Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/c0d281-d40d-40e0-93ea-5bae375cf85a/1/1-5aA6P_Ldx5KM1WRa51mXL9dMPo.roa
File: 1-5aA6P_Ldx5KM1WRa51mXL9dMPo.roa (raw, json)
Hash identifier: 8u4zvcNwBtPjfHouP5R0nNs6JD+0C4csMQQZS7oorSY=
Subject key identifier: FB:96:80:E8:FF:CB:77:1E:4A:33:55:91:6B:9D:66:5C:BF:5D:30:FA
Certificate issuer: /CN=73635ae36f2df4f68d3e572a313e1a18aa20b757
Certificate serial: 1409CCBC
Authority key identifier: 73:63:5A:E3:6F:2D:F4:F6:8D:3E:57:2A:31:3E:1A:18:AA:20:B7:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c2Na428t9PaNPlcqMT4aGKogt1c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/c0d281-d40d-40e0-93ea-5bae375cf85a/1/1-5aA6P_Ldx5KM1WRa51mXL9dMPo.roa
Signing time: Thu 20 Jan 2022 10:50:10 +0000
ROA not before: Thu 20 Jan 2022 10:50:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49278
IP address blocks: 158.112.71.0/24 maxlen: 24
158.112.66.0/23 maxlen: 23
158.112.84.0/22 maxlen: 22
158.112.88.0/24 maxlen: 24
158.112.93.0/24 maxlen: 24
158.112.96.0/21 maxlen: 21
158.112.0.0/16 maxlen: 16
158.112.20.0/22 maxlen: 22
158.112.24.0/21 maxlen: 21
158.112.32.0/22 maxlen: 22
144.84.0.0/18 maxlen: 18
158.112.164.0/23 maxlen: 23
144.84.0.0/16 maxlen: 16
158.112.208.0/23 maxlen: 23
144.84.128.0/18 maxlen: 18
185.155.24.0/23 maxlen: 23
158.112.255.0/24 maxlen: 24
185.155.26.0/23 maxlen: 23
144.84.232.0/22 maxlen: 22
144.84.164.0/23 maxlen: 23
144.84.174.0/23 maxlen: 23
144.84.192.0/18 maxlen: 18
144.84.208.0/23 maxlen: 23
2a02:27b8:1112::/48 maxlen: 48
2a02:27ba:4000::/34 maxlen: 34
2a02:27b8:2003::/48 maxlen: 48
2a02:27b8:1::/48 maxlen: 48
2a02:27b8:2004::/48 maxlen: 48
2a02:27b8:2002::/48 maxlen: 48
2a02:27b8:1111::/48 maxlen: 48
2a02:27b8:2000::/48 maxlen: 48
2a02:27b8:4000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 336186556 (0x1409ccbc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73635ae36f2df4f68d3e572a313e1a18aa20b757
Validity
Not Before: Jan 20 10:50:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb9680e8ffcb771e4a3355916b9d665cbf5d30fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a0:5f:15:fa:46:7b:2d:f2:cf:3b:24:be:90:
60:83:05:47:70:51:a7:de:44:e4:b1:a2:80:4d:3e:
b9:16:08:4b:ad:3f:0a:69:b3:d7:9a:e2:00:d1:b6:
27:fe:9f:55:26:30:89:12:56:7a:b5:2a:7e:f2:d8:
0b:b3:4d:ad:ba:6e:d4:4e:42:ce:d7:22:29:1c:c3:
45:aa:5f:e6:ff:43:af:67:32:56:5c:18:1d:2a:57:
1b:4a:b7:ce:a5:14:4a:7e:fa:60:da:bd:ed:04:46:
34:e7:80:ee:80:42:88:4c:bf:9e:11:1a:75:31:66:
3f:5f:f3:a5:a4:3a:75:bd:64:a7:17:92:b5:a6:33:
7f:a3:29:ed:75:23:f7:17:34:18:1b:f3:5f:13:e9:
29:77:62:38:31:b7:64:3c:b8:6a:1f:ef:7c:a5:5f:
63:5f:be:20:ad:46:3a:d7:a3:71:f2:96:b0:3b:f6:
1d:ed:3d:42:e3:27:8b:5c:f3:3d:11:9a:1c:f9:c8:
92:d3:fc:b2:c0:04:43:e1:34:10:d5:3f:7c:60:c7:
8f:1d:8d:11:90:0a:57:44:bd:ed:dc:6c:ce:bf:6d:
56:fd:45:f4:c6:47:ab:57:6e:ca:44:19:b0:ab:33:
34:b2:66:2d:01:9b:aa:2e:1c:39:91:c9:3c:34:cc:
c5:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:96:80:E8:FF:CB:77:1E:4A:33:55:91:6B:9D:66:5C:BF:5D:30:FA
X509v3 Authority Key Identifier:
keyid:73:63:5A:E3:6F:2D:F4:F6:8D:3E:57:2A:31:3E:1A:18:AA:20:B7:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2Na428t9PaNPlcqMT4aGKogt1c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/c0d281-d40d-40e0-93ea-5bae375cf85a/1/1-5aA6P_Ldx5KM1WRa51mXL9dMPo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/c0d281-d40d-40e0-93ea-5bae375cf85a/1/c2Na428t9PaNPlcqMT4aGKogt1c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.84.0.0/16
158.112.0.0/16
185.155.24.0/22
IPv6:
2a02:27b8:1::/48
2a02:27b8:1111::-2a02:27b8:1112:ffff:ffff:ffff:ffff:ffff
2a02:27b8:2000::/48
2a02:27b8:2002::-2a02:27b8:2004:ffff:ffff:ffff:ffff:ffff
2a02:27b8:4000::/48
2a02:27ba:4000::/34
Signature Algorithm: sha256WithRSAEncryption
6d:41:07:6f:51:88:ac:aa:44:74:38:0d:57:c4:eb:af:71:2c:
69:ec:65:8b:23:3a:79:d0:f4:42:b6:94:6a:00:75:c3:77:e7:
36:95:cb:80:a3:27:32:18:97:21:74:2b:02:ec:a0:71:64:27:
71:1c:c3:ef:3c:11:22:a0:e4:9f:36:20:ed:f2:41:10:f9:8d:
c7:13:53:6a:f7:09:b2:b5:fd:fa:ed:29:20:9b:e2:2b:36:ac:
a6:e1:00:2c:6f:0d:82:d3:31:08:5a:a5:40:8c:0b:df:f4:3e:
42:26:1c:85:50:00:92:38:40:56:57:a0:3f:ea:9f:70:91:87:
c3:1c:65:89:0d:d9:69:dd:82:ab:84:f9:7a:ad:89:c2:4a:3d:
52:fe:9d:77:99:13:dc:de:e8:52:ca:4c:a7:a3:a0:26:15:29:
7f:b5:cc:33:01:66:a8:32:20:93:f4:fe:88:08:d2:72:d9:df:
fb:ce:d3:79:a4:34:44:3d:b2:1e:e2:81:cd:35:aa:3c:57:c8:
fd:6c:3b:53:10:d5:99:54:cc:d8:61:18:c5:ef:53:46:2a:bb:
06:d6:99:a6:ff:ec:7c:48:13:59:f5:12:b3:3d:3c:9e:04:0e:
d6:6c:27:24:65:50:e4:78:8f:ca:5d:55:4e:aa:26:54:4a:fe:
3c:e6:29:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:00:56 2025 by rpki-client