Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/18feb3-f3d2-49f3-90d2-9d4b16b59de6/1/g7IJIk4_lRj2im1QB8q_hQt-G18.roa
File: g7IJIk4_lRj2im1QB8q_hQt-G18.roa (raw, json)
Hash identifier: xKzKue8gAhD+Sd45Z/T/7AmkKMPlszZSECmCU2Z6q8I=
Subject key identifier: 83:B2:09:22:4E:3F:95:18:F6:8A:6D:50:07:CA:BF:85:0B:7E:1B:5F
Certificate issuer: /CN=082a6e377f1c885a6d73f3f569fd06d7ea4c7a45
Certificate serial: 01857042A9B7740D58F19713248AB251FD05
Authority key identifier: 08:2A:6E:37:7F:1C:88:5A:6D:73:F3:F5:69:FD:06:D7:EA:4C:7A:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CCpuN38ciFptc_P1af0G1-pMekU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/18feb3-f3d2-49f3-90d2-9d4b16b59de6/1/g7IJIk4_lRj2im1QB8q_hQt-G18.roa
Signing time: Mon 02 Jan 2023 02:14:54 +0000
ROA not before: Mon 02 Jan 2023 02:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57795
IP address blocks: 185.157.144.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:a9:b7:74:0d:58:f1:97:13:24:8a:b2:51:fd:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=082a6e377f1c885a6d73f3f569fd06d7ea4c7a45
Validity
Not Before: Jan 2 02:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=83b209224e3f9518f68a6d5007cabf850b7e1b5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:54:22:aa:5e:68:ea:39:f2:2a:d2:7e:a7:fa:
23:39:e9:17:cc:e7:c5:35:d9:62:f2:e1:06:d4:cb:
a9:42:e5:31:83:ef:a8:cf:38:61:18:65:cd:c6:5c:
7e:3b:6d:0e:67:33:a5:64:e7:05:4f:95:e8:8e:48:
9c:31:34:b9:04:fa:e5:18:53:18:4e:c4:04:64:e2:
3e:34:85:33:fe:4e:97:05:df:f3:bb:0e:e2:b5:a3:
0a:e7:02:80:da:39:6b:ff:33:40:eb:bc:ac:92:cb:
72:06:2f:f7:a5:91:59:1c:fb:11:17:df:f8:64:60:
9a:34:e3:bc:4b:ca:31:6b:5a:ab:17:a1:7e:4e:5b:
43:5a:e3:0d:49:b5:9e:a8:98:dc:b7:c8:00:59:6f:
2f:50:26:ff:9c:40:82:c8:6a:78:3c:03:78:23:99:
a5:64:2d:cd:83:40:63:5b:42:0a:5f:45:1d:c3:65:
b0:86:4a:76:9f:b5:a4:c2:02:41:ba:92:3f:19:28:
c0:34:58:f7:80:7f:31:78:db:6a:dc:4c:f8:ee:88:
88:04:63:ab:b4:71:af:e9:f0:55:67:46:c0:99:b1:
df:a7:21:fb:11:4e:a6:5b:aa:25:e3:1a:92:84:ca:
b8:f7:0a:f9:ad:6e:5b:f5:64:50:b9:a6:26:59:73:
0a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:B2:09:22:4E:3F:95:18:F6:8A:6D:50:07:CA:BF:85:0B:7E:1B:5F
X509v3 Authority Key Identifier:
keyid:08:2A:6E:37:7F:1C:88:5A:6D:73:F3:F5:69:FD:06:D7:EA:4C:7A:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CCpuN38ciFptc_P1af0G1-pMekU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/18feb3-f3d2-49f3-90d2-9d4b16b59de6/1/g7IJIk4_lRj2im1QB8q_hQt-G18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/18feb3-f3d2-49f3-90d2-9d4b16b59de6/1/CCpuN38ciFptc_P1af0G1-pMekU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.157.144.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:d8:d4:8a:4a:c6:4f:99:ca:2c:d7:04:9f:05:37:93:05:12:
f4:9a:28:50:db:89:92:71:56:0d:c8:c3:59:a3:83:ec:65:5d:
95:af:9c:2f:70:d2:cf:45:19:1c:e2:09:fd:02:03:13:9b:ba:
a8:bc:f5:fa:01:63:99:f4:b9:f2:6c:d4:00:6e:e5:b3:f5:f0:
e1:fd:65:13:a3:02:b6:c8:92:68:87:61:2f:da:64:f0:1d:d5:
72:84:fa:53:82:4f:70:58:df:38:d1:db:98:e5:dd:79:4c:77:
78:bb:a8:55:ea:5b:82:ff:e6:ef:42:a8:b5:1c:a1:d9:cb:d4:
32:a7:21:71:95:0d:bc:bf:a1:36:10:d0:f0:84:96:01:02:bd:
a0:bb:04:d3:16:65:9c:b7:f8:42:69:cc:29:79:be:05:22:d0:
e3:78:3b:f8:04:ba:fc:b4:8b:26:34:0e:b2:8d:cf:a2:3d:6f:
41:6b:fa:03:31:ac:41:cc:00:ad:cd:d1:88:0d:2d:d1:ce:c1:
de:95:2a:ef:ef:84:89:8d:b8:c6:77:b3:b7:53:c6:c5:77:0b:
1b:03:a8:3e:19:6c:9d:e2:15:ac:b3:44:a7:3e:b3:ea:57:f5:
4a:62:68:69:aa:3e:06:73:8a:9b:24:24:87:b7:96:b1:50:09:
ed:9d:dd:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:34:18 2025 by rpki-client