Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/b82a06-ab0d-4adf-8a85-97c9aab828f2/1/5Gcoj6mjzuzkZ0KVR-cXZlFQ8d0.roa
File: 5Gcoj6mjzuzkZ0KVR-cXZlFQ8d0.roa (raw, json)
Hash identifier: HyWDIEXigJwmPLZ9gMLe7iyJo/ae3C98foT4C0qbfx4=
Subject key identifier: E4:67:28:8F:A9:A3:CE:EC:E4:67:42:95:47:E7:17:66:51:50:F1:DD
Certificate issuer: /CN=7bbd51272064b63b2c663c0296ba11db5ea238c0
Certificate serial: 01856C6F1C94E7AE6C2C82850C051029BC4C
Authority key identifier: 7B:BD:51:27:20:64:B6:3B:2C:66:3C:02:96:BA:11:DB:5E:A2:38:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e71RJyBktjssZjwClroR216iOMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/b82a06-ab0d-4adf-8a85-97c9aab828f2/1/5Gcoj6mjzuzkZ0KVR-cXZlFQ8d0.roa
Signing time: Sun 01 Jan 2023 08:24:59 +0000
ROA not before: Sun 01 Jan 2023 08:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50530
IP address blocks: 185.129.189.0/24 maxlen: 24
185.129.188.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6f:1c:94:e7:ae:6c:2c:82:85:0c:05:10:29:bc:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7bbd51272064b63b2c663c0296ba11db5ea238c0
Validity
Not Before: Jan 1 08:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e467288fa9a3ceece467429547e717665150f1dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:0f:3b:3d:3d:cd:c4:34:7a:2f:07:a3:d6:13:
f2:38:71:4c:b2:1f:72:27:c4:1d:5a:60:77:4d:30:
e3:92:4e:3e:ec:83:2b:9b:75:08:d2:f2:67:99:39:
72:a2:1b:ce:0c:1f:6d:a7:f7:fa:0d:05:0d:73:9e:
2f:87:d5:d4:e1:7f:4c:e3:cf:6f:62:0c:1b:f0:78:
76:31:88:d3:47:53:fd:12:e4:a4:07:e2:f2:f6:89:
61:04:ec:39:26:1f:a1:0a:67:82:c7:0b:80:98:77:
37:3d:5e:49:e4:01:65:5e:09:a0:82:d9:a1:40:3b:
65:51:8d:e0:aa:a2:b2:6a:94:4e:84:92:87:d6:62:
0e:fb:ee:68:ee:cd:2d:c0:28:88:6e:9e:60:c6:5a:
cd:e5:a1:c6:5b:63:2a:d9:67:3e:d8:08:0a:4c:5a:
ce:ec:2e:6a:7a:37:15:78:e5:7d:16:6e:e5:86:1c:
57:54:83:a6:ad:4f:51:62:35:c6:e7:43:87:93:7c:
ac:64:3c:11:68:71:56:98:ae:f0:14:c2:c6:59:8a:
6b:df:1f:bb:f2:b8:3f:d3:58:61:bc:92:1f:f1:07:
26:7a:44:b7:5d:26:18:74:82:92:86:cc:8d:77:80:
9d:28:74:93:7e:df:74:91:a3:01:34:fe:81:b7:b3:
4a:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:67:28:8F:A9:A3:CE:EC:E4:67:42:95:47:E7:17:66:51:50:F1:DD
X509v3 Authority Key Identifier:
keyid:7B:BD:51:27:20:64:B6:3B:2C:66:3C:02:96:BA:11:DB:5E:A2:38:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e71RJyBktjssZjwClroR216iOMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b82a06-ab0d-4adf-8a85-97c9aab828f2/1/5Gcoj6mjzuzkZ0KVR-cXZlFQ8d0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b82a06-ab0d-4adf-8a85-97c9aab828f2/1/e71RJyBktjssZjwClroR216iOMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.129.188.0/23
Signature Algorithm: sha256WithRSAEncryption
53:3d:52:e3:f2:28:38:f7:ee:d2:9e:8c:17:cf:51:5f:62:84:
59:52:82:57:74:13:c7:6b:30:7e:59:62:74:94:ad:e8:2a:63:
14:9d:1b:70:1d:ae:cc:3c:09:fe:0e:a9:08:04:4d:93:36:b4:
e0:23:b1:dd:75:d8:cb:be:44:40:be:a7:87:c5:49:b8:28:79:
90:20:ac:22:c6:18:9f:7f:75:0c:25:7b:ba:e5:e9:60:7b:3a:
26:d0:43:f3:fe:fa:a9:5b:5c:1b:62:36:7b:5d:15:aa:f0:d3:
e5:42:a4:54:0c:2d:b3:0e:4f:ff:8d:56:b9:ec:e0:52:ca:72:
4c:f3:46:d9:30:1a:d2:2b:71:e4:91:38:20:8f:67:55:d5:f9:
4d:79:67:5f:e4:eb:47:d9:4a:07:a1:4b:62:7f:05:02:bf:b6:
be:be:cf:d4:1b:8c:f1:03:ef:b5:02:d9:a9:55:d7:31:a1:10:
98:e4:e3:b9:78:5e:ef:68:f8:66:ee:75:fe:9b:67:94:04:9d:
09:8a:db:d6:6b:e3:53:59:a2:be:7e:cd:07:13:49:cf:6c:3d:
fc:8f:d6:1e:d0:f4:5e:4e:af:75:cb:3b:0a:f2:00:b3:c1:55:
d9:66:5b:9a:61:75:89:7c:e3:5a:9a:a4:a1:e5:52:63:0d:d5:
ee:af:84:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:16:06 2025 by rpki-client