Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/F4vxf_7p9BPYXiaMo6cZDx0zQ6Y.roa
File: F4vxf_7p9BPYXiaMo6cZDx0zQ6Y.roa (raw, json)
Hash identifier: qAIJi2xk+RKcHVOBnltltgK5cDabbdiGi6mvDCL7dCw=
Subject key identifier: 17:8B:F1:7F:FE:E9:F4:13:D8:5E:26:8C:A3:A7:19:0F:1D:33:43:A6
Certificate issuer: /CN=7554ac4c7f451c5bb9382fbcd46d70c4c0f9de56
Certificate serial: 01891B9E0D6A14B23AF6605D572DCDFF3DDE
Authority key identifier: 75:54:AC:4C:7F:45:1C:5B:B9:38:2F:BC:D4:6D:70:C4:C0:F9:DE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dVSsTH9FHFu5OC-81G1wxMD53lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/F4vxf_7p9BPYXiaMo6cZDx0zQ6Y.roa
Signing time: Mon 03 Jul 2023 11:58:10 +0000
ROA not before: Mon 03 Jul 2023 11:58:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211256
IP address blocks: 185.177.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1b:9e:0d:6a:14:b2:3a:f6:60:5d:57:2d:cd:ff:3d:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7554ac4c7f451c5bb9382fbcd46d70c4c0f9de56
Validity
Not Before: Jul 3 11:58:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=178bf17ffee9f413d85e268ca3a7190f1d3343a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:00:13:b9:34:39:8c:10:1f:c3:02:e2:d3:0b:
93:5b:0c:39:c4:07:1f:27:48:f3:19:a8:2f:8c:5c:
e2:51:66:c7:cd:89:06:57:ee:f1:42:a4:6c:1e:a3:
ab:9f:5e:75:c9:a3:98:8a:3b:d3:72:53:d1:15:b9:
d6:ab:0a:35:26:ed:80:39:d9:74:f7:a7:d7:b6:9f:
4b:d6:3d:43:e7:07:ea:64:87:1b:a3:6b:0d:9f:07:
6c:f6:85:7c:a3:a2:d3:51:4e:da:99:41:f5:4e:54:
a8:5e:db:0d:14:7a:70:4b:a1:c0:22:a2:3a:46:1e:
b6:c6:b9:d1:1b:a4:25:21:1b:d0:0c:46:54:8d:31:
55:c7:1e:63:6c:6d:ad:0f:91:a9:ad:b6:78:d5:a4:
be:05:94:01:a2:d5:8e:30:e3:2e:7d:ab:22:12:51:
f3:20:a6:3f:dc:59:57:59:19:f6:24:47:4d:69:6d:
2e:54:4e:60:d9:8c:ef:ba:95:09:9f:ce:84:5e:5a:
8c:5a:6c:b9:bf:6e:56:4e:28:2c:f7:fd:01:a8:0f:
48:8a:69:ff:63:7e:24:21:88:cd:e1:e1:30:51:7d:
b3:53:a9:c6:99:3a:0e:81:fc:24:96:2d:21:72:2b:
5f:ef:ce:f9:79:5f:72:ba:50:ed:15:91:29:ce:b4:
b4:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:8B:F1:7F:FE:E9:F4:13:D8:5E:26:8C:A3:A7:19:0F:1D:33:43:A6
X509v3 Authority Key Identifier:
keyid:75:54:AC:4C:7F:45:1C:5B:B9:38:2F:BC:D4:6D:70:C4:C0:F9:DE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dVSsTH9FHFu5OC-81G1wxMD53lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/F4vxf_7p9BPYXiaMo6cZDx0zQ6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/dVSsTH9FHFu5OC-81G1wxMD53lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.231.0/24
Signature Algorithm: sha256WithRSAEncryption
16:f6:5d:49:5a:66:07:55:3e:25:57:cf:6b:c2:e8:13:e2:4c:
db:9d:8e:95:67:1e:38:21:80:bc:1a:cf:68:96:1c:4e:61:20:
40:9d:33:90:1f:8e:2c:3c:56:bc:40:df:57:c4:7b:5f:49:74:
6d:c5:cb:14:a0:6d:80:08:b1:19:60:17:c1:c8:e7:32:c7:6c:
9b:59:8d:a5:48:03:c6:78:51:e1:2a:ac:4b:4f:45:ca:47:e3:
82:2f:88:79:c1:60:ac:56:f2:32:2e:63:e9:ec:4b:45:36:f3:
17:6d:d1:08:b7:66:84:f4:72:db:9d:d8:2d:2a:fb:cf:b5:94:
d2:60:3d:3f:40:05:ff:b1:ad:52:ed:1f:c1:fc:29:16:b2:61:
0c:21:28:a7:cb:44:e7:32:fb:32:9f:2e:da:bf:1d:44:9c:2f:
9c:ea:ed:8d:5f:db:d7:0a:1a:71:b1:60:99:5d:49:a6:54:7f:
e6:87:dc:5a:6a:25:90:a2:73:00:bf:ea:91:ef:fd:20:19:3b:
08:9d:b1:82:84:82:69:29:97:c1:ce:3f:bb:45:1a:3b:b2:4c:
79:ce:66:82:3b:3c:d1:27:c9:b7:a7:fa:88:6f:5d:36:58:5e:
d7:69:ab:15:f3:b8:af:7f:5f:0e:3e:4e:e1:81:87:82:da:f7:
db:3a:5f:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:19:09 2025 by rpki-client