Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/j5qfMLv5_kcMllZSM6PjguYLYOc.roa
File: j5qfMLv5_kcMllZSM6PjguYLYOc.roa (raw, json)
Hash identifier: NJ8BIwJig995NofVwcB97z/+8Er3oeaMpM1Md5DB8p0=
Subject key identifier: 8F:9A:9F:30:BB:F9:FE:47:0C:96:56:52:33:A3:E3:82:E6:0B:60:E7
Certificate issuer: /CN=84b5a40b274a963e5ed3ef02e8399cb9b1bb0c7b
Certificate serial: 06F78185
Authority key identifier: 84:B5:A4:0B:27:4A:96:3E:5E:D3:EF:02:E8:39:9C:B9:B1:BB:0C:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLWkCydKlj5e0-8C6DmcubG7DHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/j5qfMLv5_kcMllZSM6PjguYLYOc.roa
Signing time: Sat 01 Jan 2022 07:58:13 +0000
ROA not before: Sat 01 Jan 2022 07:58:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57119
IP address blocks: 185.215.24.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116883845 (0x6f78185)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b5a40b274a963e5ed3ef02e8399cb9b1bb0c7b
Validity
Not Before: Jan 1 07:58:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f9a9f30bbf9fe470c96565233a3e382e60b60e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c9:09:58:d6:26:b1:da:4b:73:a7:6d:96:19:
65:f4:a1:5e:f3:49:dc:e7:a1:42:33:b4:ef:a0:86:
ea:f6:fd:ae:2e:71:aa:1c:93:5c:59:b0:6f:b3:50:
35:f8:42:14:a2:7e:00:58:9e:42:49:9a:a2:0b:95:
50:35:b2:57:ca:37:f8:ff:3d:60:0d:22:94:62:a8:
cf:42:39:3d:c4:7b:8f:d0:d6:38:0b:67:33:92:ad:
22:47:a7:ac:dd:d8:7d:aa:2d:e8:2a:da:ee:10:6c:
bb:12:8e:bb:64:1b:c5:3d:bb:e8:3b:27:09:36:b9:
9a:de:63:54:2b:b3:2d:3d:30:47:1c:5b:51:59:d1:
20:10:f0:0f:6e:d4:fd:61:6f:58:36:14:f1:b6:b8:
e5:18:87:34:c3:8c:8f:5f:cf:05:1f:b4:eb:30:11:
9d:38:69:94:66:a9:d8:36:df:a5:ad:0b:c0:a0:02:
2d:b7:ce:7e:ea:74:1d:96:0c:10:d6:fa:ea:ed:7d:
e7:57:1f:7e:ec:65:15:0a:f9:56:90:14:98:b6:38:
ff:ea:0d:50:65:5a:16:33:3d:7d:1c:aa:34:9f:11:
39:b1:52:ad:0b:73:57:f2:94:fc:bf:9e:4a:ca:d2:
cd:8a:45:2c:cd:e4:e3:17:39:bd:8a:b3:aa:76:8a:
2c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:9A:9F:30:BB:F9:FE:47:0C:96:56:52:33:A3:E3:82:E6:0B:60:E7
X509v3 Authority Key Identifier:
keyid:84:B5:A4:0B:27:4A:96:3E:5E:D3:EF:02:E8:39:9C:B9:B1:BB:0C:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLWkCydKlj5e0-8C6DmcubG7DHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/j5qfMLv5_kcMllZSM6PjguYLYOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.215.24.0/22
Signature Algorithm: sha256WithRSAEncryption
22:99:b6:95:c3:20:06:33:9f:95:54:f7:33:54:50:71:06:02:
57:f4:99:88:12:d6:b4:f1:68:fa:43:d2:5a:5d:6f:f4:76:1c:
e4:e7:30:a0:c2:8c:a1:6e:9b:99:00:7e:85:76:c4:55:4e:a4:
e3:49:b3:2e:dc:4d:5f:80:73:63:7d:ed:dc:b8:a4:d4:5b:52:
ab:cf:4e:8f:8e:bb:03:6c:42:5d:f4:68:6a:f7:3d:18:1c:ea:
0c:7c:78:f2:76:f9:6f:91:89:7b:07:dc:5c:9e:bb:61:57:ec:
e5:6b:28:8e:5f:f1:a4:20:b0:25:58:72:17:83:b1:f6:50:61:
89:01:84:91:85:dc:51:ec:d6:ae:a1:74:69:c6:b9:50:1e:0e:
67:11:ea:e8:b0:89:d4:b8:96:1b:ea:3d:60:0d:a4:c3:eb:0a:
61:cc:9b:5f:7e:30:fe:d0:f8:be:24:d5:07:a5:a6:a9:1c:d2:
6c:7f:65:35:34:27:64:63:71:be:26:f1:71:71:9c:02:e3:99:
ef:cd:0e:81:ae:0a:ae:5c:4b:2c:26:06:ce:bf:45:5c:28:21:
c3:69:70:97:44:49:66:38:75:ec:b5:f1:da:6b:b7:e6:6a:2f:
6d:ba:70:6c:c7:55:bf:74:21:c1:a3:55:37:f9:2e:cf:7c:27:
bd:15:1f:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:22:30 2025 by rpki-client