Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/25b47e-4079-4f21-911b-f389a5269fb2/1/LsVRHcoC22Lt2Q51UD4p1HaNJds.roa
File: LsVRHcoC22Lt2Q51UD4p1HaNJds.roa (raw, json)
Hash identifier: OABRuh91dNkxX7DmkM4m9nDIcZI9amKkHjhalHFSwto=
Subject key identifier: 2E:C5:51:1D:CA:02:DB:62:ED:D9:0E:75:50:3E:29:D4:76:8D:25:DB
Certificate issuer: /CN=432efe16ec6c00fd45b5d918d9b172acd0a58d96
Certificate serial: 01C2AB09
Authority key identifier: 43:2E:FE:16:EC:6C:00:FD:45:B5:D9:18:D9:B1:72:AC:D0:A5:8D:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qy7-FuxsAP1FtdkY2bFyrNCljZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/25b47e-4079-4f21-911b-f389a5269fb2/1/LsVRHcoC22Lt2Q51UD4p1HaNJds.roa
Signing time: Sat 01 Jan 2022 15:58:07 +0000
ROA not before: Sat 01 Jan 2022 15:58:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39498
IP address blocks: 185.122.245.0/24 maxlen: 24
185.122.244.0/24 maxlen: 24
185.122.244.0/23 maxlen: 23
185.122.247.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29534985 (0x1c2ab09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=432efe16ec6c00fd45b5d918d9b172acd0a58d96
Validity
Not Before: Jan 1 15:58:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ec5511dca02db62edd90e75503e29d4768d25db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:4d:2b:83:49:50:48:35:62:35:f4:3d:b7:7a:
1b:ae:18:b3:d8:0f:68:62:aa:df:3a:32:a6:21:a0:
a2:fe:e0:87:a6:19:0b:67:aa:6a:9b:b7:27:ea:7f:
67:61:3a:66:1d:00:55:ec:8f:46:07:ca:cc:66:a2:
9d:92:c5:7d:9c:15:ee:be:44:6b:3e:2f:2d:6a:15:
eb:7e:dd:6c:ea:0b:48:55:8b:6f:66:20:0f:5d:2c:
9e:2f:42:15:30:a6:d2:5d:6e:2c:c5:05:ff:fb:9f:
b2:75:b4:10:9f:c7:d5:22:a1:af:1d:69:d8:e1:d0:
c9:92:a5:d8:c5:e4:e2:80:84:1a:ef:ae:d1:bc:ab:
8b:bb:8f:92:f0:0c:82:ff:68:61:b3:de:a5:14:01:
7d:51:4f:b1:ab:fb:98:96:66:62:03:e5:db:5e:e3:
9f:11:1e:e3:0e:1c:a4:65:ad:49:dc:fc:0e:30:5d:
21:b9:d0:2c:f7:f3:e3:dc:08:48:89:a9:b0:ed:09:
e9:6b:c4:fc:91:4b:8e:cd:91:f3:63:d2:9e:2b:b7:
18:2a:51:ed:a1:83:ff:c7:2a:ac:50:da:3d:a1:cb:
4b:b9:a0:22:35:b4:34:08:4b:bc:d4:cc:93:cd:59:
3a:bd:0e:67:cd:db:ae:66:01:ff:55:db:a4:2a:6a:
fa:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:C5:51:1D:CA:02:DB:62:ED:D9:0E:75:50:3E:29:D4:76:8D:25:DB
X509v3 Authority Key Identifier:
keyid:43:2E:FE:16:EC:6C:00:FD:45:B5:D9:18:D9:B1:72:AC:D0:A5:8D:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qy7-FuxsAP1FtdkY2bFyrNCljZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/25b47e-4079-4f21-911b-f389a5269fb2/1/LsVRHcoC22Lt2Q51UD4p1HaNJds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/25b47e-4079-4f21-911b-f389a5269fb2/1/Qy7-FuxsAP1FtdkY2bFyrNCljZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.122.244.0/23
185.122.247.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:68:25:45:b6:43:b4:99:30:62:c7:20:f5:fd:59:e9:4e:34:
64:8e:b2:f1:d3:ed:0d:25:c3:b4:40:54:8c:66:14:27:88:b4:
c4:20:35:4e:84:dd:92:6d:6f:41:6d:3b:db:a8:ef:00:df:33:
1d:d0:87:3f:bf:44:31:a7:93:b4:e9:0a:e9:ef:5a:bc:be:4a:
e7:21:a4:9b:da:10:22:9d:39:b9:85:4a:2c:e6:a4:05:56:d0:
b3:1d:9b:97:f0:48:3a:f0:aa:64:3d:ac:d0:a7:9c:cd:7e:54:
81:ef:8c:29:3c:e0:10:d6:e3:ff:dc:4f:9c:32:5a:cf:1f:f7:
ba:da:a0:ea:49:05:23:c8:43:d8:de:f0:fb:69:fc:b2:5a:dd:
73:04:97:d8:37:1f:05:0c:66:23:af:75:67:2f:92:dc:69:7c:
cc:51:31:c8:0e:b0:bb:d0:62:6d:71:55:d8:b3:c1:b8:d6:5b:
65:34:7c:7f:e1:13:f0:ff:72:fd:3a:e3:f3:c3:63:94:72:51:
34:bf:84:eb:9e:aa:3a:7e:1e:03:67:81:05:f0:86:7f:ba:4d:
14:5f:03:17:32:53:52:41:80:65:77:eb:07:11:16:93:60:21:
35:32:58:30:54:88:3c:a5:35:78:43:82:4d:76:bb:d8:28:1a:
7e:4b:81:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 4 07:00:49 2025 by rpki-client