Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/861f32-81f4-4d64-8610-54de7a6cb3b1/1/ike2Pw1kZTIm4eiHLov2jrbrsB4.roa
File: ike2Pw1kZTIm4eiHLov2jrbrsB4.roa (raw, json)
Hash identifier: p/+yng7oDv2JSgtCNm2G+rGFaujWywz/PpXj47jFfQk=
Subject key identifier: 8A:47:B6:3F:0D:64:65:32:26:E1:E8:87:2E:8B:F6:8E:B6:EB:B0:1E
Certificate issuer: /CN=83f8294469fb7aec2601bb03772d0156f470b74d
Certificate serial: 12A4ABB9
Authority key identifier: 83:F8:29:44:69:FB:7A:EC:26:01:BB:03:77:2D:01:56:F4:70:B7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g_gpRGn7euwmAbsDdy0BVvRwt00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/861f32-81f4-4d64-8610-54de7a6cb3b1/1/ike2Pw1kZTIm4eiHLov2jrbrsB4.roa
Signing time: Sat 01 Jan 2022 07:55:25 +0000
ROA not before: Sat 01 Jan 2022 07:55:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59884
IP address blocks: 185.67.213.0/24 maxlen: 24
185.67.212.0/24 maxlen: 24
185.67.212.0/22 maxlen: 22
185.67.214.0/24 maxlen: 24
185.67.215.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 312781753 (0x12a4abb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83f8294469fb7aec2601bb03772d0156f470b74d
Validity
Not Before: Jan 1 07:55:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a47b63f0d64653226e1e8872e8bf68eb6ebb01e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c7:f8:0c:16:1d:bd:91:7b:9f:72:4c:43:f0:
c1:fa:fb:b7:9e:3f:1f:5a:6d:15:5d:a6:75:30:50:
eb:4f:7a:5a:be:50:e1:91:40:eb:d7:e1:7c:83:3d:
70:10:68:ec:ce:49:31:bc:ca:c0:38:7c:cc:7f:95:
27:da:a5:d1:65:e7:43:00:18:6f:1a:22:db:4e:29:
db:07:31:57:3c:b0:39:24:b2:c4:6f:98:d0:e3:c4:
f9:09:7c:94:e8:e6:ef:55:e2:24:52:9d:84:be:35:
4c:ca:d0:17:e3:42:0d:4a:7d:ed:2f:16:fa:e8:3e:
87:66:39:e5:fd:eb:94:89:2a:0a:6f:4b:88:1f:a1:
b3:b0:8e:df:2c:04:a8:09:44:d0:72:a2:f5:7e:c6:
55:b6:ff:be:35:03:1e:0c:9c:be:4f:5f:f9:6e:85:
89:d1:10:45:eb:8e:e3:32:47:73:0b:79:99:0c:2f:
ad:e8:2b:75:36:de:6d:cd:d0:c4:a7:88:9a:90:5a:
d8:2e:9e:ea:3f:4b:f5:c8:62:aa:0c:a1:04:e5:47:
d4:8e:46:bd:27:cd:a6:27:0c:34:cb:c0:5a:3d:b5:
9d:09:f3:46:4e:56:75:f5:cb:6a:54:0d:a6:ea:1f:
34:b0:56:83:60:27:1f:30:1b:05:ed:92:f8:f2:a6:
50:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:47:B6:3F:0D:64:65:32:26:E1:E8:87:2E:8B:F6:8E:B6:EB:B0:1E
X509v3 Authority Key Identifier:
keyid:83:F8:29:44:69:FB:7A:EC:26:01:BB:03:77:2D:01:56:F4:70:B7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g_gpRGn7euwmAbsDdy0BVvRwt00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/861f32-81f4-4d64-8610-54de7a6cb3b1/1/ike2Pw1kZTIm4eiHLov2jrbrsB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/861f32-81f4-4d64-8610-54de7a6cb3b1/1/g_gpRGn7euwmAbsDdy0BVvRwt00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.67.212.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:94:41:e3:05:40:20:ed:dd:7a:17:c9:ff:45:73:dc:6a:19:
47:74:d1:12:88:f2:ec:03:98:0f:31:a5:69:48:20:d9:ea:88:
a2:3c:42:e2:39:88:f8:4d:95:7a:1d:1c:ee:0e:c4:60:a6:d7:
a3:01:35:37:97:d6:73:80:3a:ec:b3:96:86:0b:c3:a9:7b:71:
9f:bc:ed:90:23:2d:21:c1:81:f0:cd:90:f0:56:20:76:11:b6:
c9:60:0b:9b:fc:99:77:7a:12:d1:fc:bd:e8:bb:ef:93:85:89:
6d:c2:1f:f7:8f:e6:40:00:04:34:d4:b2:55:a8:43:0a:d2:7f:
06:7e:b2:e2:e8:1e:ae:86:90:10:db:a8:1a:ac:30:60:0a:53:
f7:ea:af:86:49:b4:ed:c0:81:10:b0:ba:33:cd:54:54:f7:96:
e7:b9:75:a9:45:4c:40:02:cb:91:2d:72:70:a1:f4:36:74:e8:
5a:92:2c:c8:6a:0b:b6:d0:ef:33:ac:4b:fa:e0:85:24:94:76:
44:b9:34:28:84:27:20:b0:6d:57:7d:0c:eb:5e:f9:ac:59:2e:
e5:fd:11:b5:47:0b:a0:87:f0:72:b5:52:78:78:5d:2f:d5:2f:
af:b7:bc:bd:5b:11:cf:1b:49:0b:5a:88:d7:f7:7a:02:8c:d5:
e7:57:54:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:05 2025 by rpki-client