Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/7CVooziVBYMBSUSZeaaUGm9axk8.roa
File: 7CVooziVBYMBSUSZeaaUGm9axk8.roa (raw, json)
Hash identifier: f2AibkGCXkdWb9foXCdESBk3t3nJiFJ6peNt5kYR+4k=
Subject key identifier: EC:25:68:A3:38:95:05:83:01:49:44:99:79:A6:94:1A:6F:5A:C6:4F
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 018C1B3844BEC5DA1EF2BFF52CB4C392D067
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/7CVooziVBYMBSUSZeaaUGm9axk8.roa
Signing time: Wed 29 Nov 2023 13:15:21 +0000
ROA not before: Wed 29 Nov 2023 13:15:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 185.245.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1b:38:44:be:c5:da:1e:f2:bf:f5:2c:b4:c3:92:d0:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Nov 29 13:15:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ec2568a3389505830149449979a6941a6f5ac64f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:16:a6:fb:21:ed:88:b2:b5:b7:a0:aa:15:d7:
a2:12:c3:fd:7a:6a:b3:3e:ee:e7:20:04:6a:1b:cb:
33:f0:28:31:39:82:9c:04:e3:89:e0:a6:8c:2d:3d:
c5:ab:3b:8b:2b:82:19:07:06:01:ee:56:8a:09:14:
a9:28:b4:1b:8b:b0:47:13:7b:8e:0d:ce:a7:2d:2d:
0e:da:8d:e9:35:69:0e:79:54:78:4b:4b:d6:f2:a0:
11:48:e9:0c:4f:91:3e:3a:df:7c:b1:85:a6:8a:26:
6c:2e:58:b5:3e:cc:40:65:69:37:51:82:b4:e0:a7:
32:6c:a1:85:6b:b8:e5:a8:a2:47:3e:fc:4b:e4:02:
07:00:d6:de:3e:90:0f:e5:26:e9:c1:77:82:d6:f5:
b7:9f:ae:b1:31:09:ce:53:0c:8e:af:1f:6c:cc:50:
78:7b:71:c1:a2:b8:c9:42:ef:62:88:86:89:3f:1c:
fd:32:ab:ca:11:fc:04:d5:91:b3:de:47:3b:53:ce:
11:c9:35:d9:e9:28:75:db:31:a8:08:7e:df:e9:b9:
04:e5:07:f4:6d:b6:bf:c5:08:f3:87:10:98:67:83:
5a:17:78:ee:a4:d1:45:6c:3c:03:22:a4:29:be:7c:
f5:31:23:5e:c3:67:1f:c5:a2:58:5f:82:d5:5a:4d:
ec:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:25:68:A3:38:95:05:83:01:49:44:99:79:A6:94:1A:6F:5A:C6:4F
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/7CVooziVBYMBSUSZeaaUGm9axk8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.245.3.0/24
Signature Algorithm: sha256WithRSAEncryption
02:b3:ff:1e:7b:e2:43:68:69:f5:e4:5e:97:03:82:a5:74:a6:
c9:f0:fb:2b:13:55:74:80:7a:04:08:db:3b:1c:27:7a:df:9f:
b6:1e:47:56:5a:79:06:14:60:af:9c:0a:a6:9c:36:6f:1e:78:
42:35:7e:55:d4:a5:b6:e5:ff:b5:10:44:26:45:7c:1d:51:1d:
08:51:21:4a:90:47:98:44:75:61:d9:4d:92:a6:99:67:0b:d5:
e9:18:a2:62:d6:98:e2:55:6d:38:2c:e5:a3:b3:6f:3c:77:d3:
9b:43:90:69:4d:3c:42:e1:e0:cc:78:8b:c5:3a:2e:be:1e:fc:
65:37:37:7b:db:f6:ac:6c:e7:6e:8b:11:81:ae:c3:5e:fb:dc:
23:b0:e0:90:8f:06:9c:a9:a7:7f:75:51:86:50:c1:01:df:29:
df:f3:53:04:7e:e1:81:29:23:72:b2:82:ae:82:c2:f6:57:94:
2d:11:e4:29:cd:d6:0f:3d:f1:65:43:09:6d:6b:01:6f:3d:ff:
f5:12:d5:ec:24:45:59:62:25:98:72:50:7d:2d:33:34:77:2e:
96:5c:a0:8a:b9:f5:6b:20:70:be:49:6e:89:f0:5d:88:bf:d8:
53:2d:77:4b:9c:56:e9:8d:32:92:f5:39:f2:e5:3e:c0:da:da:
a5:92:4b:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:22:06 2025 by rpki-client