Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/662fbf-5576-4595-892b-b5b3aeae98ea/1/VkUFyUbaWvIZMI18WeSGQFZV_nE.roa
File: VkUFyUbaWvIZMI18WeSGQFZV_nE.roa (raw, json)
Hash identifier: JrJ2rjYyEXwmlQ7YDBFlRQNcSxH0y1aZAK9W8t/ryT4=
Subject key identifier: 56:45:05:C9:46:DA:5A:F2:19:30:8D:7C:59:E4:86:40:56:55:FE:71
Certificate issuer: /CN=322639b35e5d9d0fb3696fe2fd61cb6f4c3fa504
Certificate serial: 010EFAAE
Authority key identifier: 32:26:39:B3:5E:5D:9D:0F:B3:69:6F:E2:FD:61:CB:6F:4C:3F:A5:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MiY5s15dnQ-zaW_i_WHLb0w_pQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/662fbf-5576-4595-892b-b5b3aeae98ea/1/VkUFyUbaWvIZMI18WeSGQFZV_nE.roa
Signing time: Sat 01 Jan 2022 12:07:10 +0000
ROA not before: Sat 01 Jan 2022 12:07:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210021
IP address blocks: 185.206.172.0/24 maxlen: 24
185.206.175.0/24 maxlen: 24
185.206.174.0/24 maxlen: 24
185.206.173.0/24 maxlen: 24
2a05:27c0:1::/48 maxlen: 48
2a05:27c0:4::/48 maxlen: 64
2a05:27c0:2::/48 maxlen: 64
2a05:27c0::/48 maxlen: 48
2a05:27c0:3::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17758894 (0x10efaae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=322639b35e5d9d0fb3696fe2fd61cb6f4c3fa504
Validity
Not Before: Jan 1 12:07:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=564505c946da5af219308d7c59e486405655fe71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:af:2d:46:e7:0f:66:db:e5:5d:c1:4f:13:9b:
7b:11:f0:4f:13:58:ab:50:85:e5:b0:c3:d8:29:e7:
f1:c4:7b:ae:63:9f:9e:c7:1a:cf:a4:8d:6c:f0:0e:
c2:eb:74:77:4b:6b:29:8d:d5:3a:98:83:e0:bc:99:
db:46:97:11:3c:a7:39:db:fd:10:35:9e:7b:e7:8f:
62:fd:64:33:9a:f4:f5:41:c5:86:f3:c9:79:5c:f0:
ac:31:fa:bf:c4:32:83:11:30:ff:ba:e1:8e:1c:20:
9b:28:5d:34:90:46:45:e2:04:c5:53:cf:cb:f2:f3:
c3:83:75:fe:86:ab:47:96:3e:0d:2b:dc:9d:fd:ef:
1e:ab:62:86:c2:0d:e1:30:c4:16:5c:62:df:bc:af:
59:7e:7c:5c:c9:c7:84:22:10:29:53:47:03:08:52:
19:e8:07:e4:c5:e1:7f:4d:08:af:33:bc:64:2e:9b:
25:01:28:81:8b:3b:d3:b3:8d:fd:90:3f:a2:24:e6:
7f:ae:73:17:b9:01:01:52:5c:50:bc:6c:de:56:ba:
41:b6:0f:f9:4f:d7:a2:c3:2d:3b:d0:cc:89:35:9b:
26:88:8a:45:f2:4a:06:68:a5:de:5e:3a:e3:b3:3f:
33:8f:a5:75:ad:6e:8b:f7:47:de:07:0e:d9:58:8d:
c5:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:45:05:C9:46:DA:5A:F2:19:30:8D:7C:59:E4:86:40:56:55:FE:71
X509v3 Authority Key Identifier:
keyid:32:26:39:B3:5E:5D:9D:0F:B3:69:6F:E2:FD:61:CB:6F:4C:3F:A5:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MiY5s15dnQ-zaW_i_WHLb0w_pQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/662fbf-5576-4595-892b-b5b3aeae98ea/1/VkUFyUbaWvIZMI18WeSGQFZV_nE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/662fbf-5576-4595-892b-b5b3aeae98ea/1/MiY5s15dnQ-zaW_i_WHLb0w_pQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.172.0/22
IPv6:
2a05:27c0::-2a05:27c0:4:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
44:4e:df:6f:71:37:ee:85:be:5e:ca:54:24:89:09:fc:aa:36:
bf:d5:fa:0f:b2:e3:2a:1f:f6:9b:3d:b1:3c:99:bb:02:57:a4:
d0:57:0e:36:9b:54:7c:2b:2e:a3:76:c5:19:f2:96:f2:e5:13:
02:4d:c0:6f:fe:f7:63:10:ae:c8:90:56:f7:74:da:04:bc:b2:
7c:43:8f:56:4c:ae:d7:a3:92:53:a1:95:4c:30:5c:ad:61:35:
56:6f:bb:52:ac:34:b1:4c:d6:a4:cc:ce:7f:d4:be:f1:42:f0:
70:94:90:8a:e3:3a:8e:ca:6e:3c:46:ed:5a:f1:6f:a7:dc:ca:
24:9d:2e:e5:6b:b3:70:bc:7d:29:e6:f3:4e:47:72:89:47:01:
e9:a8:12:7e:72:23:2f:b1:86:69:92:0e:c7:2e:a9:d5:c8:0c:
98:98:34:d1:8f:9e:3b:e4:32:6e:70:90:ff:34:6f:ff:1d:76:
e1:4a:84:ff:dc:22:a7:8c:b1:63:d3:ff:a4:9e:9a:2a:c0:ea:
c5:72:69:14:fa:c0:8f:b0:dc:b5:c1:0f:8c:fc:47:da:59:2d:
fa:c9:d7:9d:62:7b:a9:53:5b:cc:7c:9b:a3:e6:9e:64:e8:bf:
1e:23:8c:e1:ea:f5:bc:9f:3a:94:b0:c5:94:9d:d9:4e:46:20:
f5:e8:1b:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:12:23 2025 by rpki-client