Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/9af78b-41c4-47b7-af95-37b0a2ab3cd6/1/FnSEvo6tsBOuUhgm88ThrZZIHvI.roa
File: FnSEvo6tsBOuUhgm88ThrZZIHvI.roa (raw, json)
Hash identifier: Rf2fSAmcxrbFBZt8pFCqUSKwEhsYv3SS9GuqDb/SoC0=
Subject key identifier: 16:74:84:BE:8E:AD:B0:13:AE:52:18:26:F3:C4:E1:AD:96:48:1E:F2
Certificate issuer: /CN=8a227c35f928d9c8b8ff7c25721efd47a90dcb67
Certificate serial: 01856EB91F033A0F6C95EE10D00C5D9FE826
Authority key identifier: 8A:22:7C:35:F9:28:D9:C8:B8:FF:7C:25:72:1E:FD:47:A9:0D:CB:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iiJ8Nfko2ci4_3wlch79R6kNy2c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/9af78b-41c4-47b7-af95-37b0a2ab3cd6/1/FnSEvo6tsBOuUhgm88ThrZZIHvI.roa
Signing time: Sun 01 Jan 2023 19:05:03 +0000
ROA not before: Sun 01 Jan 2023 19:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199039
IP address blocks: 185.134.52.0/22 maxlen: 24
193.187.74.0/23 maxlen: 23
176.110.96.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:b9:1f:03:3a:0f:6c:95:ee:10:d0:0c:5d:9f:e8:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a227c35f928d9c8b8ff7c25721efd47a90dcb67
Validity
Not Before: Jan 1 19:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=167484be8eadb013ae521826f3c4e1ad96481ef2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e9:b8:0a:33:6d:12:2a:20:fc:a8:d7:5b:d1:
cc:55:bf:89:12:7d:ea:51:b7:55:14:8f:6b:c7:86:
36:7d:95:d8:35:a3:05:96:c7:17:b0:31:c1:d4:36:
3d:f0:fa:43:31:cd:90:e6:02:13:fb:5c:af:34:9a:
f3:e7:55:de:4d:2d:ff:4d:af:ab:74:ff:e2:8a:2e:
f9:ae:51:4b:c5:6d:0a:5e:74:0e:b0:08:2b:5b:1a:
bc:3a:c6:b3:0e:42:5b:1b:d7:c3:91:d7:f4:cc:4c:
41:fc:4a:d1:92:6a:30:0e:2c:d1:c2:4c:66:fb:a8:
f4:f6:93:6f:28:bb:04:b3:5f:25:f6:21:ea:6d:c2:
5f:75:1e:05:fb:01:c4:be:14:ac:ff:4e:d5:c3:48:
20:e8:c2:af:fe:14:b0:40:d6:17:bb:68:e2:9d:80:
c6:98:e2:70:d0:da:0c:de:bb:23:a5:96:9c:1f:10:
20:40:e8:f9:45:a3:a0:66:f9:28:b2:a3:ba:8c:c3:
65:15:fc:9c:68:7e:f4:72:4d:8a:54:39:80:82:d5:
55:17:64:f5:02:33:b9:98:f0:f8:40:df:3a:14:07:
c5:f0:92:b3:a6:d9:2f:19:ce:26:db:c6:c1:29:e0:
63:69:98:ef:88:06:58:b8:71:16:ff:5f:c6:48:97:
1d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:74:84:BE:8E:AD:B0:13:AE:52:18:26:F3:C4:E1:AD:96:48:1E:F2
X509v3 Authority Key Identifier:
keyid:8A:22:7C:35:F9:28:D9:C8:B8:FF:7C:25:72:1E:FD:47:A9:0D:CB:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iiJ8Nfko2ci4_3wlch79R6kNy2c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/9af78b-41c4-47b7-af95-37b0a2ab3cd6/1/FnSEvo6tsBOuUhgm88ThrZZIHvI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/9af78b-41c4-47b7-af95-37b0a2ab3cd6/1/iiJ8Nfko2ci4_3wlch79R6kNy2c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.110.96.0/22
185.134.52.0/22
193.187.74.0/23
Signature Algorithm: sha256WithRSAEncryption
31:b2:27:51:35:05:ba:d1:99:e7:d4:5a:5c:ea:46:7e:65:e8:
6b:8c:d6:3e:13:59:18:bd:f4:cd:b6:61:53:fc:94:8f:8a:5a:
2a:c7:9f:f7:b4:02:35:6e:9a:82:9a:a7:a1:4f:3e:3a:0c:27:
32:62:61:45:a6:ec:fb:56:98:c1:4e:12:8f:c1:41:d9:89:98:
b0:ba:d7:1d:cb:ed:d1:72:33:b1:0c:5e:fb:ba:5a:01:60:00:
e0:15:38:24:40:53:ae:9c:f0:07:29:ba:c8:2d:38:5d:74:a5:
9d:4e:09:cb:d6:f2:b0:6f:41:c5:ee:c2:72:0d:ce:89:f5:db:
eb:c5:a7:1a:cd:1e:94:0f:f0:e8:c3:0b:f3:20:6b:d6:84:bb:
61:27:d4:e8:96:b9:77:1d:f2:f6:cc:87:74:8c:58:c8:89:94:
e3:b9:87:18:f6:d2:c7:94:e0:de:1a:54:73:9d:fe:93:1f:20:
30:aa:b8:76:f2:3f:9d:e3:87:ee:70:d8:cf:5c:a9:6e:f8:3e:
9a:31:d1:db:f3:5a:a9:4f:1f:31:fb:ba:20:7a:15:e3:e2:f9:
7a:f9:42:28:cf:92:a4:24:6d:e5:05:b3:20:b9:4d:4b:d7:1f:
0e:10:7a:8c:00:10:64:82:37:a2:9f:84:d4:86:e0:03:e8:1c:
80:08:a0:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:47:24 2025 by rpki-client