Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/6e457e-366d-440b-af2c-5cadbdcf2215/1/o2B55SVSRETzjem-zTKAZFVNSCw.roa
File: o2B55SVSRETzjem-zTKAZFVNSCw.roa (raw, json)
Hash identifier: 9cII5YIbYb8J6EMmUfY8cW2OxgrHIhFMLT5LCk8SMxA=
Subject key identifier: A3:60:79:E5:25:52:44:44:F3:8D:E9:BE:CD:32:80:64:55:4D:48:2C
Certificate issuer: /CN=e49dbf3c44468e52411d4861856bf0bdc79063e4
Certificate serial: 0182F92D76B589D4E4A3CA966FEA0AC099DF
Authority key identifier: E4:9D:BF:3C:44:46:8E:52:41:1D:48:61:85:6B:F0:BD:C7:90:63:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5J2_PERGjlJBHUhhhWvwvceQY-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/6e457e-366d-440b-af2c-5cadbdcf2215/1/o2B55SVSRETzjem-zTKAZFVNSCw.roa
Signing time: Thu 01 Sep 2022 13:11:22 +0000
ROA not before: Thu 01 Sep 2022 13:11:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56975
IP address blocks: 185.108.223.0/24 maxlen: 24
185.108.222.0/24 maxlen: 24
2a00:e000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f9:2d:76:b5:89:d4:e4:a3:ca:96:6f:ea:0a:c0:99:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e49dbf3c44468e52411d4861856bf0bdc79063e4
Validity
Not Before: Sep 1 13:11:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a36079e525524444f38de9becd328064554d482c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:d6:be:fe:04:ab:a9:eb:a7:56:0d:22:4a:d2:
fb:2b:aa:95:52:97:f1:08:b2:fa:b5:28:80:39:ae:
61:94:9c:95:e3:85:2e:3f:01:48:ec:ca:c0:d4:b8:
e3:61:d8:41:8b:9f:c2:13:fd:b9:6f:36:8a:40:10:
11:16:b9:48:8e:86:c5:50:13:94:c0:f4:b4:45:76:
67:09:cd:3d:87:f0:72:fa:42:57:f6:ae:03:95:a5:
96:8b:57:f5:4d:16:bd:02:98:b8:58:d6:c1:9f:8a:
9d:88:da:5f:9d:ec:9a:85:0b:5a:90:f1:4d:f6:f1:
09:b9:98:48:09:c8:3a:50:35:e4:cd:b0:43:c0:28:
59:8b:18:ae:e7:10:66:8b:df:0d:6c:52:aa:78:99:
9f:65:4e:a5:2a:21:8b:ae:de:27:d6:8d:f6:6b:56:
fc:08:41:cd:65:90:02:07:89:59:bb:9d:96:7f:e7:
1d:c6:bb:e4:41:11:86:0b:ce:22:ef:94:ff:1f:98:
56:a5:5b:e6:e4:3e:1a:20:7b:95:e2:b0:e8:48:56:
77:a8:8a:7d:4e:8b:10:86:a5:df:09:93:c0:d8:8c:
6b:f6:35:76:f5:f4:df:65:3a:e6:6e:ea:98:1a:f4:
8e:4f:04:7d:07:52:c4:71:22:62:47:7b:33:ad:2f:
6a:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:60:79:E5:25:52:44:44:F3:8D:E9:BE:CD:32:80:64:55:4D:48:2C
X509v3 Authority Key Identifier:
keyid:E4:9D:BF:3C:44:46:8E:52:41:1D:48:61:85:6B:F0:BD:C7:90:63:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5J2_PERGjlJBHUhhhWvwvceQY-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/6e457e-366d-440b-af2c-5cadbdcf2215/1/o2B55SVSRETzjem-zTKAZFVNSCw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/6e457e-366d-440b-af2c-5cadbdcf2215/1/5J2_PERGjlJBHUhhhWvwvceQY-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.108.222.0/23
IPv6:
2a00:e000::/48
Signature Algorithm: sha256WithRSAEncryption
1b:3d:a8:8f:01:ed:1f:be:e5:2c:ab:5a:75:5f:4b:59:f4:0d:
15:f6:4c:f1:92:db:b9:4c:18:2e:27:c9:30:ee:a9:90:f5:66:
73:94:bd:90:9f:3b:3e:da:5d:f9:f2:77:78:97:c6:82:de:78:
d9:da:c4:e2:c4:c3:a2:eb:dc:29:77:6d:58:ad:a1:8b:59:8f:
8d:61:d9:aa:1d:9f:67:8b:20:d4:ff:52:13:df:8a:ad:71:01:
2a:d4:6b:7f:1b:4c:5e:e5:15:e2:da:c3:12:97:95:29:32:21:
2a:00:a7:2c:36:f9:fd:65:ce:42:0d:50:f1:f9:e0:8e:f8:e7:
2f:66:89:78:5f:21:51:ae:06:91:22:71:1b:38:66:43:54:93:
4e:8e:ec:1e:5a:2c:a9:ea:ed:33:a2:85:bf:6e:13:91:d6:05:
88:09:a2:ad:06:ae:35:cb:a8:db:d1:d5:9b:85:a3:e6:d2:9f:
1f:41:9d:89:93:55:8c:57:de:20:a6:20:e1:23:4a:15:57:60:
40:18:96:06:f2:71:75:e8:9f:f9:73:1c:4a:95:4e:99:bd:2d:
76:99:92:ff:58:9e:8e:69:34:8e:90:62:b6:a3:ce:c3:a7:8b:
bb:7e:28:f7:2d:60:70:6d:b8:3f:0b:a9:08:b7:5c:fa:20:51:
1d:1f:b0:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:44:58 2025 by rpki-client