Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/ecb5d4-b448-42e4-b4a3-9b65890e2eae/1/N1Dla4FRqvaMbpQZV4PBEJV3s2M.roa
File: N1Dla4FRqvaMbpQZV4PBEJV3s2M.roa (raw, json)
Hash identifier: Ss0TPAYBpezdBn6w1lBAEFOycvhYV2OMQAtrK9Iwe6U=
Subject key identifier: 37:50:E5:6B:81:51:AA:F6:8C:6E:94:19:57:83:C1:10:95:77:B3:63
Certificate issuer: /CN=e2e1ef8511b7562bf3dc3c0b04093b337bce0391
Certificate serial: B6D4CC
Authority key identifier: E2:E1:EF:85:11:B7:56:2B:F3:DC:3C:0B:04:09:3B:33:7B:CE:03:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4uHvhRG3Vivz3DwLBAk7M3vOA5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/ecb5d4-b448-42e4-b4a3-9b65890e2eae/1/N1Dla4FRqvaMbpQZV4PBEJV3s2M.roa
Signing time: Sat 01 Jan 2022 01:56:03 +0000
ROA not before: Sat 01 Jan 2022 01:56:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.209.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11982028 (0xb6d4cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2e1ef8511b7562bf3dc3c0b04093b337bce0391
Validity
Not Before: Jan 1 01:56:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3750e56b8151aaf68c6e94195783c1109577b363
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:37:cf:16:c4:47:42:53:d1:de:c1:9a:1f:60:
0e:e9:85:76:c7:a7:dc:99:e7:0f:63:7c:a6:a4:d2:
dc:0d:d3:99:31:56:71:51:30:17:9d:2b:4a:ed:74:
47:cf:89:d6:4c:7c:65:59:23:cc:df:5c:87:81:c5:
02:bc:64:b3:58:67:68:c1:11:88:64:e0:13:32:9c:
a7:53:e1:cd:9c:a7:e9:62:75:7b:19:79:1a:be:c8:
cf:04:fc:7b:20:09:ab:65:90:82:b8:5e:01:18:cb:
a3:b3:3c:a8:c5:d5:14:4a:e6:03:be:02:e8:23:f2:
22:93:05:6e:65:af:8f:57:8b:7a:57:b5:05:37:af:
d4:01:b1:fe:1a:d3:94:b3:c5:ca:39:1e:98:03:d4:
39:2a:19:b6:ab:b8:76:bf:bc:ec:69:63:9f:f7:69:
2f:74:12:77:33:46:da:be:93:a3:7b:43:d6:c9:c5:
25:de:76:26:16:65:bf:d7:0f:8b:8b:8a:54:a3:a3:
bd:11:ee:29:cf:f4:01:b8:a6:31:85:b8:e1:04:27:
0a:f7:a2:4e:bd:6c:f0:da:4d:5a:55:d0:49:e9:b3:
72:ae:8d:a6:6b:eb:51:c5:cf:1a:ab:7f:8e:7e:51:
2a:27:ae:5f:87:a7:9b:97:d2:b9:75:bd:c1:66:39:
06:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:50:E5:6B:81:51:AA:F6:8C:6E:94:19:57:83:C1:10:95:77:B3:63
X509v3 Authority Key Identifier:
keyid:E2:E1:EF:85:11:B7:56:2B:F3:DC:3C:0B:04:09:3B:33:7B:CE:03:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4uHvhRG3Vivz3DwLBAk7M3vOA5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/ecb5d4-b448-42e4-b4a3-9b65890e2eae/1/N1Dla4FRqvaMbpQZV4PBEJV3s2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/ecb5d4-b448-42e4-b4a3-9b65890e2eae/1/4uHvhRG3Vivz3DwLBAk7M3vOA5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.80.0/24
Signature Algorithm: sha256WithRSAEncryption
06:f6:e0:37:c5:32:f2:22:b8:a6:26:73:7b:28:8f:5d:64:32:
c4:ea:b6:eb:0c:74:97:a0:6a:25:b6:03:e8:81:45:0d:8a:72:
08:6e:7b:b8:ed:44:65:35:77:6a:90:d0:50:0f:84:f8:7d:6b:
76:31:fb:52:d7:0a:6b:d6:e8:59:0f:a5:7e:f3:67:95:cb:2a:
dc:e9:2d:4c:03:e1:94:1b:83:8e:c3:f9:44:53:29:03:4f:57:
9d:fb:c6:f1:19:0a:b2:2a:cd:26:41:d1:88:9d:e6:67:a8:15:
81:05:6b:ad:aa:53:66:14:00:54:65:52:77:5c:8b:5f:e1:8a:
16:37:da:5d:8e:b9:6e:68:25:3f:d1:31:d1:79:9b:0e:b9:66:
c6:46:19:79:b2:eb:c0:ab:ec:97:9f:e2:07:42:50:17:98:21:
b2:fa:15:34:61:3f:69:79:1a:7b:33:50:5c:69:60:d1:ed:68:
c0:0f:96:1e:90:12:e8:56:57:1f:7d:51:28:c2:c7:17:48:36:
1d:b0:45:6d:c6:1f:d8:a7:a7:b8:d7:13:c8:ac:bb:0b:06:40:
10:c3:0f:32:d8:63:e9:cb:68:76:5f:74:de:37:72:79:a5:7a:
5b:e2:1d:d5:65:fb:90:dc:d9:7e:94:e3:4e:4b:11:b0:c2:4d:
ac:d7:04:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:31:36 2025 by rpki-client