Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/1-D7HKm7iDv__Chs6qjZ7hdhqGRU.roa
File: 1-D7HKm7iDv__Chs6qjZ7hdhqGRU.roa (raw, json)
Hash identifier: Vh4PHQUbGkarfMqPykItSdivqRGpxIcE6k+ZkDZKpn0=
Subject key identifier: F8:3E:C7:2A:6E:E2:0E:FF:FF:0A:1B:3A:AA:36:7B:85:D8:6A:19:15
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 01869712A06273DCD20FA483FA9041E02CBD
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/1-D7HKm7iDv__Chs6qjZ7hdhqGRU.roa
Signing time: Tue 28 Feb 2023 08:10:25 +0000
ROA not before: Tue 28 Feb 2023 08:10:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7029
IP address blocks: 149.126.252.0/24 maxlen: 24
149.126.250.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:97:12:a0:62:73:dc:d2:0f:a4:83:fa:90:41:e0:2c:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Feb 28 08:10:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f83ec72a6ee20effff0a1b3aaa367b85d86a1915
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:85:be:4f:15:73:3f:fc:39:72:b9:56:15:5e:
09:5f:94:27:c5:3e:85:8c:72:f1:09:94:91:fb:28:
fb:c7:80:b2:48:4f:9d:fd:54:0f:49:84:51:74:f7:
fb:81:ae:eb:ab:d0:7b:bf:b5:7b:b6:71:c2:ad:2e:
8d:3d:41:f5:4b:48:4a:e5:f0:57:f7:47:ef:ab:cd:
5c:b8:d4:05:3d:52:d7:87:29:8d:9e:1b:d1:d8:18:
a4:1c:f6:05:18:79:78:a3:e1:1f:d4:47:23:bb:aa:
16:96:2e:dd:cb:18:e2:7a:44:03:cc:c5:03:08:16:
a5:bb:16:90:aa:41:dc:94:e7:24:5f:15:6a:2e:a3:
1b:34:3a:86:91:5b:60:51:80:ca:e3:61:5c:d9:76:
ee:9a:81:44:12:c0:0e:f7:8d:53:93:e9:6c:94:f2:
98:24:87:ed:1c:6e:fd:9a:0d:c9:65:26:a6:71:3b:
47:77:d8:f6:35:d4:66:8b:2e:42:e9:d1:b4:d5:f2:
ef:ca:c4:8a:f7:44:0e:c6:af:2e:66:05:73:95:ea:
f3:79:34:a1:26:40:b7:11:11:ec:01:7f:c7:9d:b5:
7d:b6:92:93:8d:50:7e:35:9a:af:95:a8:e1:66:2c:
4d:a5:40:cf:a9:2c:8b:2b:21:af:45:9a:81:2e:7e:
9a:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:3E:C7:2A:6E:E2:0E:FF:FF:0A:1B:3A:AA:36:7B:85:D8:6A:19:15
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/1-D7HKm7iDv__Chs6qjZ7hdhqGRU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.126.250.0/24
149.126.252.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:be:2c:b0:d7:58:30:b6:fc:5c:68:65:8a:fe:1f:d3:7e:b1:
f8:f5:16:71:44:9c:7b:e4:ab:3d:96:e8:aa:ac:2c:80:f0:d2:
0e:9a:ff:7a:61:9d:cc:09:ac:45:18:4a:38:c4:37:20:9b:b1:
a2:63:8a:29:10:ca:a3:8b:15:45:26:bb:d2:49:3d:13:75:57:
9f:55:c3:81:a5:a8:2d:1b:df:3f:cd:1f:cc:70:65:3e:40:48:
b7:53:2b:91:30:49:c8:94:89:1f:0e:c8:d0:52:96:22:a0:80:
1f:5d:f4:29:b9:a0:76:a2:55:75:99:94:eb:c5:1f:f9:e6:64:
f0:9d:c0:51:c4:66:55:45:6a:0a:a4:2a:5c:56:b4:27:60:5b:
c7:d9:06:03:e3:84:c1:ca:7e:1c:cc:09:21:37:01:d1:f0:d2:
de:bf:d2:74:e6:14:42:d2:c5:9b:a0:06:a3:8d:58:7b:9a:12:
1a:50:c6:09:17:bb:d1:a8:15:6a:54:73:df:56:ed:15:71:64:
5b:8b:56:ff:70:f4:74:7a:c3:47:6a:9d:29:07:7c:84:1b:13:
39:50:05:1f:f9:31:63:32:2a:c5:1e:46:bf:83:cf:f4:b8:7a:
f2:86:9a:89:8d:c2:60:54:25:d9:0f:91:0c:bd:7a:0e:30:23:
cc:a6:df:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 10:21:10 2025 by rpki-client