Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/59681b-ef84-4cfd-80f4-b653a6c414a0/1/IdVAuxQ3h8cq7RC2URrIb5bp_d4.roa
File: IdVAuxQ3h8cq7RC2URrIb5bp_d4.roa (raw, json)
Hash identifier: sYs2yGSq19fZ3Zu1D5pXLdx/nN3Hd4F6xYUShofgRRg=
Subject key identifier: 21:D5:40:BB:14:37:87:C7:2A:ED:10:B6:51:1A:C8:6F:96:E9:FD:DE
Certificate issuer: /CN=125bb4f41fa8a9912a0c356ccc274c75332ab244
Certificate serial: 19477387
Authority key identifier: 12:5B:B4:F4:1F:A8:A9:91:2A:0C:35:6C:CC:27:4C:75:33:2A:B2:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Elu09B-oqZEqDDVszCdMdTMqskQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/59681b-ef84-4cfd-80f4-b653a6c414a0/1/IdVAuxQ3h8cq7RC2URrIb5bp_d4.roa
Signing time: Sat 01 Jan 2022 08:56:49 +0000
ROA not before: Sat 01 Jan 2022 08:56:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24978
IP address blocks: 185.5.14.0/23 maxlen: 23
2a02:c740::/30 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 424113031 (0x19477387)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=125bb4f41fa8a9912a0c356ccc274c75332ab244
Validity
Not Before: Jan 1 08:56:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=21d540bb143787c72aed10b6511ac86f96e9fdde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d0:2d:1e:f4:bf:bb:2f:45:1b:45:25:6c:e6:
a7:41:98:47:7b:c8:f4:8e:07:66:e0:3b:24:ee:dc:
07:57:ea:ed:78:d1:f9:1b:8f:ca:54:b7:9d:88:1f:
8b:fd:f3:ef:36:2b:7f:09:9c:72:1d:b7:8d:55:09:
73:88:34:b6:be:00:f9:d2:85:6c:1c:5a:c2:f2:2b:
d6:34:4f:fd:f0:c8:2e:b3:c0:4e:38:66:a3:df:60:
b0:ad:89:79:eb:b7:09:51:02:55:f4:ab:06:32:fc:
95:ed:b9:3f:cb:72:ed:bd:76:01:79:86:e8:8e:62:
b0:a9:16:c1:83:24:5b:42:e2:dd:f9:80:7f:b4:69:
ea:5b:1c:fd:66:ca:bd:49:df:ab:2c:9c:1a:db:0e:
74:e1:3c:86:eb:75:76:c0:16:8a:0f:35:31:51:ed:
ff:75:d9:1d:bc:3a:85:b4:1d:89:51:94:56:2e:ce:
7c:ed:9d:5e:45:ec:4c:da:12:58:9b:5f:c4:a3:e8:
f9:f3:a7:54:fe:0c:1a:7f:38:3c:81:b0:e0:c8:2f:
af:ba:b6:36:d9:8c:45:65:c9:52:70:91:dc:1e:ce:
a3:9e:98:d6:17:c6:07:e7:b3:5c:28:f8:a0:da:90:
a5:1b:79:a1:09:10:fd:5a:1d:4b:40:6e:9b:6d:b4:
de:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:D5:40:BB:14:37:87:C7:2A:ED:10:B6:51:1A:C8:6F:96:E9:FD:DE
X509v3 Authority Key Identifier:
keyid:12:5B:B4:F4:1F:A8:A9:91:2A:0C:35:6C:CC:27:4C:75:33:2A:B2:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Elu09B-oqZEqDDVszCdMdTMqskQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/59681b-ef84-4cfd-80f4-b653a6c414a0/1/IdVAuxQ3h8cq7RC2URrIb5bp_d4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/59681b-ef84-4cfd-80f4-b653a6c414a0/1/Elu09B-oqZEqDDVszCdMdTMqskQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.5.14.0/23
IPv6:
2a02:c740::/30
Signature Algorithm: sha256WithRSAEncryption
76:ed:bf:69:86:15:11:84:b6:31:68:ca:df:25:72:34:ef:11:
3c:c4:5a:f4:29:1a:0d:fd:a7:b4:4a:54:e2:e7:3d:4d:6e:3e:
03:fb:a2:16:57:a0:e8:62:49:52:13:b3:17:09:2e:2e:3f:11:
76:1e:8b:37:47:9e:88:0a:97:2c:58:ac:b5:38:a3:97:3b:3e:
82:48:c9:18:98:75:40:80:89:d2:f1:82:c6:eb:7d:1e:17:6f:
c8:63:70:f7:24:3c:38:50:ba:4f:6b:aa:ae:8c:63:e0:fd:06:
e9:9d:70:49:58:9d:b7:39:af:8e:66:57:f6:ea:06:68:82:db:
02:6d:4a:9d:17:9f:f4:ee:5d:d9:b5:21:38:4f:89:34:10:9f:
9a:95:65:b2:4a:39:fb:a6:f7:8e:1c:fa:2c:9d:72:c9:94:10:
e6:37:35:e7:5b:63:60:b4:a2:a5:61:64:50:8a:a9:1b:7b:f7:
85:68:84:3e:6c:8d:25:20:55:20:aa:82:60:50:94:10:61:29:
df:03:41:ed:d8:da:e0:12:b2:43:8a:88:e0:9c:43:73:63:49:
97:bc:09:7d:e8:c0:c1:31:0d:c5:20:b4:01:64:38:e4:97:59:
f7:a9:6f:06:50:79:fb:cc:aa:ef:54:96:b4:30:54:b3:e2:59:
76:21:64:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:05:08 2025 by rpki-client