Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/865490-78e7-43b4-b2fd-1d0bf5208f90/1/scv-xJTr-FXDDXXIho_mDhkhchc.roa
File: scv-xJTr-FXDDXXIho_mDhkhchc.roa (raw, json)
Hash identifier: Uedav+uTsIfDZWxg2O+cxeJWupT9dWQf65CiSBrl0OU=
Subject key identifier: B1:CB:FE:C4:94:EB:F8:55:C3:0D:75:C8:86:8F:E6:0E:19:21:72:17
Certificate issuer: /CN=ab27ed1cea4321c49c3ca10f3affafdbdad532c2
Certificate serial: 0B1901C1
Authority key identifier: AB:27:ED:1C:EA:43:21:C4:9C:3C:A1:0F:3A:FF:AF:DB:DA:D5:32:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qyftHOpDIcScPKEPOv-v29rVMsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/865490-78e7-43b4-b2fd-1d0bf5208f90/1/scv-xJTr-FXDDXXIho_mDhkhchc.roa
Signing time: Sat 01 Jan 2022 16:05:47 +0000
ROA not before: Sat 01 Jan 2022 16:05:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202870
IP address blocks: 185.152.44.0/22 maxlen: 24
2a07:7e80::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 186188225 (0xb1901c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab27ed1cea4321c49c3ca10f3affafdbdad532c2
Validity
Not Before: Jan 1 16:05:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b1cbfec494ebf855c30d75c8868fe60e19217217
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:66:17:ee:5f:c7:a4:7d:9b:6b:3b:07:9c:82:
06:79:a8:8c:2b:09:20:fa:e3:bb:13:2f:57:0d:63:
c0:57:16:0b:02:b5:b3:cf:fd:00:dd:0f:6e:4c:95:
3f:00:6b:de:85:08:3c:db:cd:7d:38:41:d6:d0:7b:
4b:8e:11:5a:47:39:27:54:e1:e0:90:f7:59:c5:b9:
e2:34:ec:63:8c:6f:89:0e:f7:4c:c3:4c:f5:0a:d0:
87:d3:9e:93:af:47:e2:02:41:89:21:63:6d:bf:aa:
4a:6a:d3:12:ca:ec:47:3f:4c:5b:10:1f:b5:78:4a:
2c:4b:d3:09:27:9f:de:ba:a2:4c:21:ea:9b:e1:b0:
cb:c6:c6:33:8a:bd:bb:9d:83:0e:c4:61:5a:bc:d1:
1f:88:3f:fd:01:cd:54:a7:7e:cf:69:6d:a3:9f:fe:
a9:82:c2:de:a4:86:84:94:df:4c:2e:a4:8d:07:37:
1d:60:a4:78:a8:ad:b3:96:0f:14:93:d3:9a:a5:9f:
70:ab:65:2b:70:f0:89:28:c8:9b:3a:f5:c2:3e:cb:
18:cf:a0:9d:83:74:a2:84:c7:43:81:61:9a:ee:97:
42:7c:54:64:24:78:af:c5:32:a2:ba:ea:66:17:0f:
97:9f:fa:63:17:e4:9c:92:3d:c9:df:3f:e1:bf:6d:
31:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:CB:FE:C4:94:EB:F8:55:C3:0D:75:C8:86:8F:E6:0E:19:21:72:17
X509v3 Authority Key Identifier:
keyid:AB:27:ED:1C:EA:43:21:C4:9C:3C:A1:0F:3A:FF:AF:DB:DA:D5:32:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qyftHOpDIcScPKEPOv-v29rVMsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/865490-78e7-43b4-b2fd-1d0bf5208f90/1/scv-xJTr-FXDDXXIho_mDhkhchc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/865490-78e7-43b4-b2fd-1d0bf5208f90/1/qyftHOpDIcScPKEPOv-v29rVMsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.152.44.0/22
IPv6:
2a07:7e80::/29
Signature Algorithm: sha256WithRSAEncryption
37:55:f6:bc:36:a3:b0:ed:48:a2:88:9d:18:a6:1e:3e:65:53:
95:18:81:e6:97:44:e7:69:43:dd:d9:04:a1:2f:a4:d9:b8:39:
2b:78:b2:c0:d9:60:d6:dc:21:e7:4b:a9:c9:ec:96:10:cf:42:
a4:9f:85:36:b1:ad:e2:9c:d3:86:62:a7:06:f0:56:96:b2:11:
4c:f7:13:c9:6e:22:c3:e0:cc:ca:f8:52:08:a0:6e:3d:4c:76:
01:70:33:51:ff:c0:24:9a:8c:61:32:ad:e3:38:0d:43:53:0d:
8b:c8:ab:99:d0:57:08:c9:72:e5:22:ab:6b:95:5d:8a:3d:63:
10:11:ed:48:00:8e:9f:17:e6:ab:d9:cc:b7:87:db:52:56:aa:
1b:76:bd:1d:32:2b:75:d2:7d:54:16:91:42:ce:b8:b4:5b:a4:
22:26:13:a8:1b:8b:b0:b6:bc:e4:ce:ca:cd:25:40:a2:78:d4:
72:17:6e:d1:4e:0c:66:4f:30:f3:5f:fc:78:e7:55:6f:59:65:
7e:8f:f3:9b:99:3d:b5:a7:77:d7:69:58:b8:67:1d:60:de:26:
19:1a:a4:80:e6:eb:f8:64:14:de:66:3c:11:cd:38:18:70:4d:
d1:f0:1d:aa:b5:42:0b:3a:70:0f:e9:e4:9e:38:6c:c7:0f:70:
8e:96:13:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:00:06 2025 by rpki-client