Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/2efce0-82ee-43ce-8f28-6bfc33501479/1/blXQdcAsa71Y5issAKcqgW22VIk.roa
File: blXQdcAsa71Y5issAKcqgW22VIk.roa (raw, json)
Hash identifier: 8efr0Gqv7ycLzyqZ1nAO6NHJCiphfGGhPU3VxJiqvUg=
Subject key identifier: 6E:55:D0:75:C0:2C:6B:BD:58:E6:2B:2C:00:A7:2A:81:6D:B6:54:89
Certificate issuer: /CN=7731b62b0e159ba6ccd87f73275a868ebcc41ab8
Certificate serial: 039A09EA
Authority key identifier: 77:31:B6:2B:0E:15:9B:A6:CC:D8:7F:73:27:5A:86:8E:BC:C4:1A:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/2efce0-82ee-43ce-8f28-6bfc33501479/1/blXQdcAsa71Y5issAKcqgW22VIk.roa
Signing time: Sat 01 Jan 2022 10:54:30 +0000
ROA not before: Sat 01 Jan 2022 10:54:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204739
IP address blocks: 185.242.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60426730 (0x39a09ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7731b62b0e159ba6ccd87f73275a868ebcc41ab8
Validity
Not Before: Jan 1 10:54:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e55d075c02c6bbd58e62b2c00a72a816db65489
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:56:ca:0f:00:4b:df:4e:1b:aa:4a:1f:05:d7:
53:5b:c6:3c:4a:d8:4c:5c:d1:63:41:c9:d6:8b:16:
63:1e:51:8b:a8:f9:1d:f5:27:ef:ba:c8:2c:98:d8:
35:cd:64:90:4a:0f:e2:16:3d:38:f4:23:f4:24:fa:
3e:17:ee:89:e5:36:71:6d:4d:48:d7:12:cd:33:e0:
d0:9c:68:63:56:ad:c2:8d:f7:a8:14:a0:03:ea:a7:
c2:fe:45:cb:dc:29:2d:82:5f:43:24:21:fc:87:97:
9a:47:9b:51:c0:b3:87:20:4c:96:99:87:bb:06:67:
2d:22:44:d4:1c:c2:cf:df:30:3f:4d:3d:a0:a4:6a:
ba:89:93:a0:af:df:3d:26:0b:51:f8:87:cc:8b:a0:
6f:c6:70:6a:40:12:62:d5:96:5a:7c:a4:3e:01:78:
a1:10:2c:1b:cd:dd:3b:c3:ba:9e:e5:15:52:f0:c5:
c3:1f:49:39:10:6f:d6:bf:ad:a1:1d:eb:62:2e:43:
e4:a0:a5:0d:c8:89:a3:2b:01:85:eb:a7:b1:fe:07:
d6:a6:dc:be:46:81:d4:ad:69:10:7d:fe:9f:cc:e1:
28:04:5a:4d:54:fd:43:45:86:f0:79:6f:45:f0:df:
37:76:a9:d8:b0:a9:1f:16:10:e5:4b:c6:39:08:1b:
cd:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:55:D0:75:C0:2C:6B:BD:58:E6:2B:2C:00:A7:2A:81:6D:B6:54:89
X509v3 Authority Key Identifier:
keyid:77:31:B6:2B:0E:15:9B:A6:CC:D8:7F:73:27:5A:86:8E:BC:C4:1A:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2efce0-82ee-43ce-8f28-6bfc33501479/1/blXQdcAsa71Y5issAKcqgW22VIk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2efce0-82ee-43ce-8f28-6bfc33501479/1/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.40.0/22
Signature Algorithm: sha256WithRSAEncryption
65:11:bd:f3:8d:07:9d:53:38:49:67:fc:2d:79:5d:86:51:af:
f5:75:1a:bc:7d:a0:5e:c1:e1:62:2c:9e:fe:57:85:30:be:1a:
85:f7:be:56:9a:ba:e1:b8:f5:c6:bd:d3:e2:24:43:aa:5f:96:
84:64:9e:4f:66:07:f3:9f:5f:5d:75:ba:3e:a8:75:c4:15:b8:
e4:58:85:8a:81:3a:96:87:68:35:91:74:98:7b:b6:1c:71:71:
ef:cc:f3:67:0f:74:b2:b6:2f:97:62:d2:9e:87:75:af:fe:7c:
35:13:96:42:73:c5:40:7c:dc:98:80:48:e2:7c:df:1c:33:ed:
2b:0d:f8:af:7e:f8:bf:b4:34:db:40:ea:c2:4a:9f:4d:53:68:
00:92:03:a0:38:f0:29:a8:57:7c:8f:a4:c4:2c:cb:91:85:ed:
78:12:d3:ff:75:a7:8c:34:ff:3a:bb:16:89:1a:1b:a3:e2:1c:
8b:5b:01:a5:d9:6c:b8:d2:3b:66:a0:f1:6a:1d:bd:de:53:bb:
02:92:9b:d0:e0:d7:a1:90:04:ce:fd:00:9e:d6:ba:24:77:ec:
94:cc:3a:c5:2c:5c:87:8c:91:4f:1a:01:56:35:5a:5c:a9:97:
6e:5d:73:01:33:bd:24:b1:c3:c8:fa:22:55:30:7a:0b:21:ec:
11:52:78:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:23:47 2025 by rpki-client