Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/e61985-f881-4035-ab5b-c9a9baa43f94/1/oeH8PROiG9kiIfZk_1JDtthcqxk.roa
File: oeH8PROiG9kiIfZk_1JDtthcqxk.roa (raw, json)
Hash identifier: pLq3Wr1Joy4QlqDykgsP94yB+ysH49/x6cUsmBzYhR8=
Subject key identifier: A1:E1:FC:3D:13:A2:1B:D9:22:21:F6:64:FF:52:43:B6:D8:5C:AB:19
Certificate issuer: /CN=607cea6e103a2325c48c1667a99c7b17eb3ce7b6
Certificate serial: 03EBD1D9
Authority key identifier: 60:7C:EA:6E:10:3A:23:25:C4:8C:16:67:A9:9C:7B:17:EB:3C:E7:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YHzqbhA6IyXEjBZnqZx7F-s857Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/e61985-f881-4035-ab5b-c9a9baa43f94/1/oeH8PROiG9kiIfZk_1JDtthcqxk.roa
Signing time: Sat 01 Jan 2022 06:04:12 +0000
ROA not before: Sat 01 Jan 2022 06:04:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205894
IP address blocks: 185.232.177.0/24 maxlen: 24
185.232.176.0/22 maxlen: 22
185.232.176.0/24 maxlen: 24
185.232.179.0/24 maxlen: 24
185.232.178.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65786329 (0x3ebd1d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=607cea6e103a2325c48c1667a99c7b17eb3ce7b6
Validity
Not Before: Jan 1 06:04:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a1e1fc3d13a21bd92221f664ff5243b6d85cab19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b6:b7:69:68:a9:47:7e:9f:38:5b:ce:0c:ca:
1f:c1:d0:02:82:9d:32:4f:2d:65:a4:60:be:3c:2f:
8b:a8:af:ee:27:2b:3e:9b:12:61:ed:4f:0e:9a:34:
2f:65:d7:7f:0e:dc:e9:73:22:5f:32:db:2e:e9:3c:
53:8f:1c:1d:9e:04:3c:58:79:f7:17:cf:41:a0:dc:
80:74:68:5d:f5:d7:a4:8b:c7:9f:27:2d:67:5c:a5:
e9:47:5b:2a:63:c9:a4:64:e4:68:a7:01:41:e8:fa:
ea:a0:4e:ed:ae:18:c6:a1:ee:c7:88:b0:e0:53:86:
61:bf:33:61:2d:d0:56:d4:b0:49:a5:26:53:0c:24:
7f:5b:60:ed:d4:7c:8f:fd:1c:7c:a4:dc:04:3f:28:
08:d6:c7:0a:7b:fb:51:ba:9c:ca:13:0c:0b:06:3e:
fc:a7:be:27:08:1c:dd:07:77:cc:cb:b6:c9:12:c5:
7e:fb:38:4e:e3:81:a9:68:d2:1f:6c:ed:c2:ed:4c:
fa:9c:3f:31:cf:51:84:f7:41:40:05:d5:3e:77:69:
d0:5c:67:5e:5d:17:c8:0f:36:69:2f:fe:0f:65:d6:
f7:69:be:e8:e9:0e:cc:1c:48:c7:9e:0b:db:73:49:
70:46:1e:7a:54:86:ce:25:f4:ff:6c:b1:da:23:a4:
0c:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:E1:FC:3D:13:A2:1B:D9:22:21:F6:64:FF:52:43:B6:D8:5C:AB:19
X509v3 Authority Key Identifier:
keyid:60:7C:EA:6E:10:3A:23:25:C4:8C:16:67:A9:9C:7B:17:EB:3C:E7:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YHzqbhA6IyXEjBZnqZx7F-s857Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/e61985-f881-4035-ab5b-c9a9baa43f94/1/oeH8PROiG9kiIfZk_1JDtthcqxk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/e61985-f881-4035-ab5b-c9a9baa43f94/1/YHzqbhA6IyXEjBZnqZx7F-s857Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.232.176.0/22
Signature Algorithm: sha256WithRSAEncryption
59:2a:d9:f0:19:7b:47:c7:45:d4:4a:46:48:41:5e:7f:73:a2:
7f:02:3b:f3:e4:db:e2:59:83:a7:b8:05:4b:f7:75:08:3f:37:
e6:9d:dd:65:b9:47:6a:52:8c:e6:42:53:13:b7:e2:17:a7:17:
8d:9d:c9:46:7a:1f:d0:be:f9:7d:40:2f:45:71:d5:07:53:fa:
25:33:8e:f4:17:79:b6:03:56:15:b3:ea:3f:b2:c1:e5:f8:b1:
24:a9:06:13:d4:0f:80:01:8a:6d:3d:a2:80:9c:67:e1:4d:dc:
7b:0a:ac:57:59:e7:01:bb:ba:8e:56:e5:75:99:6a:d8:a8:98:
ec:70:b2:46:28:8d:12:3d:3b:85:72:e3:7d:f6:16:4c:db:3d:
18:4a:63:6d:24:f9:07:8f:6b:37:dd:3d:9a:22:d9:dd:cf:f6:
76:4c:89:a6:b6:19:d1:4f:da:0a:ac:97:7d:aa:40:bc:f8:69:
46:91:b9:31:19:e1:f7:0f:84:c5:84:19:4f:7f:5e:ca:fb:9b:
f3:ea:64:b3:86:f3:b9:3e:cb:ec:3b:5c:0b:dd:7a:6e:63:d1:
a5:0f:70:04:97:2b:27:30:a7:85:0a:ca:6a:4c:1f:00:5f:bf:
c3:52:c2:df:e3:e0:86:25:6e:86:80:55:80:ac:5c:76:28:07:
13:11:28:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:16:34 2025 by rpki-client