Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/dc608a-175e-42d3-93d8-974c44ab9cfb/1/i9g8pgFhg_NHDlMsEA9zc5R7ilI.roa
File: i9g8pgFhg_NHDlMsEA9zc5R7ilI.roa (raw, json)
Hash identifier: pmvBp+6D8+P5nWPPbH+1YkRwEDVUW0lBGzYnRSQXgWI=
Subject key identifier: 8B:D8:3C:A6:01:61:83:F3:47:0E:53:2C:10:0F:73:73:94:7B:8A:52
Certificate issuer: /CN=335ca521362226d03c1829003d81d498aa838f33
Certificate serial: FC3686
Authority key identifier: 33:5C:A5:21:36:22:26:D0:3C:18:29:00:3D:81:D4:98:AA:83:8F:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M1ylITYiJtA8GCkAPYHUmKqDjzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/dc608a-175e-42d3-93d8-974c44ab9cfb/1/i9g8pgFhg_NHDlMsEA9zc5R7ilI.roa
Signing time: Sat 01 Jan 2022 06:01:38 +0000
ROA not before: Sat 01 Jan 2022 06:01:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42442
IP address blocks: 185.186.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16529030 (0xfc3686)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=335ca521362226d03c1829003d81d498aa838f33
Validity
Not Before: Jan 1 06:01:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8bd83ca6016183f3470e532c100f7373947b8a52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:7a:41:2b:90:64:b3:ae:1d:fd:8e:c6:d3:35:
49:81:f8:45:69:0e:49:ee:a7:c9:b4:42:e7:18:b6:
b5:47:8f:9a:10:0f:42:4a:a3:c5:62:66:b2:ba:53:
34:91:03:01:48:10:13:28:b1:98:d5:f6:78:86:55:
ca:6d:9b:f7:19:cf:d8:02:59:c7:05:fa:2b:30:f1:
36:02:9b:98:51:66:91:e7:c8:21:ee:2d:9b:96:89:
01:67:e3:b6:86:4f:1a:dc:9c:a9:ed:67:88:74:78:
0a:d3:78:2b:9b:d8:5d:ae:9d:d9:96:c7:ef:48:70:
9f:48:0d:8b:04:34:c9:76:49:6c:00:1d:f6:52:8f:
96:82:5d:6a:f2:06:8f:0f:27:a1:15:f5:fa:95:0e:
99:38:15:20:dc:28:8c:df:8a:b4:2a:41:11:5f:3a:
c9:b0:7f:6f:4c:9a:5c:66:e1:26:9b:f2:f1:c4:1b:
8e:b6:1e:21:c2:ce:a7:b0:0c:13:42:3a:72:c9:b2:
92:aa:63:fa:5c:41:e7:a2:54:b1:66:85:ad:2b:2d:
fc:4f:0a:04:a6:78:d7:f4:82:64:00:59:fc:49:66:
1d:3e:aa:08:ea:79:a7:39:f0:6c:0f:1b:bb:65:5b:
14:e8:7e:3a:83:81:11:a6:09:75:29:ef:d2:ec:ca:
93:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:D8:3C:A6:01:61:83:F3:47:0E:53:2C:10:0F:73:73:94:7B:8A:52
X509v3 Authority Key Identifier:
keyid:33:5C:A5:21:36:22:26:D0:3C:18:29:00:3D:81:D4:98:AA:83:8F:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M1ylITYiJtA8GCkAPYHUmKqDjzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/dc608a-175e-42d3-93d8-974c44ab9cfb/1/i9g8pgFhg_NHDlMsEA9zc5R7ilI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/dc608a-175e-42d3-93d8-974c44ab9cfb/1/M1ylITYiJtA8GCkAPYHUmKqDjzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.220.0/24
Signature Algorithm: sha256WithRSAEncryption
15:3a:04:cd:ba:0d:97:97:22:af:8e:06:aa:7b:7a:32:b8:4a:
3b:f1:02:ac:93:77:96:25:67:c7:02:81:0c:2c:78:c4:1f:99:
d3:66:77:b1:21:b8:3b:4c:3b:78:2a:03:6a:1e:73:f4:84:d9:
81:c4:04:76:55:fb:23:e8:da:68:d7:0e:ae:b7:69:cb:0c:3b:
af:e6:9c:64:a7:e5:71:63:e4:3b:c8:96:0b:49:ca:e8:ac:58:
2b:39:0f:8a:35:bd:f8:6d:a8:69:5e:8c:ec:f8:90:a2:28:04:
0b:f3:d9:87:a9:49:65:45:71:35:27:39:24:b4:dd:d0:51:66:
82:e9:8a:20:5a:ac:b1:f3:60:8c:6d:d6:1b:b6:03:60:3d:6e:
6f:dc:03:8b:5d:fe:b9:bd:c4:58:1e:58:76:92:a9:5a:3c:e2:
87:19:23:d0:84:89:72:1e:93:44:2d:9c:d9:7c:fe:1f:d4:a6:
06:da:78:73:3f:9c:af:84:9f:86:d8:44:2c:86:47:06:b6:4a:
b4:e8:62:63:93:01:db:24:37:04:b4:81:8a:75:9b:4f:98:1b:
4d:12:2b:5c:a5:46:69:88:72:f1:27:f7:98:52:2e:8b:74:c7:
7f:5c:63:3a:24:ad:88:8a:10:35:22:ac:68:d0:86:5a:db:d8:
ab:0b:74:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:19:52 2025 by rpki-client