Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/b8vc8QwK1ghARuHEqW7JopHLLDg.roa
File: b8vc8QwK1ghARuHEqW7JopHLLDg.roa (raw, json)
Hash identifier: D7oD4tyrrUf8ljHQCNiwFUUnjrjqiXg6XSVuXMb9K8w=
Subject key identifier: 6F:CB:DC:F1:0C:0A:D6:08:40:46:E1:C4:A9:6E:C9:A2:91:CB:2C:38
Certificate issuer: /CN=626a28b7c63ef6ab214a52cfa7c3e78db9a40823
Certificate serial: 018424FF23C74BDD35C2192935A02F71AACD
Authority key identifier: 62:6A:28:B7:C6:3E:F6:AB:21:4A:52:CF:A7:C3:E7:8D:B9:A4:08:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ymoot8Y-9qshSlLPp8PnjbmkCCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/b8vc8QwK1ghARuHEqW7JopHLLDg.roa
Signing time: Sat 29 Oct 2022 18:26:51 +0000
ROA not before: Sat 29 Oct 2022 18:26:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39855
IP address blocks: 185.82.88.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:24:ff:23:c7:4b:dd:35:c2:19:29:35:a0:2f:71:aa:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=626a28b7c63ef6ab214a52cfa7c3e78db9a40823
Validity
Not Before: Oct 29 18:26:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6fcbdcf10c0ad6084046e1c4a96ec9a291cb2c38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:03:72:d0:61:13:64:60:f2:d1:ed:39:35:15:
9c:a2:0b:e5:58:5e:da:36:3e:b4:9b:b3:54:15:9a:
04:a5:e7:5c:c1:55:f0:92:21:73:52:18:5d:5a:f2:
a5:e5:ed:42:0b:06:d4:cd:89:0b:7b:14:06:31:e8:
52:05:43:bc:73:0f:43:2d:c1:e5:eb:ef:d4:9a:22:
88:ef:96:f6:e1:7b:27:ab:24:a8:dd:5b:f1:0f:f9:
1c:5c:00:76:9e:8e:f9:74:5a:4a:3d:13:19:52:05:
f5:8b:0e:1e:32:db:3b:44:89:59:d4:da:35:72:9c:
5d:2e:2c:c2:bd:30:48:cc:4c:4d:04:90:c1:e3:9d:
e5:24:3c:59:ae:f9:82:1e:e3:6e:31:a4:46:4b:9c:
bc:5c:37:d6:fd:43:ea:21:db:28:b1:37:50:2a:22:
b9:b8:f6:39:2b:2f:f2:81:7d:8c:5b:f8:d7:fc:e0:
44:43:f7:9b:df:17:0b:0c:b5:57:ec:21:7f:7e:ff:
2f:2c:03:11:d5:7e:d9:41:a0:c2:eb:6e:7f:09:87:
16:61:01:18:c0:25:25:0e:27:36:e9:bf:7b:d6:89:
4b:3d:ad:e7:55:22:c5:23:24:4e:3e:51:3e:4d:9f:
47:e1:87:ca:3b:71:d0:38:d4:83:63:6a:e9:8b:8d:
ed:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:CB:DC:F1:0C:0A:D6:08:40:46:E1:C4:A9:6E:C9:A2:91:CB:2C:38
X509v3 Authority Key Identifier:
keyid:62:6A:28:B7:C6:3E:F6:AB:21:4A:52:CF:A7:C3:E7:8D:B9:A4:08:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ymoot8Y-9qshSlLPp8PnjbmkCCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/b8vc8QwK1ghARuHEqW7JopHLLDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/Ymoot8Y-9qshSlLPp8PnjbmkCCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.82.88.0/22
Signature Algorithm: sha256WithRSAEncryption
84:b8:78:be:64:8a:fa:8b:a5:5c:04:1d:cd:42:47:ce:39:ca:
8e:7d:a3:f1:e3:ec:86:d8:3c:d5:3d:ad:51:7a:ea:ef:f8:06:
92:54:4c:4a:4f:9f:ef:3f:b0:46:8c:e6:c1:d7:90:54:d7:49:
ee:06:d1:d9:bd:3e:32:88:85:59:05:22:be:c2:c5:5d:84:3f:
69:ac:4d:d4:dc:7f:cd:0d:90:eb:9d:40:84:42:47:d0:76:0e:
34:83:ff:c6:07:80:ef:fa:51:4b:6d:58:af:8b:6b:84:af:d5:
9a:7e:02:e9:39:57:8f:67:77:3c:65:15:d1:be:17:c7:24:df:
4d:a9:32:08:e6:00:03:48:f3:50:03:9c:19:92:83:13:55:5d:
b6:40:18:ce:ab:0b:0b:5c:6f:57:bf:a2:54:54:8e:99:f3:2e:
09:8c:40:57:45:89:d1:7d:52:ac:c7:a3:2e:db:ff:8e:ad:5e:
1c:34:04:b8:9e:e7:e2:a1:35:a3:da:3b:ba:3d:29:3b:f6:93:
22:29:25:5d:bc:dc:22:e8:62:b0:db:94:7d:7a:4d:22:d4:63:
b1:0c:c7:17:26:2e:74:e6:d2:a1:8f:38:d6:89:2e:ac:28:c6:
dc:86:24:b7:13:15:c7:a6:bf:c0:0c:3b:1f:62:ff:4c:ba:64:
36:fe:0d:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 03:41:50 2025 by rpki-client