Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/sKUe1OVLU6Om1UwBPgWk7dyWNlQ.roa
File: sKUe1OVLU6Om1UwBPgWk7dyWNlQ.roa (raw, json)
Hash identifier: nsAHfs7epGC/c2ropF6EQ/GZa8S9Sr80D39vCPPqGFU=
Subject key identifier: B0:A5:1E:D4:E5:4B:53:A3:A6:D5:4C:01:3E:05:A4:ED:DC:96:36:54
Certificate issuer: /CN=b6d14118dbd227298daa80c7acab11eea6d63e21
Certificate serial: 01856B9C83F854076837850BBB8F71FA7C5D
Authority key identifier: B6:D1:41:18:DB:D2:27:29:8D:AA:80:C7:AC:AB:11:EE:A6:D6:3E:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ttFBGNvSJymNqoDHrKsR7qbWPiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/sKUe1OVLU6Om1UwBPgWk7dyWNlQ.roa
Signing time: Sun 01 Jan 2023 04:34:57 +0000
ROA not before: Sun 01 Jan 2023 04:34:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210392
IP address blocks: 185.132.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:9c:83:f8:54:07:68:37:85:0b:bb:8f:71:fa:7c:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6d14118dbd227298daa80c7acab11eea6d63e21
Validity
Not Before: Jan 1 04:34:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0a51ed4e54b53a3a6d54c013e05a4eddc963654
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:60:18:16:fe:30:c1:c9:7f:73:ed:5e:04:6d:
ad:ef:36:38:8f:2c:8d:d0:b2:5e:2b:32:d8:51:a9:
ad:f9:9d:bb:e8:07:c0:62:20:05:df:ca:99:e6:31:
d9:c3:35:a7:39:5b:48:97:aa:59:83:ec:8d:5d:ac:
f3:29:36:b2:6c:d7:47:d6:0d:cf:34:cc:12:a4:2e:
6b:b2:8e:a4:04:45:c8:5e:4c:52:32:fc:0f:c8:35:
14:6e:a3:93:9c:33:00:38:f9:86:c3:19:a5:cd:e4:
ba:00:63:bf:6d:1c:19:1d:8f:5e:8f:44:a2:50:37:
fc:ec:b0:cc:9d:ff:b4:b1:1e:69:9b:e4:78:d7:91:
50:4f:cf:ba:15:1d:f2:1b:62:1a:b2:f3:aa:c0:51:
9f:b7:a9:3f:50:d5:8e:e3:4e:fe:ea:dd:72:56:61:
e8:06:aa:8a:3d:b9:fa:d8:79:21:4f:49:da:b0:08:
1b:46:da:4c:41:ab:c4:22:fd:45:b6:d8:55:53:ac:
06:4e:4f:7b:53:d6:54:0a:b8:1c:16:f0:a7:05:56:
46:10:4b:34:52:a0:1a:99:5d:a4:5f:d2:e5:b6:bf:
ca:63:8a:14:3d:69:ed:09:7a:cc:88:e9:e6:2a:9c:
43:38:59:c2:dc:20:47:b0:09:cf:0f:fd:05:c0:1c:
4b:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:A5:1E:D4:E5:4B:53:A3:A6:D5:4C:01:3E:05:A4:ED:DC:96:36:54
X509v3 Authority Key Identifier:
keyid:B6:D1:41:18:DB:D2:27:29:8D:AA:80:C7:AC:AB:11:EE:A6:D6:3E:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ttFBGNvSJymNqoDHrKsR7qbWPiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/sKUe1OVLU6Om1UwBPgWk7dyWNlQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/ttFBGNvSJymNqoDHrKsR7qbWPiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.132.81.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:fc:bd:4a:ef:86:3b:d5:59:3a:c4:cd:68:57:c6:55:2d:02:
34:b0:93:ab:61:92:b1:6c:70:91:6c:80:7b:22:39:42:62:e3:
f5:02:79:c6:ea:34:8e:af:4e:f2:a3:37:aa:d9:52:94:b2:4c:
04:0c:db:4e:10:2e:bb:03:23:2b:a4:9d:03:a4:e3:7f:1c:51:
c2:47:6d:dc:08:c0:3f:45:0a:25:ba:dd:11:e2:b3:65:22:37:
52:8b:ed:f8:90:9d:5f:4d:04:44:67:af:58:bd:8b:b2:1f:e2:
47:96:48:e9:4c:cf:cf:94:4b:71:6c:aa:7b:43:fc:3a:7f:ae:
b4:c9:d6:9c:1f:98:66:08:fa:92:d8:aa:05:b3:57:4c:ce:73:
b8:0d:9b:da:fa:e3:05:3b:f1:61:23:ec:92:8e:24:b4:7a:44:
6e:22:19:aa:2e:de:46:60:b1:a0:69:9c:63:59:15:9c:7e:6c:
70:85:20:8b:dd:fa:16:ad:79:62:06:5e:32:0b:66:9e:d3:8e:
18:4b:2c:e1:d8:dc:9e:0c:7b:12:a1:2e:58:d2:13:86:90:aa:
52:40:e7:a6:3f:dd:62:2a:cf:d4:b9:0e:e2:d2:af:e6:a1:4f:
eb:56:78:a6:87:8e:97:ad:28:78:cc:cf:ce:4e:9e:95:12:26:
33:22:23:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:19:14 2025 by rpki-client