Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/50d476-d722-40f2-980f-64236fc36d1d/1/56G3a9pVSRqzioaVWXai78Zl3vY.roa
File: 56G3a9pVSRqzioaVWXai78Zl3vY.roa (raw, json)
Hash identifier: kuTPtHvjOsZi+q1fJgvlisHBcTCNXcpvq1vOh3F0IS4=
Subject key identifier: E7:A1:B7:6B:DA:55:49:1A:B3:8A:86:95:59:76:A2:EF:C6:65:DE:F6
Certificate issuer: /CN=65295913c07c226100bd39f1ee2c52ea98aaee14
Certificate serial: 027A540F
Authority key identifier: 65:29:59:13:C0:7C:22:61:00:BD:39:F1:EE:2C:52:EA:98:AA:EE:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZSlZE8B8ImEAvTnx7ixS6piq7hQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/50d476-d722-40f2-980f-64236fc36d1d/1/56G3a9pVSRqzioaVWXai78Zl3vY.roa
Signing time: Sat 01 Jan 2022 12:59:04 +0000
ROA not before: Sat 01 Jan 2022 12:59:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50012
IP address blocks: 193.104.85.0/24 maxlen: 24
185.157.121.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41571343 (0x27a540f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65295913c07c226100bd39f1ee2c52ea98aaee14
Validity
Not Before: Jan 1 12:59:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7a1b76bda55491ab38a86955976a2efc665def6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:3e:50:19:60:30:8f:5e:21:18:63:db:44:be:
84:d6:01:29:28:6c:49:e9:37:75:cd:ae:86:49:16:
ba:54:2c:84:02:5d:aa:c8:17:79:63:25:55:06:b2:
78:82:e6:16:1f:d2:8a:61:be:15:96:13:a0:77:58:
0b:f0:c4:3d:a8:9b:5c:1f:77:e2:0e:18:39:1b:73:
39:23:0c:e7:84:09:3d:32:7a:d4:5a:0e:fd:9d:eb:
79:91:df:d2:2f:68:68:2a:b7:49:b2:4e:5b:02:36:
eb:69:2a:42:e2:08:03:55:12:cd:eb:2c:8b:73:c7:
00:1d:d6:08:5b:ec:98:df:cb:fb:88:7c:1e:78:51:
cc:d0:55:40:b9:79:a2:d9:6a:5d:1f:1f:08:47:6b:
b4:69:dc:12:ae:25:f7:1e:a1:35:e2:16:c7:82:bb:
72:8b:01:97:08:24:c2:94:c0:aa:64:d9:40:1e:cd:
f3:83:cb:97:62:2a:83:77:fa:22:d8:8a:45:ff:9a:
8e:d4:62:ca:e1:7e:da:81:5b:c2:1d:da:88:fe:ff:
21:f4:c5:31:75:e3:12:8c:0c:ea:b0:7b:bd:ba:ac:
3d:06:a9:b2:b4:c4:01:5e:7a:be:98:5c:51:ec:51:
21:09:a5:fd:8b:6d:99:9d:6a:43:84:bb:df:3c:ab:
62:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:A1:B7:6B:DA:55:49:1A:B3:8A:86:95:59:76:A2:EF:C6:65:DE:F6
X509v3 Authority Key Identifier:
keyid:65:29:59:13:C0:7C:22:61:00:BD:39:F1:EE:2C:52:EA:98:AA:EE:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZSlZE8B8ImEAvTnx7ixS6piq7hQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/50d476-d722-40f2-980f-64236fc36d1d/1/56G3a9pVSRqzioaVWXai78Zl3vY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/50d476-d722-40f2-980f-64236fc36d1d/1/ZSlZE8B8ImEAvTnx7ixS6piq7hQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.157.121.0/24
193.104.85.0/24
Signature Algorithm: sha256WithRSAEncryption
62:0e:db:5c:f4:94:de:25:ad:da:9e:3b:ef:61:b4:4f:f3:9e:
77:1d:8e:9b:c6:fc:15:e6:20:5a:e5:96:c2:5f:11:03:87:86:
a4:8f:a0:a6:fe:32:e2:9f:3c:29:1e:34:1d:13:5c:70:77:d0:
02:41:4e:3b:8b:b9:af:bd:e9:41:60:05:8d:4b:01:a0:74:2e:
56:7d:f9:82:d4:90:c5:7d:fc:dc:2f:4b:8f:82:63:97:82:1b:
a3:6d:72:47:d2:6c:a1:d3:16:39:c8:8a:28:32:ad:0d:d3:d9:
1b:b3:db:49:43:7c:23:fd:81:a7:8c:d1:89:cc:28:1e:c3:60:
f6:cf:8c:d9:64:56:6a:c7:73:1c:5e:59:63:76:55:73:9f:f6:
98:bd:e1:5d:46:74:fc:da:4f:c1:6b:64:d3:a0:82:f4:e6:7d:
1a:67:8c:b2:4d:29:40:7e:4f:42:0d:5a:fa:2a:3d:24:25:45:
c9:cb:1a:4a:51:86:d1:9d:08:e1:0d:d6:31:d2:c6:cf:b9:61:
20:23:79:62:fe:b7:db:ab:ff:45:0b:da:b5:41:c1:fe:c0:f0:
57:11:5b:4d:0c:6a:fb:6d:3c:eb:8d:8c:d8:2e:d2:08:49:e2:
81:af:e0:d2:f3:85:ad:c7:2d:77:b5:1d:08:22:5c:c9:01:a2:
4e:df:04:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:30:56 2025 by rpki-client