Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/8631f5-54a2-486f-b9a5-081a1ae6ebd6/1/i2CV4iGkXJeD8LXg2XhanzAsSPQ.roa
File: i2CV4iGkXJeD8LXg2XhanzAsSPQ.roa (raw, json)
Hash identifier: 6HmUqJfATgpDVzU/ik4bymgJEZpGhg5gT24zo3TExWc=
Subject key identifier: 8B:60:95:E2:21:A4:5C:97:83:F0:B5:E0:D9:78:5A:9F:30:2C:48:F4
Certificate issuer: /CN=b6fbc63ef5614a7ef95a106188e3d78755c687b9
Certificate serial: 018570B08DB1E496EF432E1B1387CCB9FE1C
Authority key identifier: B6:FB:C6:3E:F5:61:4A:7E:F9:5A:10:61:88:E3:D7:87:55:C6:87:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tvvGPvVhSn75WhBhiOPXh1XGh7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/8631f5-54a2-486f-b9a5-081a1ae6ebd6/1/i2CV4iGkXJeD8LXg2XhanzAsSPQ.roa
Signing time: Mon 02 Jan 2023 04:14:56 +0000
ROA not before: Mon 02 Jan 2023 04:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204488
IP address blocks: 185.175.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b0:8d:b1:e4:96:ef:43:2e:1b:13:87:cc:b9:fe:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6fbc63ef5614a7ef95a106188e3d78755c687b9
Validity
Not Before: Jan 2 04:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b6095e221a45c9783f0b5e0d9785a9f302c48f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:61:fc:41:d0:17:2f:fe:46:66:fe:cb:4e:11:
9c:39:31:79:53:c1:0d:27:bd:0d:c3:53:0f:7c:67:
1e:27:c8:a7:dc:c3:ac:9d:33:72:43:eb:f0:66:a8:
3f:ed:5b:a2:90:f6:e9:e9:e9:a7:42:c3:ab:33:44:
eb:45:eb:ee:59:3c:83:a7:28:c5:e9:f1:96:24:68:
eb:22:e5:83:d5:46:23:41:0e:25:12:15:3c:fd:1a:
6b:11:04:1d:30:ae:10:c3:4d:8a:d6:38:68:81:3b:
ec:32:6e:65:50:c8:f0:36:44:7c:8a:9a:6f:ff:02:
f7:ad:7a:c2:ad:f3:a8:b3:98:79:47:c8:43:72:90:
89:78:64:a5:12:53:1c:90:2d:57:61:d1:34:00:56:
85:b5:b4:60:65:af:b1:18:66:e8:d3:87:18:e3:76:
2f:42:1a:35:62:02:be:6e:ca:9c:ac:0c:65:00:86:
bd:86:30:d9:dc:3f:41:32:06:63:73:84:04:84:d5:
01:da:32:fe:a3:99:4d:63:f1:5b:df:42:a3:c9:3b:
3a:a3:b0:4d:dc:45:6a:e2:77:e0:e4:fe:5c:27:a6:
6b:0a:b6:ca:20:1d:3c:ab:44:b1:8e:33:db:05:67:
7a:52:c5:d3:93:af:66:b3:3e:17:1d:62:55:28:72:
03:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:60:95:E2:21:A4:5C:97:83:F0:B5:E0:D9:78:5A:9F:30:2C:48:F4
X509v3 Authority Key Identifier:
keyid:B6:FB:C6:3E:F5:61:4A:7E:F9:5A:10:61:88:E3:D7:87:55:C6:87:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tvvGPvVhSn75WhBhiOPXh1XGh7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/8631f5-54a2-486f-b9a5-081a1ae6ebd6/1/i2CV4iGkXJeD8LXg2XhanzAsSPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/8631f5-54a2-486f-b9a5-081a1ae6ebd6/1/tvvGPvVhSn75WhBhiOPXh1XGh7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.175.63.0/24
Signature Algorithm: sha256WithRSAEncryption
26:c4:05:27:7f:22:c2:94:2e:78:ac:28:fe:60:c8:7c:24:45:
eb:8f:06:ae:13:69:60:62:bd:19:b9:1d:69:7c:d4:ac:d3:e7:
5a:73:54:f9:cc:5e:00:bd:74:9e:f3:55:3c:9f:42:cc:8c:1d:
38:8e:8e:c4:0b:1c:82:d8:01:18:39:b8:2e:9c:87:04:00:cd:
87:6a:b0:1e:ce:3e:b1:fb:38:6a:53:16:8e:63:80:ef:f9:59:
41:8f:f6:89:9f:6d:27:d2:0c:ce:a3:4c:19:59:37:7a:9b:b8:
66:46:29:65:75:cf:9e:d8:59:dc:35:9e:b6:66:d2:17:5f:81:
e1:28:b5:5f:a6:8c:f8:a3:6c:7d:6e:52:96:e4:22:82:d3:31:
9b:66:45:3c:28:2c:9a:66:a5:35:1b:eb:6c:a9:00:81:f8:f4:
8d:5b:93:ac:0f:ae:ef:d7:e3:34:ae:b1:64:d8:5f:e7:b7:c5:
97:48:54:c8:41:ad:5e:a9:10:8c:8e:ab:07:68:6c:79:a1:7b:
01:32:cb:b3:3f:59:24:90:ae:31:fd:b6:33:e9:bd:9f:24:d6:
61:a5:72:dc:73:0b:7e:6f:36:a9:ce:fb:63:b3:60:f0:2f:f5:
91:cd:3d:f8:4a:f7:3e:6a:0d:04:fc:72:d8:ad:8b:12:3d:f6:
fa:ec:69:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:31:51 2025 by rpki-client