Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/SbtcqV_wwrBP11rhsyZcUhlnHWc.roa
File: SbtcqV_wwrBP11rhsyZcUhlnHWc.roa (raw, json)
Hash identifier: JQmcUYcHVCLRVy7XsMPxn/KUI5y6w5UMGnxydADKSSM=
Subject key identifier: 49:BB:5C:A9:5F:F0:C2:B0:4F:D7:5A:E1:B3:26:5C:52:19:67:1D:67
Certificate issuer: /CN=61a5d217759e861696fc77ed9aa63b94edb3be7d
Certificate serial: 05A51BF4
Authority key identifier: 61:A5:D2:17:75:9E:86:16:96:FC:77:ED:9A:A6:3B:94:ED:B3:BE:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/SbtcqV_wwrBP11rhsyZcUhlnHWc.roa
Signing time: Sat 01 Jan 2022 07:57:48 +0000
ROA not before: Sat 01 Jan 2022 07:57:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 185.27.251.0/24 maxlen: 24
185.27.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94706676 (0x5a51bf4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61a5d217759e861696fc77ed9aa63b94edb3be7d
Validity
Not Before: Jan 1 07:57:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=49bb5ca95ff0c2b04fd75ae1b3265c5219671d67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:10:43:67:16:9c:a4:48:fc:46:d5:84:b7:c9:
57:60:87:d1:57:89:d1:43:c8:57:43:b5:ce:74:1e:
27:45:88:24:8d:9f:4a:62:df:61:44:8b:37:9f:c7:
d0:50:85:57:15:2b:fc:e2:19:3c:91:d7:d0:14:0a:
57:18:af:20:0b:b8:97:72:6d:75:b7:da:fc:87:88:
3d:33:95:51:21:b1:8f:1d:e6:47:c4:9b:88:97:86:
eb:72:f8:31:49:0c:6a:5e:50:a9:50:56:b9:ed:a9:
cc:ec:a1:4c:f5:88:90:e5:83:e5:12:c0:04:0e:e0:
4e:c9:59:00:ea:93:86:2a:b8:f9:b7:8a:94:b1:f1:
58:a4:48:d0:ee:47:3a:8a:94:29:3d:8e:d7:63:9a:
ca:20:4e:c0:56:06:c7:54:3b:97:15:07:9e:af:e6:
53:0e:c7:94:41:c3:d5:bb:56:0d:94:a4:53:64:8b:
24:c7:c1:d2:0b:25:10:d3:96:f4:0f:ff:11:b1:38:
6a:e6:6d:3d:be:86:44:2a:cc:3e:ba:f9:bb:17:c1:
fc:0f:52:94:7a:29:98:1a:a2:c3:d2:11:ea:20:2e:
d4:f0:58:f9:62:c2:b8:5e:64:fe:e7:d0:c3:52:a8:
03:1d:4a:0a:35:c7:30:dd:64:c2:d1:1c:7e:e7:de:
20:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:BB:5C:A9:5F:F0:C2:B0:4F:D7:5A:E1:B3:26:5C:52:19:67:1D:67
X509v3 Authority Key Identifier:
keyid:61:A5:D2:17:75:9E:86:16:96:FC:77:ED:9A:A6:3B:94:ED:B3:BE:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/SbtcqV_wwrBP11rhsyZcUhlnHWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.27.249.0/24
185.27.251.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:9f:9b:5b:d7:d5:0f:b0:01:d9:e8:37:18:cb:62:bf:e4:bf:
f4:7e:0b:e1:9c:9d:07:6e:41:f2:fa:64:d0:33:58:be:ee:2d:
50:50:0d:af:08:a5:7e:7a:c4:35:e4:ac:bb:70:0f:ba:f0:de:
49:de:6e:3a:92:21:ca:9b:04:42:45:94:9e:d6:28:c9:47:d4:
e8:55:d0:96:d5:b8:5f:65:08:b1:9f:74:87:85:02:2e:9f:91:
3b:fc:40:af:6e:cd:82:a3:de:33:52:6c:ea:ff:dd:29:bc:b3:
2d:6d:85:52:38:c8:a8:05:ff:03:78:99:13:28:67:e5:66:cf:
b1:4d:06:55:a5:b6:c6:19:27:bb:89:f2:46:18:aa:fd:31:bd:
3c:6a:30:89:b9:4d:11:58:26:fd:1c:47:fd:7d:cc:ab:c7:f8:
09:34:33:74:63:31:0d:e6:b0:c4:29:a3:90:e3:0b:2c:62:aa:
b4:c5:8d:2c:03:d7:16:82:7b:f9:c4:38:58:67:af:04:24:c0:
b7:29:56:fd:a1:fb:9e:de:cb:45:67:89:be:61:70:bb:50:9e:
90:4d:90:48:16:92:50:d1:80:ab:07:26:3c:6f:38:76:6f:53:
ce:fb:0f:45:3a:08:49:45:4e:a5:c0:a4:f2:75:fb:1e:a4:1b:
74:d8:0c:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:18:40 2025 by rpki-client