7:E6:2C:63:D1:97:30:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A8M-Q-9WUnoWnWrG1-YsY9GXMFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/c17c15-a142-4b37-b8fe-a3a3eb879f2b/1/V5ezUSyhoCyWIloct4l6z8mFWlo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/c17c15-a142-4b37-b8fe-a3a3eb879f2b/1/A8M-Q-9WUnoWnWrG1-YsY9GXMFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.87.185.0/24
185.66.176.0/22
IPv6:
2a05:900::/29
Signature Algorithm: sha256WithRSAEncryption
aa:59:7c:97:83:3a:ca:92:65:c7:df:39:e1:7c:35:92:14:6d:
b9:08:1f:60:9f:97:13:81:82:6f:87:47:56:c7:5b:36:c4:02:
54:3e:af:6c:ea:9d:06:21:6d:fe:a2:72:9c:8b:c5:b4:70:e8:
b1:f4:d7:11:8d:81:2e:c3:50:60:5c:de:41:61:83:1b:45:00:
4a:a1:24:46:d1:46:3a:0e:0d:fd:b1:dd:70:41:00:e3:33:22:
ca:87:27:3a:ed:26:87:ce:8c:46:cf:4b:4b:b0:2d:a7:59:b4:
ef:6c:88:0c:24:bd:7b:7b:77:94:bb:e9:fb:a1:90:94:03:dd:
b0:b7:26:e8:dd:58:92:62:6d:92:79:3f:8a:b3:1f:98:a0:ae:
cd:1f:2a:ac:44:ff:0d:c9:47:bd:5f:55:bc:90:1a:0a:2f:15:
a7:99:57:b0:c9:f9:46:4c:ed:aa:ff:3f:0e:58:54:34:85:75:
ad:43:70:e7:34:d6:7e:01:58:5f:e7:1c:a3:62:72:42:d4:7d:
25:96:a9:fd:3f:aa:a7:94:65:1b:5e:c5:03:33:46:20:55:e0:
36:55:62:50:38:24:b5:af:47:69:8a:9d:58:dd:cb:4b:05:68:
b4:33:75:fd:c5:63:95:cc:c7:ba:92:61:42:a2:8f:d5:51:ed:
a7:02:f2:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 18:10:03 2025 by rpki-client