Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/473366-702d-473f-bfbe-882c448e2ef6/1/1BdETnawiEATmrAPSg7L1PCY4cM.roa
File: 1BdETnawiEATmrAPSg7L1PCY4cM.roa (raw, json)
Hash identifier: du4jaVCwQ2K57ENTTJV8mMlXJBhI1i78rhUVmNCF7f8=
Subject key identifier: D4:17:44:4E:76:B0:88:40:13:9A:B0:0F:4A:0E:CB:D4:F0:98:E1:C3
Certificate issuer: /CN=a8dff01f56e3419d027be7591ceef62851ce0f6b
Certificate serial: 02A7FBF7
Authority key identifier: A8:DF:F0:1F:56:E3:41:9D:02:7B:E7:59:1C:EE:F6:28:51:CE:0F:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qN_wH1bjQZ0Ce-dZHO72KFHOD2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/473366-702d-473f-bfbe-882c448e2ef6/1/1BdETnawiEATmrAPSg7L1PCY4cM.roa
Signing time: Sat 01 Jan 2022 16:02:40 +0000
ROA not before: Sat 01 Jan 2022 16:02:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43948
IP address blocks: 185.201.172.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44563447 (0x2a7fbf7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8dff01f56e3419d027be7591ceef62851ce0f6b
Validity
Not Before: Jan 1 16:02:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d417444e76b08840139ab00f4a0ecbd4f098e1c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:a4:7b:83:17:d0:48:80:91:24:13:9f:3f:f7:
0b:58:ba:55:7c:ba:b2:b0:dc:c9:c2:86:e5:4a:25:
f0:4f:d2:e5:24:56:f7:28:d7:99:5c:63:8e:79:fe:
f0:0b:db:90:4d:24:59:70:b9:fc:97:70:6e:be:3b:
5d:90:50:b8:26:4b:38:05:eb:05:20:0b:20:4d:5d:
a4:b7:ed:4e:ee:e2:f3:08:33:e0:4a:f3:1e:43:93:
79:55:a9:42:4c:53:86:62:7a:8a:f5:41:b4:93:7f:
65:74:88:ce:9d:9e:32:4a:26:a5:8a:1f:b7:ce:c6:
f3:d5:29:cf:5e:d2:9f:db:21:d9:e5:7e:75:97:8e:
ba:e0:b7:65:f8:a5:e2:f8:48:26:2f:ab:e1:22:4d:
36:38:b5:94:83:d9:e2:e2:91:cc:b6:89:84:0f:56:
07:80:64:18:b6:54:04:42:f0:4a:67:90:82:74:8f:
a4:f1:03:cc:90:3f:c5:12:a0:f2:35:c2:e5:46:a1:
52:92:e6:4a:f2:68:53:f1:5b:39:7e:4a:ca:09:cd:
0c:1b:f9:33:a7:34:26:12:7f:b7:3c:34:92:5c:ef:
b6:ae:80:55:8d:1b:11:91:0c:73:a7:5d:85:37:32:
d0:cc:7b:56:d9:bc:d2:90:f8:8e:8c:cb:5d:4c:9e:
59:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:17:44:4E:76:B0:88:40:13:9A:B0:0F:4A:0E:CB:D4:F0:98:E1:C3
X509v3 Authority Key Identifier:
keyid:A8:DF:F0:1F:56:E3:41:9D:02:7B:E7:59:1C:EE:F6:28:51:CE:0F:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qN_wH1bjQZ0Ce-dZHO72KFHOD2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/473366-702d-473f-bfbe-882c448e2ef6/1/1BdETnawiEATmrAPSg7L1PCY4cM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/473366-702d-473f-bfbe-882c448e2ef6/1/qN_wH1bjQZ0Ce-dZHO72KFHOD2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.172.0/22
Signature Algorithm: sha256WithRSAEncryption
20:8e:58:08:d6:bb:5c:b2:67:4f:85:94:74:7a:9d:5a:d9:0e:
c6:94:af:78:0a:8f:93:09:14:31:fe:e1:ed:22:12:c5:55:dd:
60:b9:e0:be:42:30:21:49:df:7f:c1:37:92:c3:a4:df:45:7c:
45:16:67:6e:3b:60:e6:4e:0b:61:89:be:ee:ac:7d:fc:24:fc:
4f:a7:d2:22:08:78:a3:d0:67:51:f5:0e:d2:18:d1:a7:2a:db:
2b:d5:60:1c:8d:d1:da:c8:68:9c:51:4b:82:8c:39:d6:7c:59:
a2:4e:c2:ee:73:c5:6a:e0:df:a9:2c:a8:54:16:ba:90:11:e9:
f2:28:a0:09:29:fd:04:f7:d4:a3:a8:f0:68:33:56:a6:ba:ea:
b0:69:21:ad:78:c2:b5:31:19:39:e4:28:ee:5c:9f:d4:dd:db:
52:b3:61:f3:49:ae:0e:8a:99:0f:a0:91:db:54:96:66:26:0d:
6d:2d:47:13:bf:5b:39:ce:e6:8f:74:83:55:fe:8c:b1:03:c6:
1d:56:1c:c6:b9:6e:3f:3a:9f:f0:62:db:28:5f:b7:bc:c2:8c:
2c:a0:25:d8:0a:77:4b:6b:70:7b:66:36:05:1f:41:19:5b:82:
ea:36:f9:02:5a:37:08:b3:b4:8d:83:bb:fa:71:da:ed:cb:cc:
f7:89:d2:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 03:26:22 2025 by rpki-client