Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8d1756-225f-4579-b1e6-9d609770a9ea/1/N76VqgOsHvDzO9rmiDOF3_1aCvY.roa
File: N76VqgOsHvDzO9rmiDOF3_1aCvY.roa (raw, json)
Hash identifier: BWO9l8XmVVJp/aSh4xeXsMYeZu2YY/wMKKRisBMAsGM=
Subject key identifier: 37:BE:95:AA:03:AC:1E:F0:F3:3B:DA:E6:88:33:85:DF:FD:5A:0A:F6
Certificate issuer: /CN=89d5d1288a3c2ae17f99cbb18917700189bd4720
Certificate serial: 01877098B4398B3913B2B79630FFECF9813B
Authority key identifier: 89:D5:D1:28:8A:3C:2A:E1:7F:99:CB:B1:89:17:70:01:89:BD:47:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idXRKIo8KuF_mcuxiRdwAYm9RyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8d1756-225f-4579-b1e6-9d609770a9ea/1/N76VqgOsHvDzO9rmiDOF3_1aCvY.roa
Signing time: Tue 11 Apr 2023 13:54:28 +0000
ROA not before: Tue 11 Apr 2023 13:54:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8220
IP address blocks: 185.155.197.0/24 maxlen: 24
185.155.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:70:98:b4:39:8b:39:13:b2:b7:96:30:ff:ec:f9:81:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89d5d1288a3c2ae17f99cbb18917700189bd4720
Validity
Not Before: Apr 11 13:54:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37be95aa03ac1ef0f33bdae6883385dffd5a0af6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:0d:23:f3:c2:fc:78:91:76:73:86:88:fc:c2:
00:ad:6a:b2:fe:16:0d:dc:4b:e0:f6:a6:45:95:e2:
65:2b:65:10:9a:4f:01:72:c4:77:b5:fb:70:32:06:
fb:20:8e:45:b1:01:59:73:a0:33:9e:d3:49:d6:ab:
de:ed:95:22:b6:9a:22:9e:52:97:4e:31:fb:0c:8b:
e5:0d:08:a0:9a:2f:08:d5:95:2b:f3:dd:90:5b:2b:
a5:d5:c8:ac:ff:6e:0f:93:d9:62:5f:f4:e2:ec:c1:
ac:a6:1f:40:e1:8d:31:c1:7f:0f:59:51:f5:18:ac:
99:93:a2:9a:74:88:60:e5:38:7b:a7:22:ae:3b:63:
26:51:66:b1:64:6f:fb:4f:52:0a:3c:8f:61:c0:77:
c4:76:56:47:8d:2b:05:47:36:80:0b:97:66:15:c1:
99:1f:c1:9c:3b:14:b4:f9:ad:d9:b2:a0:f0:a0:42:
56:18:4a:7e:c9:df:d4:ac:22:43:20:71:92:97:4d:
11:61:1d:3a:c4:22:62:65:fa:b6:7f:f2:04:3c:03:
6f:11:9a:c9:bb:b9:6d:3d:57:83:f2:e7:38:e6:f2:
07:8f:dc:25:b1:ad:5a:42:df:e4:20:49:2b:e4:03:
ae:3e:01:dd:28:f7:50:eb:8b:64:46:81:59:cf:2d:
40:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:BE:95:AA:03:AC:1E:F0:F3:3B:DA:E6:88:33:85:DF:FD:5A:0A:F6
X509v3 Authority Key Identifier:
keyid:89:D5:D1:28:8A:3C:2A:E1:7F:99:CB:B1:89:17:70:01:89:BD:47:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idXRKIo8KuF_mcuxiRdwAYm9RyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8d1756-225f-4579-b1e6-9d609770a9ea/1/N76VqgOsHvDzO9rmiDOF3_1aCvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8d1756-225f-4579-b1e6-9d609770a9ea/1/idXRKIo8KuF_mcuxiRdwAYm9RyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.197.0/24
185.155.199.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:2d:9a:0a:57:6c:3e:79:09:0e:0e:99:13:0d:f1:75:dd:1b:
a4:76:e6:95:0f:ae:6a:e7:d2:02:85:38:e6:5e:2e:80:29:de:
c6:07:f4:c0:c4:b4:5f:03:2f:07:fd:05:73:a9:1c:59:a5:f9:
95:b9:a8:a1:e5:45:81:17:65:bf:2c:6e:37:6f:80:54:5b:0e:
e9:10:51:51:fc:d3:68:5d:1c:7d:c2:ce:04:54:0c:82:7f:6a:
d2:18:17:09:d3:39:e5:ed:fc:e9:6a:79:1d:46:e4:9e:b2:6b:
a5:c0:a1:c3:92:ed:cd:a1:d8:f7:6a:9e:da:a8:4b:48:fa:d1:
57:c6:a6:6c:58:24:fc:da:08:ab:f7:31:94:bc:e4:bf:b7:21:
78:64:98:67:b9:53:21:82:79:d3:02:4e:9f:7d:8b:c9:f8:e3:
d5:05:48:58:28:af:6a:44:be:88:a0:cd:e4:bc:07:63:f3:e2:
30:40:9a:e1:b1:4d:35:f1:1f:30:ee:b2:4a:c7:94:df:52:bb:
9a:6d:65:09:a6:86:be:9f:9e:29:af:00:1e:e0:4f:0b:9b:cc:
ed:7e:b4:40:9a:fa:bb:05:38:39:0c:36:94:dd:4c:b8:6a:a8:
bd:03:e4:83:e9:82:6c:68:72:e3:90:e2:ef:8f:cb:a4:79:ee:
0b:d3:d2:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:37:52 2025 by rpki-client