Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/69cbc0-b6c5-4e67-a73b-2b65a7a8be8c/1/jRLUe0eDOHfpvtnUn2gYDuW97n8.roa
File: jRLUe0eDOHfpvtnUn2gYDuW97n8.roa (raw, json)
Hash identifier: SVTraLtiI1eObdYtgq4WVsDscY9fLG4H+lORMpeE2EY=
Subject key identifier: 8D:12:D4:7B:47:83:38:77:E9:BE:D9:D4:9F:68:18:0E:E5:BD:EE:7F
Certificate issuer: /CN=68b22eea4a4a3b81654a227eda94e0e75937b015
Certificate serial: 03F75325
Authority key identifier: 68:B2:2E:EA:4A:4A:3B:81:65:4A:22:7E:DA:94:E0:E7:59:37:B0:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aLIu6kpKO4FlSiJ-2pTg51k3sBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/69cbc0-b6c5-4e67-a73b-2b65a7a8be8c/1/jRLUe0eDOHfpvtnUn2gYDuW97n8.roa
Signing time: Tue 10 May 2022 13:47:02 +0000
ROA not before: Tue 10 May 2022 13:47:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204348
IP address blocks: 185.252.112.0/24 maxlen: 24
185.252.115.0/24 maxlen: 24
185.252.113.0/24 maxlen: 24
185.249.255.0/24 maxlen: 24
2a0e:e7c3::/32 maxlen: 32
2a04:b804::/32 maxlen: 32
2a04:b800::/32 maxlen: 32
2a0e:e7c7::/32 maxlen: 32
2a04:b803::/32 maxlen: 32
2a0e:e7c0::/32 maxlen: 32
2a04:b805::/32 maxlen: 32
2a10:a6c0::/29 maxlen: 29
2a0e:e7c6::/32 maxlen: 32
2a04:b802::/32 maxlen: 32
2a0e:e7c1::/32 maxlen: 32
2a0e:e7c5::/32 maxlen: 32
2a04:b806::/32 maxlen: 32
2a0e:e7c4::/32 maxlen: 32
2a0e:e7c2::/32 maxlen: 32
2a04:b807::/32 maxlen: 32
2a04:b801::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66540325 (0x3f75325)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68b22eea4a4a3b81654a227eda94e0e75937b015
Validity
Not Before: May 10 13:47:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d12d47b47833877e9bed9d49f68180ee5bdee7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:74:92:73:1a:ce:0c:a2:d9:15:8f:7b:20:91:
17:1f:1c:4c:2d:62:6a:e5:4c:6b:ad:0b:47:e7:6c:
cc:60:cc:1c:42:7a:72:2f:20:59:64:35:ca:3d:df:
ff:04:32:8b:9b:e8:3d:50:59:13:20:9b:13:30:9c:
4f:bb:27:36:b5:6a:ff:03:5e:15:5c:c6:ac:90:28:
50:26:81:42:6c:e4:89:e8:d2:2f:c6:99:34:d0:48:
38:5e:36:6f:0d:3e:ed:2a:ac:c2:d7:70:5d:b8:64:
bb:50:5a:60:34:5c:f8:46:5a:8b:03:a9:e9:e8:af:
d6:8c:3d:dc:8d:70:c2:e5:bb:8f:55:eb:49:08:d5:
7f:46:a8:57:75:f1:96:13:ee:2f:84:89:70:e9:61:
81:7c:85:3f:59:1b:7f:ee:53:c9:3f:ac:cb:25:22:
65:42:a5:4a:a1:12:34:da:a4:27:d7:a0:93:66:f7:
54:b7:d9:69:7a:15:e1:a6:de:e6:24:e7:b3:3a:0a:
bc:e9:23:ec:d1:1f:d6:9b:17:d7:2a:75:ae:54:0d:
2f:01:24:29:f3:a8:c1:d8:dc:c2:ca:36:b6:cc:fe:
e7:ff:ac:14:f9:e3:f3:c3:a3:a5:eb:4a:3e:0f:b2:
e0:f1:7e:29:30:15:3c:b5:fd:d8:0b:af:d9:15:49:
5c:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:12:D4:7B:47:83:38:77:E9:BE:D9:D4:9F:68:18:0E:E5:BD:EE:7F
X509v3 Authority Key Identifier:
keyid:68:B2:2E:EA:4A:4A:3B:81:65:4A:22:7E:DA:94:E0:E7:59:37:B0:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aLIu6kpKO4FlSiJ-2pTg51k3sBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/69cbc0-b6c5-4e67-a73b-2b65a7a8be8c/1/jRLUe0eDOHfpvtnUn2gYDuW97n8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/69cbc0-b6c5-4e67-a73b-2b65a7a8be8c/1/aLIu6kpKO4FlSiJ-2pTg51k3sBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.255.0/24
185.252.112.0/23
185.252.115.0/24
IPv6:
2a04:b800::/29
2a0e:e7c0::/29
2a10:a6c0::/29
Signature Algorithm: sha256WithRSAEncryption
0e:02:04:38:92:60:67:bd:39:89:b5:8f:17:3f:4a:da:7e:8a:
b8:92:10:0e:e1:40:58:b2:8a:ae:57:40:ae:e1:61:d8:33:c6:
9c:f3:16:c7:ad:52:fe:c2:01:11:56:fb:32:27:bb:10:db:a9:
fe:76:3a:00:e5:6b:8e:bf:d9:78:f0:f0:32:ca:06:17:b8:79:
7b:4a:ff:c2:ed:e6:45:8b:fd:4d:0f:18:07:b4:3b:4b:91:a3:
f7:5f:dd:47:14:37:f8:b6:34:d9:24:48:6e:67:e1:89:5b:7d:
85:53:44:77:1d:83:e7:87:e8:4f:44:4c:ee:ed:3f:93:65:aa:
22:62:75:10:ba:53:b1:7c:3d:cc:41:36:bd:ef:f9:26:64:4d:
68:93:2d:f1:13:80:30:00:db:2d:94:a3:9d:7d:1e:21:6f:58:
b0:42:04:be:08:82:28:29:fd:7a:6b:35:e7:17:9e:a9:96:5a:
69:e8:c5:eb:b4:6b:2f:5f:d5:83:2b:5b:05:32:3a:5b:aa:27:
00:3e:0d:8b:50:c3:b8:f4:ec:26:33:87:a5:24:ed:3b:46:60:
f5:af:00:db:eb:8d:7e:e3:ea:ea:f6:55:8b:35:1d:68:44:6b:
f8:a5:c7:71:f4:e0:56:2f:b1:2b:3e:41:96:f3:ad:2c:55:81:
26:3e:87:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:13:10 2025 by rpki-client