Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3da6fd-5f10-4058-bc02-23724bab2227/1/EVvMTZaz0Ib_m0LC9FGd57qCu68.roa
File: EVvMTZaz0Ib_m0LC9FGd57qCu68.roa (raw, json)
Hash identifier: vH1vM2SFCZo1fKFsdBkEv7OmbTpGrktpmg8gU4+7UvA=
Subject key identifier: 11:5B:CC:4D:96:B3:D0:86:FF:9B:42:C2:F4:51:9D:E7:BA:82:BB:AF
Certificate issuer: /CN=8194ea3ced4f13710d34044cfcb3d1d56c550862
Certificate serial: 28E8AB9A
Authority key identifier: 81:94:EA:3C:ED:4F:13:71:0D:34:04:4C:FC:B3:D1:D5:6C:55:08:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZTqPO1PE3ENNARM_LPR1WxVCGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3da6fd-5f10-4058-bc02-23724bab2227/1/EVvMTZaz0Ib_m0LC9FGd57qCu68.roa
Signing time: Sat 01 Jan 2022 14:02:27 +0000
ROA not before: Sat 01 Jan 2022 14:02:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198760
IP address blocks: 185.236.116.0/22 maxlen: 24
185.208.116.0/22 maxlen: 24
185.241.88.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 686336922 (0x28e8ab9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8194ea3ced4f13710d34044cfcb3d1d56c550862
Validity
Not Before: Jan 1 14:02:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=115bcc4d96b3d086ff9b42c2f4519de7ba82bbaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:93:21:55:d1:63:68:dd:4b:d7:e0:b8:83:43:
a2:bf:69:e6:33:ae:02:b8:71:25:1e:77:80:c4:52:
c0:0f:0c:83:c7:01:87:dd:18:ff:f2:98:48:3d:90:
77:c5:0b:f0:8b:50:6a:95:cd:d8:7a:2f:b6:e1:33:
4b:75:41:64:95:f7:99:2b:73:27:9d:f5:c9:6a:47:
1c:4e:1e:e9:4b:09:77:04:4a:2f:c9:a4:ff:2e:4a:
5d:66:16:6c:64:1d:79:4b:3c:0d:33:80:fd:a7:c9:
46:04:95:8b:97:4a:fb:0c:9e:d3:2e:82:94:ae:35:
1e:69:1e:55:23:9d:be:c1:d5:58:42:84:23:f4:6f:
c3:34:ea:ef:bf:b1:e0:70:9a:f4:4a:c3:1f:4a:84:
90:56:c8:84:2b:fd:d5:96:f7:ec:b3:c6:5b:00:b6:
1e:e7:ca:d0:b5:54:3e:69:99:99:40:5d:66:c1:b8:
51:c2:4a:84:1f:b9:53:92:79:74:69:a4:8b:af:d2:
7f:b4:a5:6e:b4:06:8e:a1:70:a0:ac:bb:14:78:24:
b9:63:36:80:90:72:a4:33:4e:de:70:6c:25:a0:ad:
24:37:f2:a5:56:a0:3e:b9:b0:e1:64:3a:42:46:24:
b7:79:59:4c:c3:5c:af:61:b7:69:35:6f:53:bc:61:
2d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:5B:CC:4D:96:B3:D0:86:FF:9B:42:C2:F4:51:9D:E7:BA:82:BB:AF
X509v3 Authority Key Identifier:
keyid:81:94:EA:3C:ED:4F:13:71:0D:34:04:4C:FC:B3:D1:D5:6C:55:08:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZTqPO1PE3ENNARM_LPR1WxVCGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3da6fd-5f10-4058-bc02-23724bab2227/1/EVvMTZaz0Ib_m0LC9FGd57qCu68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3da6fd-5f10-4058-bc02-23724bab2227/1/gZTqPO1PE3ENNARM_LPR1WxVCGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.208.116.0/22
185.236.116.0/22
185.241.88.0/22
Signature Algorithm: sha256WithRSAEncryption
c7:41:92:f4:af:5e:a6:3d:be:a2:f8:19:3d:7f:ca:90:8b:a9:
89:3b:bc:31:57:c3:7b:23:d0:7e:15:e6:19:21:8a:a6:4b:bc:
32:fb:46:1f:ac:53:ae:2f:e7:32:6f:86:ff:5e:7e:f9:a1:f2:
25:bf:2e:c5:f1:c3:7c:10:6b:df:db:25:32:50:77:79:8e:84:
02:dc:7e:59:aa:47:13:2a:bc:aa:1e:fa:e8:4e:57:d9:14:ef:
a1:21:b2:10:6d:cb:95:59:2d:30:8b:09:78:d0:58:72:bc:70:
5b:40:24:31:4e:74:6e:3c:3d:5e:af:08:2f:65:59:ad:10:88:
0a:80:fa:11:b7:0b:0f:21:8a:85:ae:52:79:3b:f7:ec:dd:d4:
dd:16:07:0d:c5:24:f3:b2:b6:fb:11:a1:23:15:25:96:6d:13:
e7:52:ad:00:c1:21:b9:d7:47:e5:b2:45:ec:cf:cd:ed:ca:f1:
6a:e8:dc:e7:01:a1:f6:06:3d:4f:bc:8b:72:a7:65:b7:7e:c0:
e0:92:14:09:dd:03:b6:b4:87:e5:ca:cd:c7:72:8c:97:62:b4:
89:f1:af:fa:23:a4:48:7b:0d:3f:2c:86:2c:ff:16:28:d9:02:
43:f7:8b:a0:1b:d5:83:62:d1:c4:5d:a4:ac:e9:d1:b1:11:3c:
e7:93:23:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:11:34 2025 by rpki-client