Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/efba93-2973-4213-b6f1-449124ace026/1/vIoSUY8EpTkhpwN1W7vwJ7FhFQo.roa
File: vIoSUY8EpTkhpwN1W7vwJ7FhFQo.roa (raw, json)
Hash identifier: QTFa+QisMQjjJki/kinOKhESE3ESBnqq3o3W0MQwHM0=
Subject key identifier: BC:8A:12:51:8F:04:A5:39:21:A7:03:75:5B:BB:F0:27:B1:61:15:0A
Certificate issuer: /CN=2becef943d34c80e0a0fd81426e6136b31508fee
Certificate serial: 0189D39DC229570C0290BCCBB03A84DD18A6
Authority key identifier: 2B:EC:EF:94:3D:34:C8:0E:0A:0F:D8:14:26:E6:13:6B:31:50:8F:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K-zvlD00yA4KD9gUJuYTazFQj-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/efba93-2973-4213-b6f1-449124ace026/1/vIoSUY8EpTkhpwN1W7vwJ7FhFQo.roa
Signing time: Tue 08 Aug 2023 05:27:58 +0000
ROA not before: Tue 08 Aug 2023 05:27:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198404
IP address blocks: 185.195.179.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d3:9d:c2:29:57:0c:02:90:bc:cb:b0:3a:84:dd:18:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2becef943d34c80e0a0fd81426e6136b31508fee
Validity
Not Before: Aug 8 05:27:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bc8a12518f04a53921a703755bbbf027b161150a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:b5:14:ad:01:2e:12:8d:6c:2e:cd:d2:f0:90:
ec:eb:1e:a1:a6:69:7b:fa:5b:20:bb:ba:b7:9b:38:
4d:c4:76:98:54:48:39:59:ac:97:64:d2:0f:e7:11:
10:ca:cd:c0:d8:d4:fc:1e:74:da:11:20:73:bb:8f:
c6:51:8c:e8:13:5c:d3:cb:f3:8d:81:c7:fc:5e:4c:
c7:77:ed:4c:19:31:8c:13:81:16:bd:62:65:75:9e:
f1:73:90:f5:60:da:65:e5:a1:1c:84:d9:7e:5a:a2:
f3:ab:5d:c1:07:13:85:a4:f5:01:a9:5a:90:9b:3f:
86:78:3b:32:4e:93:e3:e4:d8:cf:a8:9b:7b:e5:8d:
4f:31:71:cf:9b:ac:f6:b4:dd:88:38:53:1e:8e:c4:
5a:40:2d:d1:07:82:fc:e9:66:18:fa:65:70:64:33:
98:92:d3:bb:c2:25:b7:38:27:9d:0c:68:3e:17:bb:
ce:2a:3f:a3:cc:cd:98:9f:77:9d:69:15:34:42:e1:
fa:d3:72:0f:b2:ec:d1:ea:7f:34:9b:68:ca:b7:d1:
7a:75:d2:42:44:51:65:78:80:78:e9:dc:46:20:8d:
8d:86:0e:52:f4:d6:12:a0:f4:f2:e9:a0:bc:4b:82:
ec:43:1a:f4:62:1e:e4:25:77:19:e5:9e:f3:41:7f:
79:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:8A:12:51:8F:04:A5:39:21:A7:03:75:5B:BB:F0:27:B1:61:15:0A
X509v3 Authority Key Identifier:
keyid:2B:EC:EF:94:3D:34:C8:0E:0A:0F:D8:14:26:E6:13:6B:31:50:8F:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K-zvlD00yA4KD9gUJuYTazFQj-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/efba93-2973-4213-b6f1-449124ace026/1/vIoSUY8EpTkhpwN1W7vwJ7FhFQo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/efba93-2973-4213-b6f1-449124ace026/1/K-zvlD00yA4KD9gUJuYTazFQj-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.195.179.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:a2:49:aa:ea:29:a3:37:73:a8:1d:42:d0:1b:32:86:30:f8:
bb:d8:bb:4e:d5:01:00:fb:4a:49:b7:ac:f3:2b:9e:57:1c:8a:
fa:a4:ad:3b:b4:c6:ff:90:99:13:69:5b:de:7c:aa:38:97:64:
41:92:af:01:08:86:eb:cb:4a:11:d8:ce:af:a9:50:1c:51:ad:
dc:4f:2f:16:c8:25:10:1b:4b:dc:00:a2:24:72:7a:b2:bc:8e:
2f:30:64:b2:a0:0e:a3:af:29:6c:7c:f9:13:4b:83:e1:95:bb:
41:c4:d5:fd:fa:08:d1:df:17:8e:69:8a:24:cc:c7:11:f3:b4:
d4:2a:d3:d1:b2:45:70:40:02:3a:e1:65:d4:d2:8c:59:8d:6a:
63:89:39:91:f2:fb:f9:93:af:0d:2f:72:56:95:0b:e6:20:18:
71:2a:72:c4:bc:04:6f:a3:78:3b:d9:5a:da:19:6f:e7:11:b2:
f4:1c:81:9b:f4:9e:48:43:2e:99:3a:4b:56:99:76:08:68:54:
de:96:e4:92:cb:32:18:48:28:e4:e4:05:0a:8d:f2:68:3e:a0:
95:f8:30:32:2e:c6:ad:e5:5c:1d:05:54:e0:0b:69:ce:e7:ff:
a4:06:e0:71:fd:2d:03:5f:3e:ca:16:c0:a2:b0:79:68:37:27:
0c:ac:de:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:46:17 2025 by rpki-client