Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/7OBKjdwz-iI6HCQGfCK9Iu8dIN0.roa
File: 7OBKjdwz-iI6HCQGfCK9Iu8dIN0.roa (raw, json)
Hash identifier: N7/2zK2ozGbR4ASdH5BTsSUFId2cf83c29ph/clMiTg=
Subject key identifier: EC:E0:4A:8D:DC:33:FA:22:3A:1C:24:06:7C:22:BD:22:EF:1D:20:DD
Certificate issuer: /CN=53787cd7946e10d88646ac79de57cc6ec59e4132
Certificate serial: 035A647C
Authority key identifier: 53:78:7C:D7:94:6E:10:D8:86:46:AC:79:DE:57:CC:6E:C5:9E:41:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/7OBKjdwz-iI6HCQGfCK9Iu8dIN0.roa
Signing time: Sat 01 Jan 2022 02:00:48 +0000
ROA not before: Sat 01 Jan 2022 02:00:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.54.124.0/24 maxlen: 24
185.54.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56255612 (0x35a647c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53787cd7946e10d88646ac79de57cc6ec59e4132
Validity
Not Before: Jan 1 02:00:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ece04a8ddc33fa223a1c24067c22bd22ef1d20dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:c2:99:f1:70:29:fd:7b:59:1a:82:af:88:7f:
a6:52:2c:d2:b4:eb:3a:58:b2:66:ef:f8:7e:6f:f7:
02:ac:c1:b5:08:85:d9:2b:10:91:5d:4b:0f:5f:74:
fd:4c:62:5c:f7:3b:b6:78:23:99:81:45:e2:d4:8e:
51:bc:dd:8a:a0:47:ab:b5:96:54:32:fd:f5:6c:83:
00:6c:48:56:e1:6e:b7:0d:bd:80:46:fa:fd:0c:3a:
7b:88:af:59:b7:46:a1:9d:d8:50:1d:20:c6:90:84:
26:35:9d:c3:bf:1a:da:8b:e9:4f:82:03:c2:65:82:
6a:6a:78:8b:02:bc:a5:e2:26:cf:fe:d2:86:a4:ed:
4a:08:6d:0f:c4:ae:ba:7f:f9:b2:5f:97:a2:b6:84:
e5:ee:b1:52:31:97:27:86:9f:cd:34:51:b4:00:1e:
00:68:20:e2:b6:c4:73:0f:8b:77:50:6b:63:b4:e0:
fc:c5:60:ca:9d:03:af:ab:ca:d1:55:28:3d:57:ee:
ef:8c:e5:3e:8e:47:f6:d6:2a:21:27:7f:f7:8a:80:
2b:d2:46:ed:75:76:e4:3f:e4:af:14:ac:24:07:47:
2c:3a:5f:f1:d4:e9:5c:7c:85:34:5e:7c:a9:4f:1b:
51:96:7c:73:58:19:44:de:7a:66:64:1c:0f:7f:b8:
1b:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:E0:4A:8D:DC:33:FA:22:3A:1C:24:06:7C:22:BD:22:EF:1D:20:DD
X509v3 Authority Key Identifier:
keyid:53:78:7C:D7:94:6E:10:D8:86:46:AC:79:DE:57:CC:6E:C5:9E:41:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/7OBKjdwz-iI6HCQGfCK9Iu8dIN0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.54.124.0/24
185.54.126.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:33:51:e9:20:0d:f4:d2:ec:4f:13:ad:fc:44:63:b0:b2:40:
94:2e:5e:1b:22:56:3c:e2:54:c2:da:a8:ae:61:86:1b:9e:77:
b8:a0:47:e6:35:d4:86:aa:d6:6e:b7:e8:e0:2e:0e:49:84:92:
f5:77:89:34:03:87:a7:03:c4:c7:ad:c4:c7:5a:93:28:c9:f8:
31:56:37:5f:5d:46:83:13:29:a6:61:ed:f1:de:ed:c9:8f:83:
c1:88:77:39:f0:15:03:20:57:5d:0b:32:58:40:a6:26:6e:8b:
8d:7e:ab:2a:11:df:50:45:1b:bd:b7:1a:e6:7c:af:aa:fd:a8:
28:4d:8b:64:8e:48:2a:6f:b6:28:dd:60:ff:92:44:ef:5a:bb:
d7:4c:61:af:ca:83:50:32:13:76:39:d7:c8:43:e8:6b:d5:72:
7e:15:78:b6:bb:ce:cc:ce:97:fb:65:27:b1:c4:73:3f:8f:6e:
d4:69:61:6e:bc:1d:a6:ce:6c:25:83:a8:86:dd:90:9a:24:ca:
99:2d:dd:b5:87:6b:cc:e6:cf:37:d0:10:8a:e0:12:2c:ab:d9:
ae:33:e9:0b:c8:e9:5c:20:e0:b7:21:e2:83:d6:31:c3:a2:87:
12:5a:49:1d:54:2f:4b:1e:4b:59:26:cd:b2:0c:fe:2b:28:d9:
cc:51:b3:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:39:42 2025 by rpki-client