Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/1b1db0-cee4-441b-93e3-126ce081529a/1/7rcWV5h8K85fq_6FHCdnchxp33c.roa
File: 7rcWV5h8K85fq_6FHCdnchxp33c.roa (raw, json)
Hash identifier: +bf5RKj/TV3pShkVKpgfAAT08K9RwaPnFnPYw/vmKqQ=
Subject key identifier: EE:B7:16:57:98:7C:2B:CE:5F:AB:FE:85:1C:27:67:72:1C:69:DF:77
Certificate issuer: /CN=6531785b623492ed0c99ed79c7db7404ad4cb171
Certificate serial: 021B01
Authority key identifier: 65:31:78:5B:62:34:92:ED:0C:99:ED:79:C7:DB:74:04:AD:4C:B1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZTF4W2I0ku0Mme15x9t0BK1MsXE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/1b1db0-cee4-441b-93e3-126ce081529a/1/7rcWV5h8K85fq_6FHCdnchxp33c.roa
Signing time: Tue 19 Apr 2022 11:27:40 +0000
ROA not before: Tue 19 Apr 2022 11:27:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210927
IP address blocks: 185.178.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137985 (0x21b01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6531785b623492ed0c99ed79c7db7404ad4cb171
Validity
Not Before: Apr 19 11:27:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eeb71657987c2bce5fabfe851c2767721c69df77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:9f:44:21:4e:bb:ad:4b:e8:63:d9:0e:07:3c:
61:1c:f6:83:03:28:63:70:89:3a:45:27:45:4f:ce:
f8:16:8c:73:e1:50:40:59:01:bd:57:15:2c:fa:ae:
d4:21:73:88:ac:ee:ef:73:5b:81:1e:d6:22:a8:8b:
bd:aa:6b:72:8b:0b:8d:24:ea:7f:95:62:ee:18:9e:
41:aa:43:2c:84:ec:21:62:4b:a5:9d:f7:04:02:c7:
36:10:32:85:36:4e:00:b8:ee:18:0e:43:53:36:74:
c5:a7:38:76:f7:b7:bf:b7:59:62:d9:5b:bd:8f:99:
54:d2:d3:fd:e8:4f:6f:7f:80:9a:84:3b:d8:b2:1d:
55:17:86:1e:7c:1c:86:1c:c8:1b:81:a0:a9:01:59:
49:86:a1:e1:9d:e0:10:cd:54:51:bd:1b:63:e5:4e:
8d:36:ef:a4:5e:95:83:10:86:14:85:31:fe:2f:e2:
26:d2:06:34:29:bc:8d:20:cf:2b:d2:6a:28:9c:f4:
25:24:f3:86:1a:55:3b:8c:6b:47:2c:f2:c7:cf:e8:
b6:a8:6b:82:a4:30:a3:79:9e:c3:9f:26:ff:ec:37:
41:a7:dc:df:0e:73:ef:f3:11:d1:88:32:51:3a:9e:
03:b6:e2:65:ea:e9:9c:c2:52:94:c0:c1:0c:7a:28:
ca:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:B7:16:57:98:7C:2B:CE:5F:AB:FE:85:1C:27:67:72:1C:69:DF:77
X509v3 Authority Key Identifier:
keyid:65:31:78:5B:62:34:92:ED:0C:99:ED:79:C7:DB:74:04:AD:4C:B1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZTF4W2I0ku0Mme15x9t0BK1MsXE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/1b1db0-cee4-441b-93e3-126ce081529a/1/7rcWV5h8K85fq_6FHCdnchxp33c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/1b1db0-cee4-441b-93e3-126ce081529a/1/ZTF4W2I0ku0Mme15x9t0BK1MsXE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.178.229.0/24
Signature Algorithm: sha256WithRSAEncryption
75:04:f6:ca:67:57:e7:ed:20:5f:ed:6c:e5:20:8c:d7:7d:31:
57:63:95:aa:20:f3:d0:3b:4a:2d:28:de:ad:b0:3d:ea:90:18:
1e:bc:38:9c:bd:0b:33:02:da:ae:ad:7b:50:2e:d3:27:b5:c6:
8a:37:92:3b:0d:77:82:df:ed:d8:c4:14:d5:77:f4:cf:60:c2:
3c:0f:3f:73:57:de:29:51:e3:34:df:89:98:0b:02:3a:67:33:
f7:0b:e9:1a:61:9a:a7:5c:2e:29:43:46:3c:ab:d9:81:54:d0:
3f:93:bb:9a:9e:1c:db:3a:19:83:9d:cc:55:7e:a8:22:95:50:
e2:67:ac:4e:62:62:dd:4c:b8:0f:56:92:f6:90:e8:8f:4a:8e:
11:69:72:15:3d:94:88:09:3c:bd:70:2b:5e:b7:1c:f8:28:f9:
77:0d:15:f0:a6:75:02:f0:06:94:e7:33:94:9c:ee:bc:da:4a:
2c:c5:6e:ba:b6:b4:4d:cf:80:c1:2c:39:f6:50:2f:2d:31:4a:
25:b0:c4:4f:8a:2f:84:15:6a:e9:df:6f:64:26:0f:07:50:ae:
b2:8f:e4:75:a6:8d:57:bf:ba:be:61:d6:04:f0:eb:33:b5:49:
2a:fe:69:45:ab:8c:7d:3e:0f:12:7f:1c:a9:03:a2:07:df:3f:
c6:6c:80:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:13:34 2025 by rpki-client