Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/8f6b15-6ec1-4e60-bfd6-e492d4e1b631/1/B-8G1RTOpKs6VNBAvO_jeDmlNPM.roa
File: B-8G1RTOpKs6VNBAvO_jeDmlNPM.roa (raw, json)
Hash identifier: aD2vqEnHeJQyOIiPyAGCoLY4374k8/OfuJn/VCNEOec=
Subject key identifier: 07:EF:06:D5:14:CE:A4:AB:3A:54:D0:40:BC:EF:E3:78:39:A5:34:F3
Certificate issuer: /CN=5e3148b9ecd20e5ff2465a9cd101ada9ae508d57
Certificate serial: 02B8F5F0
Authority key identifier: 5E:31:48:B9:EC:D2:0E:5F:F2:46:5A:9C:D1:01:AD:A9:AE:50:8D:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XjFIuezSDl_yRlqc0QGtqa5QjVc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/8f6b15-6ec1-4e60-bfd6-e492d4e1b631/1/B-8G1RTOpKs6VNBAvO_jeDmlNPM.roa
Signing time: Sat 01 Jan 2022 06:54:33 +0000
ROA not before: Sat 01 Jan 2022 06:54:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47736
IP address blocks: 185.78.44.0/22 maxlen: 22
2a03:5820::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45676016 (0x2b8f5f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e3148b9ecd20e5ff2465a9cd101ada9ae508d57
Validity
Not Before: Jan 1 06:54:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=07ef06d514cea4ab3a54d040bcefe37839a534f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b5:16:fb:82:dd:ab:71:60:82:99:c8:75:28:
87:94:5f:fb:fd:80:a1:76:42:18:d2:e1:02:0b:91:
3e:c6:b2:9f:97:3f:7c:4f:6b:db:1c:7c:14:b5:97:
28:e9:d6:01:9d:81:bb:03:35:be:3c:83:f2:5f:dd:
ac:37:70:21:16:a8:16:a6:2e:35:4f:92:20:32:f2:
47:7c:75:99:1d:e7:ca:c9:73:ce:8f:a4:e1:49:ea:
88:3a:77:96:2a:24:ed:6d:c0:f8:dc:47:52:c9:98:
3b:ad:e2:80:db:45:26:34:57:68:90:74:fd:b4:8c:
cc:ae:77:82:26:27:a7:7f:73:cc:df:51:db:ee:b4:
fb:06:ef:b2:86:e8:7b:f7:06:20:ab:e8:a6:f5:2f:
92:bc:cc:b1:9c:0c:a9:cf:7e:55:74:75:34:77:9a:
38:f4:08:b1:5c:18:cc:44:cf:9f:ff:2f:94:2a:aa:
1b:26:56:29:7d:5e:21:88:09:f8:cd:3e:e8:2d:6b:
3f:44:f7:cb:07:03:66:7e:79:ef:8c:b4:e6:27:5f:
5a:d4:ee:2b:23:82:74:5f:ad:e6:d4:37:9f:9b:25:
40:46:2a:62:c7:69:fb:3f:bd:e6:a6:af:a6:c8:8e:
c6:fb:00:78:b6:2a:dd:4d:ab:66:3f:a0:ad:47:ab:
35:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:EF:06:D5:14:CE:A4:AB:3A:54:D0:40:BC:EF:E3:78:39:A5:34:F3
X509v3 Authority Key Identifier:
keyid:5E:31:48:B9:EC:D2:0E:5F:F2:46:5A:9C:D1:01:AD:A9:AE:50:8D:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XjFIuezSDl_yRlqc0QGtqa5QjVc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/8f6b15-6ec1-4e60-bfd6-e492d4e1b631/1/B-8G1RTOpKs6VNBAvO_jeDmlNPM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/8f6b15-6ec1-4e60-bfd6-e492d4e1b631/1/XjFIuezSDl_yRlqc0QGtqa5QjVc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.78.44.0/22
IPv6:
2a03:5820::/32
Signature Algorithm: sha256WithRSAEncryption
6b:51:40:0b:ba:62:80:24:58:32:2e:00:75:fc:fd:84:65:f7:
5b:07:ba:b2:5a:38:29:17:ff:06:5d:b0:3a:bb:c7:a7:23:82:
4b:74:d0:32:38:1f:ab:4e:cd:f0:e5:d8:1f:86:da:d1:7c:5b:
77:6a:97:20:94:72:e7:eb:c7:06:29:64:fc:25:b3:6e:24:42:
a4:a9:e2:ca:bd:9e:db:8d:c6:9e:61:c9:c3:2f:01:8d:84:43:
ef:f5:b5:f1:90:c6:a2:20:84:f1:54:2c:bf:c9:ae:22:7e:c1:
97:d9:52:53:50:65:27:62:e5:a6:e5:2d:03:56:8f:25:83:40:
73:26:3a:2f:ed:ed:0c:52:ea:47:6a:ff:10:8a:c9:45:84:b1:
5b:a9:b2:c3:e3:df:75:3a:79:d3:ed:e7:31:10:80:a2:d8:13:
b2:31:fc:b0:87:9b:ea:43:58:3a:4f:f4:ad:2a:03:39:9a:29:
8d:ea:ad:df:fd:80:a4:1a:7b:dc:a7:6a:36:87:6f:f6:75:42:
79:5c:14:56:ac:92:61:6f:f8:d1:db:24:b8:d5:ea:84:7a:dc:
24:f2:90:5e:fe:f9:b7:b8:37:6f:be:d6:5b:38:39:35:a1:21:
e2:c4:c8:6d:0d:55:dc:05:a2:ca:ef:3c:62:c7:fc:87:48:c0:
70:1b:d6:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:23:30 2025 by rpki-client