Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8d1756-225f-4579-b1e6-9d609770a9ea/1/uuYndP31CtpjFTIqDXDQXpuPZ7o.roa
File: uuYndP31CtpjFTIqDXDQXpuPZ7o.roa (raw, json)
Hash identifier: 2Ivb2glovuqlQzZfNsKtCGAPOUqmjuQI/G4PGakfYtg=
Subject key identifier: BA:E6:27:74:FD:F5:0A:DA:63:15:32:2A:0D:70:D0:5E:9B:8F:67:BA
Certificate issuer: /CN=89d5d1288a3c2ae17f99cbb18917700189bd4720
Certificate serial: 0188E2505B8AC94AD57C63FF5FCFA1CC52DA
Authority key identifier: 89:D5:D1:28:8A:3C:2A:E1:7F:99:CB:B1:89:17:70:01:89:BD:47:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idXRKIo8KuF_mcuxiRdwAYm9RyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8d1756-225f-4579-b1e6-9d609770a9ea/1/uuYndP31CtpjFTIqDXDQXpuPZ7o.roa
Signing time: Thu 22 Jun 2023 08:54:57 +0000
ROA not before: Thu 22 Jun 2023 08:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8220
IP address blocks: 185.155.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e2:50:5b:8a:c9:4a:d5:7c:63:ff:5f:cf:a1:cc:52:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89d5d1288a3c2ae17f99cbb18917700189bd4720
Validity
Not Before: Jun 22 08:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bae62774fdf50ada6315322a0d70d05e9b8f67ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:e2:e5:df:4e:61:af:d8:4d:63:93:09:c7:b3:
71:d1:df:4e:81:76:c6:76:17:91:f5:c5:15:ba:fd:
fa:61:79:d7:9b:8a:dd:7f:55:94:41:b7:23:bd:27:
64:cd:4e:88:53:f0:96:1f:9a:79:1b:da:6c:e3:d6:
70:8e:cb:f6:9f:8e:9d:45:19:48:08:06:ce:20:c4:
56:50:2d:83:18:e0:72:65:af:ba:93:45:7c:96:21:
44:ca:09:b6:ec:39:98:1d:c4:80:0e:39:b4:63:be:
b5:8c:36:54:1b:08:96:61:39:7c:37:46:52:be:03:
45:1a:9a:02:0e:c9:14:1d:69:21:34:59:1e:bc:0d:
c6:ef:a7:c6:20:e9:4f:c8:25:2b:41:ce:f8:e5:af:
f3:ad:95:cb:6b:47:8c:9a:87:86:96:70:72:c8:8b:
aa:03:34:5d:9c:2a:22:40:0b:0f:65:f3:96:98:07:
e8:fb:01:36:4b:54:22:d1:a9:26:66:12:df:fd:dd:
6b:3f:59:ae:be:fb:6d:ae:10:76:16:cf:b3:23:e4:
5b:ee:08:bf:e3:12:f1:60:77:8e:d6:a9:d2:f1:4e:
23:70:5a:34:22:3d:2b:fc:f3:04:ef:e3:81:64:e6:
6f:a7:30:73:4a:d4:f7:34:a4:17:a4:22:3f:de:8f:
77:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:E6:27:74:FD:F5:0A:DA:63:15:32:2A:0D:70:D0:5E:9B:8F:67:BA
X509v3 Authority Key Identifier:
keyid:89:D5:D1:28:8A:3C:2A:E1:7F:99:CB:B1:89:17:70:01:89:BD:47:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idXRKIo8KuF_mcuxiRdwAYm9RyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8d1756-225f-4579-b1e6-9d609770a9ea/1/uuYndP31CtpjFTIqDXDQXpuPZ7o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8d1756-225f-4579-b1e6-9d609770a9ea/1/idXRKIo8KuF_mcuxiRdwAYm9RyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.199.0/24
Signature Algorithm: sha256WithRSAEncryption
14:d4:91:4f:3e:a9:1f:44:6b:29:f9:06:ef:6e:b4:ed:54:f8:
cc:4c:69:c6:b8:21:7c:4d:32:a5:0d:a4:01:6b:aa:04:e4:f1:
4c:c4:30:d7:3c:6d:4f:ee:29:73:c8:71:ad:05:7c:11:a9:e8:
89:eb:06:0e:38:a3:f9:9d:a4:d1:f5:6c:66:a0:de:ec:b9:c6:
fc:ac:5b:de:38:bb:b3:db:31:cb:a8:a0:dc:ff:0a:67:b6:07:
f9:ac:15:a2:9b:d9:d3:2a:ca:5d:c3:af:ff:01:b9:de:92:66:
03:8b:2a:67:a6:32:3f:51:b9:e5:97:33:77:2b:c5:8e:0d:ef:
9b:c6:af:67:56:d3:57:09:da:95:f7:34:62:c9:38:09:47:c8:
46:e6:18:08:c1:c9:d0:46:04:27:3d:08:a0:2a:b1:c7:03:b6:
47:d9:7e:bb:b8:a9:b4:5c:68:4b:9c:a4:ed:7a:bb:2c:c9:79:
ed:ad:da:58:e1:17:35:cb:c2:59:5f:eb:f9:16:66:a9:98:6d:
c4:6f:57:7d:54:6c:36:d1:79:0b:7e:8b:dd:3c:6a:e6:9a:40:
89:5e:24:ab:ab:ec:80:55:c0:a4:2a:4f:58:d7:51:82:38:d2:
ff:cd:98:73:dc:68:9d:18:a8:04:47:22:e0:90:90:60:6d:19:
f3:75:1e:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:25:56 2025 by rpki-client