Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/uJVGWM8rwn7vNcPuXRFVk9flnKE.roa
File: uJVGWM8rwn7vNcPuXRFVk9flnKE.roa (raw, json)
Hash identifier: gNWT4DjdwO3ekfWT7e3rjg7PRjSm9nkVDT9a0oRFpwI=
Subject key identifier: B8:95:46:58:CF:2B:C2:7E:EF:35:C3:EE:5D:11:55:93:D7:E5:9C:A1
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 3879ED70
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/uJVGWM8rwn7vNcPuXRFVk9flnKE.roa
Signing time: Sat 01 Jan 2022 05:54:15 +0000
ROA not before: Sat 01 Jan 2022 05:54:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21016
IP address blocks: 185.176.118.0/24 maxlen: 24
85.254.8.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 947514736 (0x3879ed70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 1 05:54:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8954658cf2bc27eef35c3ee5d115593d7e59ca1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e4:6f:22:3b:b0:c3:a2:13:a1:75:ae:9e:32:
9b:aa:e6:b8:0d:01:ef:77:8b:64:f4:d9:6f:7e:80:
ab:07:11:00:05:7f:c8:41:0e:11:32:a2:5c:d7:63:
11:e9:04:66:26:d8:19:f8:89:eb:f7:b7:f4:2f:d1:
91:70:f1:a2:2f:c8:c4:b2:3e:f3:31:b1:85:53:cc:
e5:c9:88:3f:b3:9f:ae:37:f0:73:70:a1:8d:22:3b:
16:06:4c:94:ff:0c:b8:94:17:60:8c:26:c8:48:9d:
fe:71:ed:65:fb:3d:01:ea:1d:13:af:19:22:09:2d:
47:71:26:80:34:98:45:be:2f:b6:31:d3:09:50:93:
99:14:24:1c:25:0b:88:7b:e7:82:d5:b4:ea:7a:37:
18:02:73:06:57:17:6a:e4:96:22:b8:46:5e:18:d2:
83:80:5a:de:05:57:95:89:c3:8a:c5:7a:e9:83:8a:
0a:46:16:ca:e3:03:5f:8e:15:08:2a:05:1a:0c:f7:
58:24:a3:d7:c5:21:ad:f9:de:14:6f:34:63:45:ab:
29:14:b1:1c:c3:bf:41:c1:72:9f:ed:98:4e:6e:69:
e0:74:d0:8e:18:d3:72:5c:eb:68:94:32:81:fa:a3:
b8:92:27:3a:44:89:57:7c:53:43:67:59:f3:81:e4:
2e:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:95:46:58:CF:2B:C2:7E:EF:35:C3:EE:5D:11:55:93:D7:E5:9C:A1
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/uJVGWM8rwn7vNcPuXRFVk9flnKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.254.8.0/21
185.176.118.0/24
Signature Algorithm: sha256WithRSAEncryption
07:62:aa:73:38:94:89:28:ff:ef:73:f2:77:7a:39:b8:53:d2:
a9:b0:06:b8:12:29:4b:cf:f4:46:50:ac:10:a9:4c:64:bf:51:
20:35:ed:54:73:0b:86:75:43:9c:82:18:0e:5c:d1:b4:d6:88:
c6:f6:33:e3:b5:57:53:c3:05:26:bf:f1:27:d0:60:2f:ed:75:
70:04:9a:a9:a2:5a:b1:70:1e:39:c4:24:f2:ac:61:d1:a8:f7:
e6:a6:9c:57:69:f0:36:e1:cc:a5:eb:7b:b2:5c:51:ae:82:e9:
6b:d5:be:09:32:23:b0:99:ca:eb:fe:24:ed:58:70:5c:2a:43:
67:a8:ea:e5:2b:84:59:eb:4c:94:bc:34:77:1c:19:15:0f:e7:
e4:77:c1:a2:fd:1a:24:48:07:f1:a0:bd:8e:0a:43:37:78:28:
ea:a7:c6:ff:53:59:9d:90:69:4d:7f:88:b2:d3:4c:4e:90:e8:
0d:71:58:ef:f8:e3:fe:68:b6:c4:9d:d8:d2:6b:ca:4d:65:bc:
9f:11:53:89:47:a7:21:f2:69:16:bd:f5:5c:2a:4a:36:23:4f:
64:38:f1:9f:3e:5d:4d:66:20:cd:a1:58:d1:d1:d3:5d:cd:4a:
34:3b:cf:9f:b5:35:a9:d9:c7:58:c3:bc:c7:41:11:b5:34:9d:
f0:fd:a4:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:13:03 2025 by rpki-client