Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/64e19f-fe54-42cd-8923-09b9920fe00f/1/leUxHCultXK0DvGScGHLhnTVGLY.roa
File: leUxHCultXK0DvGScGHLhnTVGLY.roa (raw, json)
Hash identifier: 0vgOyvMjDoj4jvX4rQrcGeza/xo35e1V05uijR6WuHI=
Subject key identifier: 95:E5:31:1C:2B:A5:B5:72:B4:0E:F1:92:70:61:CB:86:74:D5:18:B6
Certificate issuer: /CN=80bd00829536d47745f47da9d1a8a72f6dd462d4
Certificate serial: 11BBA72E
Authority key identifier: 80:BD:00:82:95:36:D4:77:45:F4:7D:A9:D1:A8:A7:2F:6D:D4:62:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gL0AgpU21HdF9H2p0ainL23UYtQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/64e19f-fe54-42cd-8923-09b9920fe00f/1/leUxHCultXK0DvGScGHLhnTVGLY.roa
Signing time: Sat 01 Jan 2022 07:56:40 +0000
ROA not before: Sat 01 Jan 2022 07:56:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50297
IP address blocks: 193.200.209.0/24 maxlen: 24
185.110.132.0/24 maxlen: 24
2a06:5600:28f8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 297510702 (0x11bba72e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80bd00829536d47745f47da9d1a8a72f6dd462d4
Validity
Not Before: Jan 1 07:56:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95e5311c2ba5b572b40ef1927061cb8674d518b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:6c:b9:3b:f4:21:44:15:e7:96:38:45:50:7b:
54:5f:f2:16:84:10:62:14:f6:19:b5:be:a8:d1:75:
38:7d:de:e9:17:86:07:85:d7:61:bc:32:29:b7:07:
74:4e:80:07:ef:5a:05:c7:6e:6d:a3:c4:de:7e:b7:
6f:e1:a8:2e:f5:5f:0d:ca:a8:3f:01:b4:9d:91:04:
4a:38:e4:12:e6:89:fe:5a:f5:b3:e9:bd:80:f6:b5:
36:a2:2a:39:b9:2f:f8:0f:dc:6e:ea:b1:34:9e:9a:
d9:a7:55:9c:05:64:45:65:6f:fe:98:59:2b:d6:3a:
be:9c:a0:ea:fc:58:3d:6e:e5:f8:b8:1d:04:e4:09:
27:47:0f:29:71:de:90:4a:28:64:49:cb:ef:a7:20:
84:50:a6:d0:98:f8:79:a0:16:7c:8d:10:14:9e:14:
8c:0d:3b:43:1c:b3:5f:09:be:c3:24:73:51:0d:1c:
48:09:a6:29:75:02:18:24:39:86:44:17:ae:4b:69:
2c:ad:3d:ae:15:fd:e8:9d:f7:bf:04:d1:e5:4a:5f:
50:d3:14:16:2f:51:08:64:94:7a:cd:19:86:a1:77:
7b:84:c2:fa:61:5a:e3:f2:a0:7c:64:04:0d:ed:65:
8f:ff:da:7c:c9:13:72:65:ea:c0:4b:f2:c5:d4:ba:
c9:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:E5:31:1C:2B:A5:B5:72:B4:0E:F1:92:70:61:CB:86:74:D5:18:B6
X509v3 Authority Key Identifier:
keyid:80:BD:00:82:95:36:D4:77:45:F4:7D:A9:D1:A8:A7:2F:6D:D4:62:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gL0AgpU21HdF9H2p0ainL23UYtQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/64e19f-fe54-42cd-8923-09b9920fe00f/1/leUxHCultXK0DvGScGHLhnTVGLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/64e19f-fe54-42cd-8923-09b9920fe00f/1/gL0AgpU21HdF9H2p0ainL23UYtQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.110.132.0/24
193.200.209.0/24
IPv6:
2a06:5600:28f8::/48
Signature Algorithm: sha256WithRSAEncryption
4d:f7:a7:a0:a5:d6:8f:e7:09:e3:e3:28:3f:e6:eb:fa:47:ea:
b0:3f:55:51:38:a1:58:58:d3:60:91:2d:94:94:62:00:ee:9b:
28:28:91:ad:a6:0a:6c:8d:96:83:fc:b5:67:4f:6d:91:69:1c:
da:89:91:6e:1a:12:d1:14:23:4e:86:c2:aa:10:61:24:70:c2:
7c:3e:25:aa:74:55:c4:e2:d1:96:1c:9a:5e:91:02:9f:61:1e:
c1:21:70:c4:e8:26:04:22:fd:95:81:68:35:44:26:07:48:9b:
c0:0a:39:4e:1f:d4:ce:6d:5f:f0:43:e5:8e:d3:24:36:0d:8e:
e0:92:8e:b7:dc:1d:ce:46:3a:43:55:fe:e9:9c:ce:99:71:ec:
81:9e:6e:82:55:b1:a3:8b:0a:ae:ae:e6:50:21:42:c5:46:30:
fd:b8:07:bc:9c:2e:78:13:6e:0a:6e:a2:b1:a2:5c:ea:aa:ee:
be:5d:74:66:23:4f:98:0b:f6:50:d1:3c:32:da:14:7f:65:f6:
72:36:20:1d:c6:09:73:70:32:8e:be:bf:32:16:44:7c:c6:6e:
eb:12:fb:bd:e7:1c:e1:76:bc:35:fc:ec:bb:97:35:c1:cd:76:
2e:6f:39:ce:ee:01:59:26:1b:4d:69:55:30:38:61:55:34:a5:
a5:2b:bd:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 07:55:15 2025 by rpki-client