Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/01f736-af83-456c-8b45-5146ab7ea015/1/1-F25KSYcscldoMIn8oTjF9X2iaw.roa
File: 1-F25KSYcscldoMIn8oTjF9X2iaw.roa (raw, json)
Hash identifier: R6BkUiCEPa7Jq+9EbzNGrkujDrWoxqUJ3EQ6OiRKX9M=
Subject key identifier: F8:5D:B9:29:26:1C:B1:C9:5D:A0:C2:27:F2:84:E3:17:D5:F6:89:AC
Certificate issuer: /CN=535825ce8bf544170282f720a2484141568b0e7d
Certificate serial: 33E9D522
Authority key identifier: 53:58:25:CE:8B:F5:44:17:02:82:F7:20:A2:48:41:41:56:8B:0E:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1glzov1RBcCgvcgokhBQVaLDn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/01f736-af83-456c-8b45-5146ab7ea015/1/1-F25KSYcscldoMIn8oTjF9X2iaw.roa
Signing time: Sat 01 Jan 2022 06:56:53 +0000
ROA not before: Sat 01 Jan 2022 06:56:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203802
IP address blocks: 185.123.80.0/22 maxlen: 22
185.123.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 870962466 (0x33e9d522)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=535825ce8bf544170282f720a2484141568b0e7d
Validity
Not Before: Jan 1 06:56:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f85db929261cb1c95da0c227f284e317d5f689ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:32:7f:9e:94:e1:96:f6:94:6a:2f:93:2f:48:
5b:90:6d:76:3f:2f:53:61:96:f9:50:4c:23:b0:3e:
be:e9:7c:8b:d0:49:af:e5:ae:12:9d:bd:c6:f9:6a:
2d:a4:5a:a6:51:d3:45:53:e3:d0:3a:35:68:38:17:
14:87:36:7a:0c:8b:44:f1:96:30:58:6b:7a:b3:11:
87:16:ec:d6:b7:99:89:fa:91:bc:3d:d9:be:3a:4e:
77:8d:22:17:57:9c:46:77:71:7e:90:70:de:d5:9c:
5d:6c:78:83:c4:6a:c5:c3:46:d7:6f:21:b3:93:03:
ce:49:45:76:f4:94:6b:39:f2:08:a0:a9:de:f4:7c:
91:ca:2a:2e:12:de:4c:7f:00:60:7e:86:3b:b7:24:
d4:be:93:05:a0:88:ba:b5:cc:79:e4:d2:8d:d5:85:
87:3e:16:ba:b6:80:ad:7a:57:6b:7a:a5:c3:7b:1e:
36:db:ee:31:26:1e:3f:d7:06:0c:16:3e:59:92:b7:
39:e1:9d:be:4c:d9:ce:9b:66:f3:e9:23:b6:0a:d1:
dd:03:ed:b8:fd:dd:75:54:ea:41:2d:24:b6:ac:44:
b2:97:16:62:4f:93:ad:c8:f0:52:fd:99:b3:54:6e:
4f:07:69:ee:95:32:4b:2d:db:14:61:32:9a:ac:f6:
f4:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:5D:B9:29:26:1C:B1:C9:5D:A0:C2:27:F2:84:E3:17:D5:F6:89:AC
X509v3 Authority Key Identifier:
keyid:53:58:25:CE:8B:F5:44:17:02:82:F7:20:A2:48:41:41:56:8B:0E:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1glzov1RBcCgvcgokhBQVaLDn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/01f736-af83-456c-8b45-5146ab7ea015/1/1-F25KSYcscldoMIn8oTjF9X2iaw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/01f736-af83-456c-8b45-5146ab7ea015/1/U1glzov1RBcCgvcgokhBQVaLDn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.123.80.0/22
Signature Algorithm: sha256WithRSAEncryption
65:fc:96:c9:4c:14:3a:91:1a:9d:30:2c:65:32:99:72:24:72:
a8:db:9e:24:41:b0:a7:de:93:72:5d:b3:43:be:76:15:bf:13:
9c:21:9d:08:3d:0c:e2:5c:86:ec:dc:d3:ce:31:6a:eb:ff:70:
a4:c4:b2:a0:7d:44:65:04:42:36:7f:72:83:9a:1b:f7:09:c3:
cc:e4:e7:86:27:e8:64:12:72:b7:b0:64:c9:0a:44:6d:f6:35:
b5:2f:45:94:c7:c3:b0:ac:73:e5:24:f1:7d:62:4e:7b:78:fd:
64:61:c8:a5:6c:95:4a:d2:5f:7f:a7:73:d9:88:2c:cf:da:f6:
d0:3e:24:fb:e7:1f:18:a0:23:a5:b2:47:c0:23:58:21:f9:06:
ae:cf:6b:2a:84:fb:67:a8:6f:35:84:9a:4d:9b:56:50:59:22:
02:4d:9e:37:c1:3f:43:c3:29:3e:59:21:92:69:f6:d7:95:10:
11:90:8a:17:cd:80:8e:2d:2d:b6:06:6f:45:54:f7:a6:5f:f5:
2d:58:f2:f3:8f:fe:53:a8:d6:73:33:24:f9:09:b9:32:ab:12:
67:d6:d1:2b:ba:ca:3e:1c:b9:a5:f2:46:cd:43:90:3c:77:73:
55:5c:b1:a5:6e:be:c5:b4:c5:1b:16:c3:59:2c:4d:12:bc:ad:
20:87:2a:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:24:36 2025 by rpki-client