Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/efba93-2973-4213-b6f1-449124ace026/1/7iGqChvZp7msf7xT6y5_q4XtbV4.roa
File: 7iGqChvZp7msf7xT6y5_q4XtbV4.roa (raw, json)
Hash identifier: 4jkU92ZC0g7ZXzFWES/CweaTjCKtG3cgAUx64xBTcJA=
Subject key identifier: EE:21:AA:0A:1B:D9:A7:B9:AC:7F:BC:53:EB:2E:7F:AB:85:ED:6D:5E
Certificate issuer: /CN=2becef943d34c80e0a0fd81426e6136b31508fee
Certificate serial: 03D5160E
Authority key identifier: 2B:EC:EF:94:3D:34:C8:0E:0A:0F:D8:14:26:E6:13:6B:31:50:8F:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K-zvlD00yA4KD9gUJuYTazFQj-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/efba93-2973-4213-b6f1-449124ace026/1/7iGqChvZp7msf7xT6y5_q4XtbV4.roa
Signing time: Tue 15 Feb 2022 11:48:16 +0000
ROA not before: Tue 15 Feb 2022 11:48:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12357
IP address blocks: 185.195.176.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64296462 (0x3d5160e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2becef943d34c80e0a0fd81426e6136b31508fee
Validity
Not Before: Feb 15 11:48:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee21aa0a1bd9a7b9ac7fbc53eb2e7fab85ed6d5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:fa:0d:c6:fd:eb:a7:a4:50:ca:14:92:24:e9:
4c:1c:7b:1b:63:6f:02:11:d1:79:1e:a3:45:c1:36:
48:e0:4e:2a:16:db:03:f5:24:ee:3f:29:da:1b:99:
8d:fb:b4:8e:d9:74:cf:61:1f:29:14:65:b6:1d:84:
3c:63:a7:d8:d9:03:15:2e:ef:83:ae:58:2f:89:c2:
6c:97:b1:8c:0c:c3:6e:4b:8a:f3:f7:5e:ed:4f:3e:
be:66:ea:90:22:5c:41:56:54:38:cc:5d:b8:19:9c:
23:8f:1a:f7:6c:92:2e:db:57:f8:be:9b:7e:63:87:
74:cd:2d:58:4e:29:9d:93:63:cd:b1:61:a0:42:5e:
6c:7a:45:82:10:7c:1f:26:7b:26:38:43:67:89:81:
66:32:8d:56:5d:b7:db:31:ca:c8:4e:bb:58:1d:57:
45:63:a5:d9:96:1e:a6:94:06:de:21:5b:86:57:6b:
3c:d2:95:32:40:2c:07:15:5f:fd:e8:85:6c:76:65:
dc:14:c5:e2:13:37:e9:91:78:27:18:14:88:78:37:
1c:d1:86:dc:8c:2e:da:42:d5:36:9a:6f:b8:8f:71:
a7:04:62:fe:fd:c5:b4:e9:cb:24:0e:4c:14:13:15:
3c:31:4a:13:4c:2a:8b:c9:54:c0:05:8c:1f:ca:31:
53:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:21:AA:0A:1B:D9:A7:B9:AC:7F:BC:53:EB:2E:7F:AB:85:ED:6D:5E
X509v3 Authority Key Identifier:
keyid:2B:EC:EF:94:3D:34:C8:0E:0A:0F:D8:14:26:E6:13:6B:31:50:8F:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K-zvlD00yA4KD9gUJuYTazFQj-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/efba93-2973-4213-b6f1-449124ace026/1/7iGqChvZp7msf7xT6y5_q4XtbV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/efba93-2973-4213-b6f1-449124ace026/1/K-zvlD00yA4KD9gUJuYTazFQj-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.195.176.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:1c:1b:84:1c:56:e6:e2:cc:76:6b:12:07:43:f0:46:b8:d4:
12:34:09:cd:b8:0f:8d:25:39:5f:1f:83:41:90:8d:17:ca:e8:
36:12:96:9f:1f:e5:60:0a:4e:e9:4e:5b:e6:70:96:58:19:2c:
e2:5b:be:8a:ff:b8:40:91:15:2f:76:d8:52:7d:72:ec:ee:1c:
7d:a0:49:3d:2a:63:7f:5e:e0:d9:66:12:9f:47:cf:1c:e5:5a:
df:ae:c6:26:5e:1f:f8:1b:ef:01:02:6c:bf:d8:2b:62:8e:85:
6e:04:35:ec:6d:6f:1f:b3:da:30:e3:7a:df:0b:4b:ab:b5:fd:
93:02:85:71:6a:89:10:8c:b8:11:f6:0b:7e:7a:ba:43:82:4c:
c0:a8:11:3d:b8:0f:71:42:f0:d7:63:1d:98:38:db:02:18:80:
0a:1c:cd:ce:13:88:59:bd:da:65:c7:36:a6:f3:21:26:12:8f:
d8:b0:58:56:87:ef:3e:b6:3d:0f:4c:40:85:fc:f0:33:af:d5:
99:bb:5d:87:27:4d:61:7c:a1:84:4f:62:d8:ad:4d:88:10:82:
b0:81:82:ba:5b:fc:24:2e:a6:e8:b3:37:c6:c1:3f:57:33:55:
1e:d0:32:c2:cd:5d:d6:a9:49:25:db:72:53:da:8f:08:c5:57:
fa:25:ce:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:24:46 2025 by rpki-client