Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/06be8f-a265-426a-aa0a-e479c6b9ff2b/1/0I6m9-7_ZV8b98cAGyvxr5XxbsQ.roa
File: 0I6m9-7_ZV8b98cAGyvxr5XxbsQ.roa (raw, json)
Hash identifier: OiNbPAI3R5Cm8HjPnP7bjmJ4doMGVKtS84r8zCTYKFQ=
Subject key identifier: D0:8E:A6:F7:EE:FF:65:5F:1B:F7:C7:00:1B:2B:F1:AF:95:F1:6E:C4
Certificate issuer: /CN=2e67f3e4e1977abe98ccb20ca1afa858f1e6681c
Certificate serial: 05D79F6B
Authority key identifier: 2E:67:F3:E4:E1:97:7A:BE:98:CC:B2:0C:A1:AF:A8:58:F1:E6:68:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lmfz5OGXer6YzLIMoa-oWPHmaBw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/06be8f-a265-426a-aa0a-e479c6b9ff2b/1/0I6m9-7_ZV8b98cAGyvxr5XxbsQ.roa
Signing time: Sat 01 Jan 2022 01:59:14 +0000
ROA not before: Sat 01 Jan 2022 01:59:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59989
IP address blocks: 185.82.33.0/24 maxlen: 24
185.82.35.0/24 maxlen: 24
185.82.32.0/24 maxlen: 24
185.82.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98017131 (0x5d79f6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e67f3e4e1977abe98ccb20ca1afa858f1e6681c
Validity
Not Before: Jan 1 01:59:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d08ea6f7eeff655f1bf7c7001b2bf1af95f16ec4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:24:37:00:9d:57:ee:1e:b5:15:2e:13:13:60:
ca:b1:c1:af:05:54:84:af:87:7a:b1:31:0e:d2:c7:
33:d0:70:2a:d9:c3:c0:9d:ec:09:d1:3f:ef:4d:81:
56:2e:0a:2f:8d:1b:9b:48:53:e4:54:88:83:13:5f:
2c:a3:65:e5:5f:94:32:87:d0:3b:a7:d9:55:7c:74:
26:e6:69:64:19:db:af:f6:f9:bf:36:2f:f7:da:21:
dd:39:e5:f5:4d:12:cd:6a:da:ce:ab:f8:32:6d:cc:
93:e2:b8:50:8f:41:8e:31:4e:77:76:39:5e:cd:ca:
61:41:e5:96:32:ec:90:e6:ba:c2:53:80:c5:45:5c:
1c:9d:44:15:5f:11:4a:39:88:2d:30:5e:5f:de:fc:
6d:35:8d:e1:7f:78:3c:5e:0f:32:2e:68:ff:0d:76:
57:22:4c:61:a6:f2:0b:c5:0f:fd:08:a6:c5:85:d4:
09:71:9d:55:cb:2c:1d:14:c0:a7:a8:2e:9b:ce:40:
cf:28:a0:09:9c:87:99:13:7a:25:c6:e4:98:cf:03:
13:57:ee:20:9b:02:2f:83:4c:76:f1:40:83:05:18:
9f:05:93:b2:2c:cc:1d:da:e3:2e:8d:9f:90:ad:12:
81:50:a9:eb:62:46:53:b2:54:50:14:05:86:e2:95:
9d:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:8E:A6:F7:EE:FF:65:5F:1B:F7:C7:00:1B:2B:F1:AF:95:F1:6E:C4
X509v3 Authority Key Identifier:
keyid:2E:67:F3:E4:E1:97:7A:BE:98:CC:B2:0C:A1:AF:A8:58:F1:E6:68:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lmfz5OGXer6YzLIMoa-oWPHmaBw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/06be8f-a265-426a-aa0a-e479c6b9ff2b/1/0I6m9-7_ZV8b98cAGyvxr5XxbsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/06be8f-a265-426a-aa0a-e479c6b9ff2b/1/Lmfz5OGXer6YzLIMoa-oWPHmaBw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.82.32.0/22
Signature Algorithm: sha256WithRSAEncryption
91:d1:5a:5b:4c:53:79:69:37:71:b6:71:ba:98:55:92:b1:6d:
f1:cf:89:ab:ac:b1:fe:ec:5a:61:57:df:e5:44:04:2f:13:19:
bf:59:fc:69:59:96:3f:88:1d:ae:5b:3d:33:3d:d1:10:1a:4b:
de:85:89:6f:79:b3:88:81:6e:c2:70:a4:2a:1e:2c:d8:27:9d:
64:0f:eb:da:7c:34:c4:b1:52:25:44:b5:c8:11:3e:75:ec:e0:
94:0e:1b:da:f0:1e:a6:d4:b3:49:6d:ab:03:39:39:21:58:23:
cc:a7:15:d9:9f:33:ea:e4:18:21:34:29:20:34:ff:35:c9:07:
25:24:28:cf:03:b7:43:7f:7a:b5:36:e3:99:06:52:2f:c5:5e:
58:d2:10:36:36:86:89:81:1c:d2:78:4c:ae:07:04:51:e2:3b:
37:5f:41:be:30:e2:ad:30:5d:55:a7:35:b4:c4:f3:c5:b2:9e:
15:97:c5:88:44:e5:79:f0:1c:c7:6a:df:f5:d3:81:ae:43:53:
13:5e:0a:ba:f1:96:ba:1c:27:74:1d:5b:e7:aa:76:de:ad:38:
e7:94:27:67:72:c2:81:27:25:91:1a:78:94:9e:b8:cf:11:5f:
2a:ff:78:fc:01:9b:ca:be:8b:e2:c9:5b:24:e2:83:c5:d2:da:
29:63:62:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:47:04 2025 by rpki-client