Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/EBkVVHlKoFUtHhsk3Nzfcl5GQgg.roa
File: EBkVVHlKoFUtHhsk3Nzfcl5GQgg.roa (raw, json)
Hash identifier: 9Smg67E+jjyimYAgTiHa5u8TjpWOM3KQkGfrXnlrLyo=
Subject key identifier: 10:19:15:54:79:4A:A0:55:2D:1E:1B:24:DC:DC:DF:72:5E:46:42:08
Certificate issuer: /CN=50d18196b29f60e85d8712de4039a531cfc1ab31
Certificate serial: 055D43C4
Authority key identifier: 50:D1:81:96:B2:9F:60:E8:5D:87:12:DE:40:39:A5:31:CF:C1:AB:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UNGBlrKfYOhdhxLeQDmlMc_BqzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/EBkVVHlKoFUtHhsk3Nzfcl5GQgg.roa
Signing time: Sat 01 Jan 2022 07:55:33 +0000
ROA not before: Sat 01 Jan 2022 07:55:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205388
IP address blocks: 185.107.195.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89998276 (0x55d43c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50d18196b29f60e85d8712de4039a531cfc1ab31
Validity
Not Before: Jan 1 07:55:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=10191554794aa0552d1e1b24dcdcdf725e464208
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:30:29:83:fb:f5:08:17:ba:f6:4f:34:09:44:
3d:ac:44:2d:3c:00:08:bd:8c:bb:76:e8:d0:00:d0:
d9:0b:61:08:ca:f9:a6:7c:3d:4c:c8:8e:c5:c7:bc:
1a:85:62:e4:f6:65:4c:7a:04:20:41:c8:af:fe:cd:
0f:49:1f:40:ca:fe:ee:7b:54:6e:e3:61:3f:78:18:
e4:2a:db:08:27:66:01:18:dc:8f:23:37:53:ad:92:
46:5d:98:ac:71:bb:aa:cb:ca:8d:ba:2a:04:86:c4:
30:aa:85:bc:c6:6a:a9:ae:1f:3d:c9:7f:46:66:1f:
15:5f:f4:e7:04:3f:e2:59:3f:f7:60:a4:cf:da:5d:
8a:be:d9:27:d5:1f:6b:55:15:6c:7b:1c:a9:14:23:
b6:fd:d5:b6:3d:64:e8:99:53:7e:73:be:0c:c4:47:
29:95:9d:ae:43:22:71:21:bd:a8:19:cf:12:52:4f:
79:a9:60:2d:a3:2b:69:1a:1e:53:73:05:dd:7f:eb:
cf:70:5b:b0:1e:89:dd:06:c4:32:bd:3f:a6:43:b7:
95:a7:93:3a:9e:4c:74:fa:df:87:83:9a:26:7a:a8:
db:fd:c4:9c:5f:1f:a1:0c:7c:fe:dd:61:18:19:28:
fa:e2:68:24:92:0c:d5:38:64:5e:c2:c0:fc:2b:a4:
62:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:19:15:54:79:4A:A0:55:2D:1E:1B:24:DC:DC:DF:72:5E:46:42:08
X509v3 Authority Key Identifier:
keyid:50:D1:81:96:B2:9F:60:E8:5D:87:12:DE:40:39:A5:31:CF:C1:AB:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UNGBlrKfYOhdhxLeQDmlMc_BqzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/EBkVVHlKoFUtHhsk3Nzfcl5GQgg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/UNGBlrKfYOhdhxLeQDmlMc_BqzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.107.195.0/24
Signature Algorithm: sha256WithRSAEncryption
14:9c:df:6c:51:35:3a:b0:32:5e:6d:ac:f3:85:e0:81:c4:d3:
8f:b4:1f:66:c0:b4:74:af:90:eb:03:8b:24:a9:8f:72:19:8b:
a0:d0:fe:00:ad:0b:83:21:69:4a:5c:1a:6f:7a:e4:31:19:fa:
58:c0:8f:b6:b8:50:8b:22:b7:d6:74:9b:2c:13:05:54:12:46:
14:ca:cd:66:d9:5e:c4:d4:1b:0c:60:44:e6:4f:4a:b4:a0:8d:
fa:cc:ad:3d:b0:46:86:f6:95:4f:1b:7a:8f:f0:79:5c:6e:dd:
18:3c:b1:4f:09:6c:28:ee:82:e1:cc:a9:c2:e3:37:23:f5:ba:
ab:a1:19:82:ac:55:8d:8e:26:44:45:b3:20:f7:9a:6b:25:0c:
c0:c2:57:6a:6a:a7:f5:f6:57:86:25:96:38:ad:71:2c:fe:20:
cb:b6:a3:03:30:54:e6:70:78:9a:86:61:51:fe:3e:63:8f:b7:
71:af:1c:fa:30:1b:ee:29:3d:e6:2d:25:16:8b:f6:cf:9d:02:
eb:6f:9a:c5:ca:f7:4f:06:df:aa:36:2c:cf:34:e7:61:2c:15:
c8:80:b6:c7:b1:c3:10:f7:90:6a:05:2f:7f:7d:ee:6b:5c:ae:
61:6d:fc:e9:11:bc:2a:39:61:1c:25:2b:87:1a:88:66:33:c9:
47:4b:cf:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 19:52:49 2025 by rpki-client