Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/5tSqoTms0hP_GYYpaOt4Y4VZmEo.roa
File: 5tSqoTms0hP_GYYpaOt4Y4VZmEo.roa (raw, json)
Hash identifier: 5QAyS3y5qamq3HTPtnAkXCOErDzYsckEo80J+7z2fww=
Subject key identifier: E6:D4:AA:A1:39:AC:D2:13:FF:19:86:29:68:EB:78:63:85:59:98:4A
Certificate issuer: /CN=691242c33bc2e2e9e45850a0fc64ab2c7506a4b8
Certificate serial: 0517017C
Authority key identifier: 69:12:42:C3:3B:C2:E2:E9:E4:58:50:A0:FC:64:AB:2C:75:06:A4:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aRJCwzvC4unkWFCg_GSrLHUGpLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/5tSqoTms0hP_GYYpaOt4Y4VZmEo.roa
Signing time: Sat 01 Jan 2022 11:02:43 +0000
ROA not before: Sat 01 Jan 2022 11:02:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61102
IP address blocks: 185.104.195.0/24 maxlen: 24
2a01:8640:c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85393788 (0x517017c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=691242c33bc2e2e9e45850a0fc64ab2c7506a4b8
Validity
Not Before: Jan 1 11:02:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6d4aaa139acd213ff19862968eb78638559984a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:4d:3c:ef:76:ff:0d:4b:5c:e4:ca:8e:29:00:
f4:b5:ea:7e:2c:67:94:29:d7:38:94:93:42:16:f7:
b5:79:b0:31:ee:8a:91:cc:f5:19:63:bd:59:41:ec:
b1:bf:6d:1e:e3:b7:65:b0:2f:29:23:be:a4:1a:1e:
bf:b4:00:9c:32:e1:84:74:6b:9a:4a:98:63:79:83:
d4:fa:9f:5e:53:d2:6f:ea:e5:44:10:38:23:57:6e:
0f:e2:dd:18:08:db:c7:5f:a4:12:a0:8c:27:cb:18:
dd:8f:4c:44:59:8b:4b:a3:30:03:91:74:5b:f5:ad:
76:7c:63:bb:8f:4d:c7:95:62:3e:bf:52:6c:41:67:
75:9f:5c:3f:a7:fe:c5:7a:de:3f:dc:8e:70:e9:5b:
4b:b8:df:2a:36:92:a5:cc:a9:58:38:62:23:4a:ff:
57:cf:60:b6:3a:9a:4b:87:c2:8b:81:ca:e0:c0:29:
75:4a:56:75:39:53:52:07:eb:f3:98:1f:2d:4a:3c:
af:b9:04:9b:e8:05:bf:79:60:54:c3:5b:a7:e2:70:
df:b3:b5:e5:d9:59:e9:64:73:26:05:22:0b:e7:db:
17:0d:4b:26:1f:62:96:a3:f8:2a:c6:4d:70:dd:f7:
69:57:23:cc:ee:9b:a6:e2:17:d5:58:e5:63:04:17:
8d:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:D4:AA:A1:39:AC:D2:13:FF:19:86:29:68:EB:78:63:85:59:98:4A
X509v3 Authority Key Identifier:
keyid:69:12:42:C3:3B:C2:E2:E9:E4:58:50:A0:FC:64:AB:2C:75:06:A4:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aRJCwzvC4unkWFCg_GSrLHUGpLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/5tSqoTms0hP_GYYpaOt4Y4VZmEo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/aRJCwzvC4unkWFCg_GSrLHUGpLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.104.195.0/24
IPv6:
2a01:8640:c::/48
Signature Algorithm: sha256WithRSAEncryption
2a:40:47:45:a8:be:73:8c:dd:a1:f7:dd:cd:5d:4e:a5:7f:ce:
6d:49:f6:ef:09:28:06:88:69:b4:71:e5:f4:73:0f:76:be:9f:
a4:ab:83:a4:b6:51:76:fc:a4:18:ec:f9:84:a2:98:6f:de:a4:
6b:15:72:9c:d8:b6:e8:1d:be:42:c1:36:6d:b1:8f:de:1f:30:
e6:e9:c2:6d:70:a4:ab:d2:a8:4d:36:c5:e9:32:3f:38:7d:83:
31:bb:8c:d2:43:22:7b:60:64:3e:54:3b:6f:e6:4e:a4:ff:e3:
99:c6:3f:5e:cc:9b:ba:f6:98:48:85:04:93:60:a4:33:21:8a:
f3:0a:20:ee:22:fc:fc:fd:ef:26:85:7e:aa:34:cc:51:f3:72:
db:33:eb:51:ba:a8:a6:59:71:db:4a:18:b9:21:1b:64:35:54:
9e:15:9c:45:f6:22:a9:79:90:68:73:69:0c:e6:e1:a7:af:45:
73:2e:8e:42:d6:bb:cc:3e:5e:01:c8:cf:87:a3:c5:9f:b8:61:
94:4c:c9:10:c5:75:a4:c5:9e:ff:ce:91:dd:9c:aa:b7:6b:c0:
eb:7b:be:f7:7d:b6:be:05:ae:33:d0:e4:44:fa:77:35:ac:94:
22:be:da:0a:78:fe:5b:fa:d9:48:4b:00:79:e3:c7:73:7d:11:
7e:82:cd:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:30:36 2025 by rpki-client