Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/a4d09f-29df-44ea-a7b1-0a0aaeaee4f1/1/uVSVpMslDHrJXBfh6fxHjH-yMoM.roa
File: uVSVpMslDHrJXBfh6fxHjH-yMoM.roa (raw, json)
Hash identifier: ePd2uxAZwRTT2MJQN5D/fgVsIXXl19D51lPZAV3vETU=
Subject key identifier: B9:54:95:A4:CB:25:0C:7A:C9:5C:17:E1:E9:FC:47:8C:7F:B2:32:83
Certificate issuer: /CN=2e0a9333f93cca544fdabe2ea7a6738a54af759e
Certificate serial: 018BB95F11658C03819269A15CBEA50E3AB4
Authority key identifier: 2E:0A:93:33:F9:3C:CA:54:4F:DA:BE:2E:A7:A6:73:8A:54:AF:75:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LgqTM_k8ylRP2r4up6ZzilSvdZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/a4d09f-29df-44ea-a7b1-0a0aaeaee4f1/1/uVSVpMslDHrJXBfh6fxHjH-yMoM.roa
Signing time: Fri 10 Nov 2023 13:14:57 +0000
ROA not before: Fri 10 Nov 2023 13:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216018
IP address blocks: 185.23.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b9:5f:11:65:8c:03:81:92:69:a1:5c:be:a5:0e:3a:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e0a9333f93cca544fdabe2ea7a6738a54af759e
Validity
Not Before: Nov 10 13:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b95495a4cb250c7ac95c17e1e9fc478c7fb23283
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:45:d8:45:95:e6:48:bc:59:3c:b1:86:99:f2:
6b:38:8f:1f:28:6d:7d:ed:af:ef:47:0f:13:a1:ad:
34:2e:12:90:78:10:68:1d:e8:f1:84:25:02:1e:73:
b7:7b:4e:d2:f1:ef:db:f2:0d:1d:30:4c:a1:73:55:
7d:a6:82:39:e2:f5:6e:e5:5d:86:be:0c:05:09:df:
d3:dc:21:00:1a:98:6d:69:19:42:e9:e8:d9:d2:f7:
2a:d6:de:7e:65:16:e2:a0:ee:fc:f1:a3:d1:1f:a4:
1d:4e:ba:cb:6d:8e:5c:08:9c:eb:44:e5:84:da:3c:
e5:63:fa:e8:14:2f:75:ee:0f:84:60:a6:50:45:b8:
dd:50:81:06:0d:95:89:59:96:ba:1d:df:9a:a6:c2:
d3:66:55:1f:41:59:7a:40:81:21:a0:86:c3:81:d2:
8f:9d:d6:bf:5b:73:d5:66:0b:b4:38:05:97:da:b6:
95:2d:c0:c0:a9:5c:f2:7f:88:b4:88:ad:a7:dc:56:
c7:08:78:a7:c0:22:50:c1:fc:92:e4:2b:43:05:55:
b5:e5:9d:bf:1b:f3:76:30:34:f6:26:b3:c7:63:cb:
e4:9c:2b:26:ea:32:da:9b:f5:ca:50:42:08:c3:c4:
b2:58:fb:89:a9:9b:fc:49:4f:54:3c:96:5f:19:44:
38:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:54:95:A4:CB:25:0C:7A:C9:5C:17:E1:E9:FC:47:8C:7F:B2:32:83
X509v3 Authority Key Identifier:
keyid:2E:0A:93:33:F9:3C:CA:54:4F:DA:BE:2E:A7:A6:73:8A:54:AF:75:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LgqTM_k8ylRP2r4up6ZzilSvdZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/a4d09f-29df-44ea-a7b1-0a0aaeaee4f1/1/uVSVpMslDHrJXBfh6fxHjH-yMoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/a4d09f-29df-44ea-a7b1-0a0aaeaee4f1/1/LgqTM_k8ylRP2r4up6ZzilSvdZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.74.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:2e:b8:d3:2e:9d:75:59:db:33:3e:d2:c6:83:e8:1a:dc:e7:
63:b9:ad:4c:0b:03:8a:fe:25:7f:0a:f2:67:a9:9f:e5:27:02:
8e:d2:3f:22:99:c9:7d:8a:24:7f:bd:3a:3c:b9:86:8b:fb:bc:
f1:33:02:02:57:88:fc:31:7e:48:86:43:d4:a9:53:d9:5d:9a:
7c:6b:44:d6:14:dd:f1:c2:49:8c:37:a5:41:88:c5:ec:30:89:
f3:35:f9:20:3c:a1:9d:89:fc:7c:a1:9d:d1:55:32:c1:31:7c:
d9:7b:7e:53:92:a5:ec:99:b4:b8:c1:f5:c5:16:23:29:77:bf:
be:31:67:b3:2d:d3:26:06:33:1a:e8:60:25:bc:b8:c6:87:ba:
39:12:bc:05:0b:5d:cb:a5:0d:3a:8f:44:c5:37:0b:e1:17:9c:
40:82:76:6f:ce:46:b2:ed:62:7b:ea:b4:95:19:04:fe:74:e2:
c6:59:13:74:46:e2:ab:35:84:c0:9b:ee:02:b6:36:bc:2d:99:
48:0d:5a:e4:9e:de:6e:8e:53:07:ad:4e:32:de:ae:8e:d6:d9:
7a:d2:72:74:6b:c4:16:76:b9:4a:63:16:1b:b6:1c:fc:fa:1c:
f6:a0:cd:b1:5c:43:7b:2a:ea:49:75:c2:6a:b1:a8:89:de:c3:
3b:35:90:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:11:48 2025 by rpki-client