Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/5fc80e-a095-4c20-90e4-2c0f98a74966/1/1R-jFBzKh_3ubaONFatgakUlmv0.roa
File: 1R-jFBzKh_3ubaONFatgakUlmv0.roa (raw, json)
Hash identifier: huuEYvXErrqJAidSD4D2mvtGeBEX7+Lep4iwx847y3w=
Subject key identifier: D5:1F:A3:14:1C:CA:87:FD:EE:6D:A3:8D:15:AB:60:6A:45:25:9A:FD
Certificate issuer: /CN=b37910da1f3a43f96b58f21905eb58f643d0267e
Certificate serial: 326CD4E0
Authority key identifier: B3:79:10:DA:1F:3A:43:F9:6B:58:F2:19:05:EB:58:F6:43:D0:26:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s3kQ2h86Q_lrWPIZBetY9kPQJn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/5fc80e-a095-4c20-90e4-2c0f98a74966/1/1R-jFBzKh_3ubaONFatgakUlmv0.roa
Signing time: Sat 01 Jan 2022 05:53:52 +0000
ROA not before: Sat 01 Jan 2022 05:53:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203315
IP address blocks: 92.53.240.0/24 maxlen: 24
92.53.243.0/24 maxlen: 24
92.53.241.0/24 maxlen: 24
92.53.244.0/24 maxlen: 24
185.64.12.0/24 maxlen: 24
92.53.242.0/24 maxlen: 24
2a00:85c0:4::/48 maxlen: 48
2a00:85c0:5::/48 maxlen: 48
2a00:85c0:3::/48 maxlen: 48
2a00:85c0:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 845993184 (0x326cd4e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37910da1f3a43f96b58f21905eb58f643d0267e
Validity
Not Before: Jan 1 05:53:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d51fa3141cca87fdee6da38d15ab606a45259afd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:44:48:a5:99:a9:98:f1:61:d5:d4:ad:85:78:
a8:af:24:d1:5b:8c:8f:30:9e:40:45:0d:4c:e7:bd:
db:8c:0f:a7:1d:8b:7f:cd:95:2d:85:57:89:8e:22:
1d:a7:c6:17:2e:42:71:30:90:67:18:6d:1c:ef:00:
f0:f8:21:ed:fb:e3:be:fe:d7:d4:2b:e7:a0:46:15:
ae:df:08:ad:19:72:20:ed:7f:54:5d:75:00:db:37:
7a:ba:ac:8e:51:3e:55:0a:33:03:03:2d:0d:1a:5a:
f2:cb:6c:80:2f:d6:1c:9e:a0:d4:2f:a9:d1:66:96:
13:e2:ad:00:d6:4b:e9:67:32:4a:66:86:35:f4:c2:
a4:26:8f:b3:25:89:ff:c2:57:1d:8e:aa:10:de:47:
75:7f:c8:74:0e:72:ee:aa:42:6e:9d:8c:69:2e:a7:
ee:e5:b3:0b:f2:39:7c:ce:93:a7:d4:c1:78:d8:03:
53:81:82:e5:c4:2c:62:4c:8b:9f:fb:86:07:8a:dd:
c0:90:8b:8e:9d:e7:b1:63:41:c6:e7:21:2a:dc:7b:
7f:0f:80:27:0f:dd:2e:5a:38:4e:fd:02:b4:47:a0:
38:bd:df:4b:f1:78:97:65:e8:9a:38:85:7a:16:28:
23:51:6f:ea:10:62:17:6b:56:a5:72:aa:3e:5f:84:
e6:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:1F:A3:14:1C:CA:87:FD:EE:6D:A3:8D:15:AB:60:6A:45:25:9A:FD
X509v3 Authority Key Identifier:
keyid:B3:79:10:DA:1F:3A:43:F9:6B:58:F2:19:05:EB:58:F6:43:D0:26:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s3kQ2h86Q_lrWPIZBetY9kPQJn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/5fc80e-a095-4c20-90e4-2c0f98a74966/1/1R-jFBzKh_3ubaONFatgakUlmv0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/5fc80e-a095-4c20-90e4-2c0f98a74966/1/s3kQ2h86Q_lrWPIZBetY9kPQJn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.53.240.0-92.53.244.255
185.64.12.0/24
IPv6:
2a00:85c0:1::/48
2a00:85c0:3::-2a00:85c0:5:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
2b:f1:07:76:2c:f2:6e:cd:aa:8c:80:97:c1:e4:69:16:b1:24:
e8:84:f1:92:3e:4d:bc:6f:ed:0e:bd:fb:49:83:c6:67:da:3e:
a0:7c:c9:5a:44:86:6b:77:79:73:ca:c5:56:c0:9a:57:cb:5e:
b9:97:93:ba:59:7e:cd:60:69:13:b8:44:35:8d:39:a9:d6:e2:
93:75:bc:8f:86:82:d2:8c:08:80:43:41:6b:cc:52:39:bc:46:
46:c1:43:96:f3:43:51:bc:7d:10:73:1b:77:3a:db:f9:c9:53:
cf:3d:6f:d7:33:bc:d0:0d:7c:87:95:8b:e9:ba:d8:dd:c3:db:
90:8f:b9:79:ed:77:43:56:e4:b3:b4:43:a7:8c:4c:2b:2d:64:
83:0f:22:29:ea:d4:6b:9d:8d:09:df:37:4e:7d:d2:5e:7f:06:
63:95:81:c4:10:95:8c:bb:90:db:e8:ec:37:c8:20:52:a7:cb:
44:14:dc:2d:41:9a:c1:46:d8:e2:0b:76:33:8c:86:d3:c3:ca:
2d:86:52:06:9b:16:66:0d:f3:1c:69:6a:43:6a:15:2c:cb:e0:
44:2a:48:08:12:e1:65:d5:02:cd:c2:6f:b0:92:0d:c6:bc:4d:
82:05:9a:23:78:f9:81:af:32:15:f1:ea:02:4c:fc:64:c4:24:
79:6b:0e:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 06:30:08 2025 by rpki-client