Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/120043-1733-4c72-ad47-bc0e511c20ce/1/Ab3THz0udYZBn888Oj78E-IazsE.roa
File: Ab3THz0udYZBn888Oj78E-IazsE.roa (raw, json)
Hash identifier: xo0A4C9t+Nk14+gkGR2Nw81K25kONoLANoCP9JLvTdg=
Subject key identifier: 01:BD:D3:1F:3D:2E:75:86:41:9F:CF:3C:3A:3E:FC:13:E2:1A:CE:C1
Certificate issuer: /CN=97893182b16718983bc008c8d087f8ddca3d8614
Certificate serial: 094CFEEE
Authority key identifier: 97:89:31:82:B1:67:18:98:3B:C0:08:C8:D0:87:F8:DD:CA:3D:86:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l4kxgrFnGJg7wAjI0If43co9hhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/120043-1733-4c72-ad47-bc0e511c20ce/1/Ab3THz0udYZBn888Oj78E-IazsE.roa
Signing time: Sat 01 Jan 2022 13:56:31 +0000
ROA not before: Sat 01 Jan 2022 13:56:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198018
IP address blocks: 185.177.130.0/24 maxlen: 24
185.177.131.0/24 maxlen: 24
185.177.129.0/24 maxlen: 24
194.153.186.0/24 maxlen: 24
2a0b:1306:7::/48 maxlen: 48
2a0b:1301:4000::/34 maxlen: 34
2a0b:1301::/34 maxlen: 34
2a0b:1306:2::/48 maxlen: 48
2a0b:1306:1::/48 maxlen: 48
2a0b:1306:c::/48 maxlen: 48
2a0b:1301:8000::/48 maxlen: 48
2a0b:1301:8001::/48 maxlen: 48
2a0b:1306:8::/48 maxlen: 48
2a0b:1306:4::/48 maxlen: 48
2a0b:1300::/34 maxlen: 34
2a0b:1306:6::/48 maxlen: 48
2a0b:1300:8000::/48 maxlen: 48
2a0b:1306:400::/48 maxlen: 48
2a0b:1306::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156040942 (0x94cfeee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97893182b16718983bc008c8d087f8ddca3d8614
Validity
Not Before: Jan 1 13:56:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=01bdd31f3d2e7586419fcf3c3a3efc13e21acec1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c5:60:71:2b:df:60:e1:be:08:90:fd:73:0e:
ef:33:e6:58:92:90:91:36:8e:0c:b8:88:12:6e:9b:
82:10:b1:04:fa:1c:46:3b:50:f7:4d:e0:99:4b:3f:
3f:c6:ca:c4:f7:80:65:0d:ef:83:d5:14:ac:03:91:
3d:1e:4c:03:12:25:8e:5c:a8:38:f4:21:a0:5e:a6:
87:c7:0b:b0:e7:34:55:65:9e:67:96:69:fc:1a:6f:
0b:6a:fd:7a:58:04:f6:a2:c9:ad:c8:a1:1e:3d:f5:
2d:7b:28:3c:cb:e1:7a:02:20:58:de:1f:e2:cd:00:
90:60:8c:db:7c:29:27:7a:ed:24:00:7a:0c:62:88:
36:4d:56:f4:a1:57:4f:c7:33:dd:a9:8c:16:fa:00:
cb:b0:c2:5e:e9:e6:60:d4:cb:ff:c6:73:33:90:bc:
3f:32:96:b0:57:b6:21:eb:af:88:48:95:96:bc:af:
17:af:c1:73:b4:09:d7:66:ad:8a:46:c9:04:7b:33:
56:59:0e:12:78:0b:6d:bb:37:ec:38:8c:ef:51:43:
99:3e:35:bb:9f:47:78:08:28:26:51:36:40:c3:75:
04:11:47:a8:8a:e6:23:a4:72:4f:6a:d1:2b:b1:41:
85:9a:60:6f:dd:c0:c4:f4:86:43:7f:ac:6f:55:7b:
ce:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:BD:D3:1F:3D:2E:75:86:41:9F:CF:3C:3A:3E:FC:13:E2:1A:CE:C1
X509v3 Authority Key Identifier:
keyid:97:89:31:82:B1:67:18:98:3B:C0:08:C8:D0:87:F8:DD:CA:3D:86:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l4kxgrFnGJg7wAjI0If43co9hhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/120043-1733-4c72-ad47-bc0e511c20ce/1/Ab3THz0udYZBn888Oj78E-IazsE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/120043-1733-4c72-ad47-bc0e511c20ce/1/l4kxgrFnGJg7wAjI0If43co9hhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.129.0-185.177.131.255
194.153.186.0/24
IPv6:
2a0b:1300::/34
2a0b:1300:8000::/48
2a0b:1301::-2a0b:1301:8001:ffff:ffff:ffff:ffff:ffff
2a0b:1306::-2a0b:1306:2:ffff:ffff:ffff:ffff:ffff
2a0b:1306:4::/48
2a0b:1306:6::-2a0b:1306:8:ffff:ffff:ffff:ffff:ffff
2a0b:1306:c::/48
2a0b:1306:400::/48
Signature Algorithm: sha256WithRSAEncryption
5a:2c:dc:fa:49:c3:36:2a:fe:53:d3:6f:d2:b1:93:8c:ac:b4:
5f:e3:22:46:ba:99:8c:8f:b0:49:8d:01:23:ce:e6:0d:4d:99:
8b:49:31:78:b2:42:b2:72:86:ad:6a:78:8b:6b:e0:d1:ad:b5:
90:60:e0:03:66:da:75:7f:98:f4:2a:b9:83:cb:f9:2e:7a:a6:
1c:f9:ab:7e:22:5c:15:69:53:47:a0:de:7b:00:da:80:b3:ba:
cc:30:1a:07:bd:d8:87:cb:f6:48:70:34:98:c6:00:5e:64:d4:
7e:eb:98:e6:56:f6:9d:d1:2d:76:8e:53:97:e4:53:e4:3a:4b:
84:5b:ea:12:0e:be:9c:d1:f5:bd:e6:2c:7e:ff:12:20:a8:06:
4e:1d:41:85:19:70:dd:9e:aa:2e:2f:e7:27:ae:20:16:06:c5:
46:3e:ae:53:2c:b1:1b:ee:4c:0d:4d:3e:14:21:47:2b:39:01:
43:4b:97:d8:0b:56:9c:f2:04:93:04:97:a0:2f:09:3b:d9:82:
a9:dd:aa:2e:da:1e:98:4a:77:f7:87:ac:72:ea:28:db:a4:d2:
f6:ef:6c:56:5a:c8:34:85:28:39:07:b8:b0:62:55:f2:16:a5:
83:7d:c5:33:45:94:b3:0f:85:f3:1d:ad:d4:68:47:04:cf:f3:
a6:ba:c6:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:39:10 2025 by rpki-client