Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/c07a7d-24e6-4610-b656-c47172d5d882/1/5u8nMBBXLia9viDJsewkaDjcsEk.roa
File: 5u8nMBBXLia9viDJsewkaDjcsEk.roa (raw, json)
Hash identifier: 7vNCndOW6e8g0EBF+j9f6Emf5pcQFrhFQw62hxkMUyU=
Subject key identifier: E6:EF:27:30:10:57:2E:26:BD:BE:20:C9:B1:EC:24:68:38:DC:B0:49
Certificate issuer: /CN=59b3e0956a9d4817cd92852c27a27b7d2f1113db
Certificate serial: 01D79F
Authority key identifier: 59:B3:E0:95:6A:9D:48:17:CD:92:85:2C:27:A2:7B:7D:2F:11:13:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WbPglWqdSBfNkoUsJ6J7fS8RE9s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/c07a7d-24e6-4610-b656-c47172d5d882/1/5u8nMBBXLia9viDJsewkaDjcsEk.roa
Signing time: Fri 18 Mar 2022 13:34:11 +0000
ROA not before: Fri 18 Mar 2022 13:34:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202606
IP address blocks: 185.54.216.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120735 (0x1d79f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59b3e0956a9d4817cd92852c27a27b7d2f1113db
Validity
Not Before: Mar 18 13:34:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6ef273010572e26bdbe20c9b1ec246838dcb049
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:95:05:73:be:9a:dc:65:b5:08:2a:6d:51:f1:
1b:9a:3a:6a:b1:94:b2:f4:bd:cd:cb:d6:f3:84:bb:
ff:f1:a5:67:b6:7b:86:66:eb:79:ad:c8:76:5b:ed:
b9:87:71:b7:e8:9f:b9:41:76:f7:f3:ce:38:22:11:
11:ad:39:e9:d1:64:94:de:6a:2a:b1:d2:16:ff:06:
72:94:35:e6:92:d2:87:68:16:15:8b:8b:b2:08:ec:
b3:ee:20:54:68:3f:89:e9:18:f2:55:b2:6c:a1:74:
1d:fb:d3:43:02:58:8f:a6:a9:22:e5:d0:07:a1:8a:
e0:06:60:0d:e2:19:9a:96:25:6c:89:79:2b:4c:ad:
2c:01:a3:49:ef:38:b7:ed:60:96:06:5e:cf:dd:90:
b5:3b:9d:26:83:f7:18:ca:a7:b1:99:ab:fb:07:99:
ec:58:44:52:3d:91:ab:f0:36:a9:42:1d:a2:0e:72:
64:4a:c7:f2:9c:bc:c8:66:b9:87:81:3b:f6:46:64:
fa:bd:87:67:ab:e3:6e:1a:6e:53:41:98:32:c6:64:
51:10:bf:0b:2d:ce:7c:76:23:6d:ff:72:75:d0:94:
8d:de:8b:59:d1:ab:a6:46:fe:e1:4a:5f:d1:c7:3f:
f6:57:aa:dd:34:6a:89:f7:e6:71:95:1c:9b:67:62:
80:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:EF:27:30:10:57:2E:26:BD:BE:20:C9:B1:EC:24:68:38:DC:B0:49
X509v3 Authority Key Identifier:
keyid:59:B3:E0:95:6A:9D:48:17:CD:92:85:2C:27:A2:7B:7D:2F:11:13:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WbPglWqdSBfNkoUsJ6J7fS8RE9s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/c07a7d-24e6-4610-b656-c47172d5d882/1/5u8nMBBXLia9viDJsewkaDjcsEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/c07a7d-24e6-4610-b656-c47172d5d882/1/WbPglWqdSBfNkoUsJ6J7fS8RE9s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.54.216.0/23
Signature Algorithm: sha256WithRSAEncryption
88:8e:bb:90:2d:e0:36:11:34:b6:8c:0e:47:50:37:4f:7d:3f:
5a:dd:90:16:17:ef:14:46:66:e3:4c:6b:f1:d0:6d:72:d0:e7:
e8:a5:22:c9:ac:2f:9e:06:38:15:ce:01:18:79:22:86:25:bc:
3c:47:86:32:f4:e4:13:af:31:f3:e7:6e:61:66:b0:80:66:89:
f9:33:7b:2c:4d:f2:16:1f:51:f3:e9:55:75:6b:51:82:8a:89:
37:9e:71:d7:49:86:b3:eb:5a:4e:f5:df:a2:7b:0e:56:e7:4c:
b6:cf:3b:76:52:3e:c0:b4:56:c7:a6:88:3a:9e:76:83:17:3e:
d1:10:16:8c:a0:96:50:b5:46:86:dc:43:e5:d5:5a:39:23:f4:
8e:ea:b7:0f:b5:6e:63:3b:46:b8:41:bb:80:a8:ff:d8:90:c9:
40:43:3f:2f:f4:c2:61:a1:21:73:fa:d2:eb:06:d5:13:44:2f:
90:b2:a4:a7:91:ad:7b:25:2f:6b:cf:92:37:72:8a:64:ae:4c:
1e:27:2c:2e:73:a0:70:98:b0:5e:bb:7a:de:86:63:97:6f:a0:
35:f2:4d:19:f4:68:c9:9d:ca:39:81:3d:3d:a3:15:08:44:3f:
10:da:62:2f:a2:12:e0:b9:70:ed:45:d1:06:23:b8:32:0e:fc:
cf:4e:e2:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 05:01:53 2025 by rpki-client