Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/36f83e-6be6-42c5-8380-114ad41cf331/1/w6upj3EM1fAzmPtq42Q1FEnygrQ.roa
File: w6upj3EM1fAzmPtq42Q1FEnygrQ.roa (raw, json)
Hash identifier: BHgdgy/VwsMw9THhfr2vuRaT8IJY+Uiy/FChmI4CInM=
Subject key identifier: C3:AB:A9:8F:71:0C:D5:F0:33:98:FB:6A:E3:64:35:14:49:F2:82:B4
Certificate issuer: /CN=09253886a0250a04ec69be00bbf8433c2f014b7c
Certificate serial: 01854FD474747F7A6D7DD2FC76EE08B35612
Authority key identifier: 09:25:38:86:A0:25:0A:04:EC:69:BE:00:BB:F8:43:3C:2F:01:4B:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CSU4hqAlCgTsab4Au_hDPC8BS3w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/36f83e-6be6-42c5-8380-114ad41cf331/1/w6upj3EM1fAzmPtq42Q1FEnygrQ.roa
Signing time: Mon 26 Dec 2022 19:06:41 +0000
ROA not before: Mon 26 Dec 2022 19:06:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201128
IP address blocks: 194.110.168.0/24 maxlen: 24
194.110.171.0/24 maxlen: 24
194.110.170.0/24 maxlen: 24
185.84.180.0/24 maxlen: 24
185.84.182.0/24 maxlen: 24
185.84.181.0/24 maxlen: 24
185.84.183.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:4f:d4:74:74:7f:7a:6d:7d:d2:fc:76:ee:08:b3:56:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09253886a0250a04ec69be00bbf8433c2f014b7c
Validity
Not Before: Dec 26 19:06:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c3aba98f710cd5f03398fb6ae364351449f282b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:67:37:46:ec:86:e8:b2:e7:73:bb:ad:ba:d9:
f4:1c:55:63:ad:99:dd:c0:4f:3d:f3:3c:1e:a3:e1:
b5:ee:4e:b0:b9:60:d9:5d:44:c3:58:0b:54:69:46:
b2:2e:11:ab:18:12:4f:48:a8:d5:4f:00:be:cf:ab:
b3:03:e0:17:2e:80:67:07:de:ee:2e:bd:f7:de:19:
03:a1:09:a8:41:54:c7:5b:7f:48:86:13:8e:46:9e:
c4:0a:7a:bf:b0:f9:4e:30:d4:52:7a:3e:d3:5b:8d:
cb:53:a1:f2:e1:24:de:da:37:68:88:67:59:28:a0:
b2:1b:8a:c0:d3:2b:1d:b2:bc:72:d2:c9:64:0d:a1:
04:34:17:9e:8a:3f:bd:ab:d3:44:75:43:9d:a4:27:
5a:8f:cc:cb:6a:21:6c:78:3b:23:ff:53:f6:f2:b1:
58:b7:d5:7b:fe:e7:03:09:ed:b6:f3:a0:d4:19:62:
df:55:98:2a:72:9d:42:07:d2:cb:ed:03:32:45:34:
b7:73:0f:c6:f7:b3:92:da:57:58:e6:c6:d9:e4:a6:
65:aa:4e:d2:10:8e:c7:d0:eb:e6:6e:a5:71:76:82:
14:aa:ea:86:25:bc:c8:bd:7f:64:69:42:ce:99:49:
3a:3f:03:ec:60:c3:75:ec:bd:93:5e:29:61:27:a5:
b9:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:AB:A9:8F:71:0C:D5:F0:33:98:FB:6A:E3:64:35:14:49:F2:82:B4
X509v3 Authority Key Identifier:
keyid:09:25:38:86:A0:25:0A:04:EC:69:BE:00:BB:F8:43:3C:2F:01:4B:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CSU4hqAlCgTsab4Au_hDPC8BS3w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/36f83e-6be6-42c5-8380-114ad41cf331/1/w6upj3EM1fAzmPtq42Q1FEnygrQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/36f83e-6be6-42c5-8380-114ad41cf331/1/CSU4hqAlCgTsab4Au_hDPC8BS3w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.84.180.0/22
194.110.168.0/24
194.110.170.0/23
Signature Algorithm: sha256WithRSAEncryption
c4:93:4e:40:ef:5a:93:b2:86:25:7e:00:87:71:f5:9e:88:d7:
48:16:14:21:46:91:49:41:4d:0c:d5:f0:70:44:ef:56:0a:1c:
31:d8:46:15:f0:b7:57:7d:00:a3:4a:21:eb:50:87:d1:9d:c5:
ea:9a:0c:55:df:e0:26:d1:40:a0:8f:bb:af:cb:0a:a4:c1:47:
a0:17:72:87:d6:66:08:71:c8:24:e9:c2:d3:4c:a4:ca:c7:01:
b2:2d:c2:8f:43:ea:13:c3:ce:50:76:93:d2:75:56:b0:cc:2f:
57:d3:de:49:40:6d:ea:be:55:50:f6:42:f0:56:cc:90:25:d1:
0d:ce:cf:ef:57:46:96:23:fb:36:4b:6c:0c:e7:30:37:d1:ff:
7f:fb:29:1c:fa:5e:8b:e1:4f:55:77:b1:e5:f9:b2:38:36:57:
57:8d:83:33:78:c7:0b:8c:6e:34:9f:c4:08:63:46:7b:2e:2c:
91:23:db:a3:76:c9:c1:2b:c2:45:34:45:eb:ae:4d:9f:80:95:
8c:64:5d:ec:d7:7a:c8:c3:0c:c1:fa:aa:5c:dc:59:e5:c4:f1:
4a:20:e9:ac:33:c9:4d:99:b9:1c:34:2c:18:13:20:9f:95:8e:
d4:82:ee:fa:1e:d9:f3:65:cf:6f:44:f4:d6:a7:63:84:16:d1:
95:9d:87:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 06:55:31 2025 by rpki-client