Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/ffdb69-680a-465c-a489-66c1442480de/1/bmN-chqMjVBkgEDS0ieIWrUjOaM.roa
File: bmN-chqMjVBkgEDS0ieIWrUjOaM.roa (raw, json)
Hash identifier: /ywi0kBbuZW5xYQSGFQO9zP4u8gC9F8xlaQqcPWj6PI=
Subject key identifier: 6E:63:7E:72:1A:8C:8D:50:64:80:40:D2:D2:27:88:5A:B5:23:39:A3
Certificate issuer: /CN=9e3e00c6d2b2f98d51482e943b9793d43bf3bc86
Certificate serial: 89E615
Authority key identifier: 9E:3E:00:C6:D2:B2:F9:8D:51:48:2E:94:3B:97:93:D4:3B:F3:BC:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nj4AxtKy-Y1RSC6UO5eT1DvzvIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/ffdb69-680a-465c-a489-66c1442480de/1/bmN-chqMjVBkgEDS0ieIWrUjOaM.roa
Signing time: Sat 01 Jan 2022 02:53:08 +0000
ROA not before: Sat 01 Jan 2022 02:53:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205348
IP address blocks: 185.220.124.0/24 maxlen: 24
185.220.125.0/24 maxlen: 24
185.220.126.0/24 maxlen: 24
185.220.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9037333 (0x89e615)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e3e00c6d2b2f98d51482e943b9793d43bf3bc86
Validity
Not Before: Jan 1 02:53:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e637e721a8c8d50648040d2d227885ab52339a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:25:9e:66:c5:ce:d6:aa:10:02:2e:0c:b9:6a:
ed:f2:aa:42:b7:a4:5a:da:ac:5f:26:d6:38:f1:be:
3b:59:a4:d3:1f:b4:52:9f:4e:05:8a:cc:f4:1f:04:
8a:c2:cb:b1:1a:38:61:ac:ab:f9:d5:6b:e3:af:12:
08:45:81:1c:a6:87:1b:16:03:4c:94:18:69:d2:d8:
8e:b5:fb:77:5a:a5:f4:50:46:d6:bd:43:16:7e:82:
8e:21:66:31:25:a0:28:36:a7:ed:42:95:f2:ed:2e:
18:57:1d:54:b6:6b:01:9c:8e:69:5f:68:f9:9d:11:
47:73:c5:bc:31:88:dd:a1:69:9d:67:0b:3c:1d:41:
96:8c:f7:5d:86:d2:b9:8f:2d:a9:bc:ab:a8:9e:8f:
6c:b5:b9:e9:31:9d:aa:5b:52:5a:f4:85:af:9c:52:
b2:5b:cc:2a:00:a1:f1:56:3b:08:69:c7:0c:02:52:
74:c4:72:ea:30:1a:85:6e:41:6f:a6:03:31:14:79:
39:2d:70:40:fe:d0:19:24:42:45:e3:9d:20:17:e9:
7e:75:26:b4:80:7d:4b:13:ad:72:86:4e:45:a6:d6:
01:75:73:08:51:8d:88:e9:54:2f:63:07:37:81:3e:
20:cc:61:54:bb:cc:b3:7c:ee:40:04:13:b2:29:ba:
f1:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:63:7E:72:1A:8C:8D:50:64:80:40:D2:D2:27:88:5A:B5:23:39:A3
X509v3 Authority Key Identifier:
keyid:9E:3E:00:C6:D2:B2:F9:8D:51:48:2E:94:3B:97:93:D4:3B:F3:BC:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nj4AxtKy-Y1RSC6UO5eT1DvzvIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ffdb69-680a-465c-a489-66c1442480de/1/bmN-chqMjVBkgEDS0ieIWrUjOaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ffdb69-680a-465c-a489-66c1442480de/1/nj4AxtKy-Y1RSC6UO5eT1DvzvIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.124.0/22
Signature Algorithm: sha256WithRSAEncryption
82:56:f8:30:45:d4:51:fa:bd:26:d3:dd:a5:1b:cf:05:7a:65:
74:b9:af:c5:2f:dc:93:42:5c:30:fd:9b:d6:d1:87:07:e6:3b:
e9:5c:9f:9c:ae:1c:93:c3:68:d3:b7:ae:60:cd:c2:fc:52:ac:
ee:ab:80:a0:ef:74:eb:ec:75:95:20:cc:b9:68:fa:88:ec:ef:
9b:6a:c0:cc:b5:1d:9d:35:f4:e3:0f:66:43:1c:23:50:df:65:
51:0b:b0:e7:f6:3e:7d:c7:5c:05:d3:f9:17:20:4f:d6:ce:38:
ae:25:76:e1:32:ec:90:2d:d0:e2:62:a2:c7:57:1a:b9:82:fb:
e5:49:21:44:33:62:5a:68:ca:a8:11:77:01:ee:f4:f6:08:24:
3b:5e:91:28:a8:c7:57:b6:bf:f6:32:ab:a0:3c:d6:bb:10:41:
a6:84:49:05:c5:c6:31:05:45:95:b1:89:3d:98:4e:13:27:33:
8d:f4:49:63:85:0b:ca:10:64:d5:23:37:d7:2e:04:0a:b3:48:
69:0b:f0:8a:f0:27:05:9e:68:a3:1f:16:e9:29:59:94:e0:9a:
1e:82:16:58:2a:69:ba:70:a7:58:55:d3:9b:b9:a5:4d:5d:fc:
83:16:f6:b4:dd:8c:1c:65:5d:34:8a:1e:c5:d5:51:34:fe:a8:
22:2c:20:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:55:51 2025 by rpki-client