Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/6hfVNZK7bBA0ek1gTyiGqQ0ZFdQ.roa
File: 6hfVNZK7bBA0ek1gTyiGqQ0ZFdQ.roa (raw, json)
Hash identifier: +E1T002qoMxLXmAhIdN4CWFwwfEkW9It5Kc3C7H/RMU=
Subject key identifier: EA:17:D5:35:92:BB:6C:10:34:7A:4D:60:4F:28:86:A9:0D:19:15:D4
Certificate issuer: /CN=14bee0ebd06b4b812f9e13716e25f1c3c3d14cc6
Certificate serial: 0990AB39
Authority key identifier: 14:BE:E0:EB:D0:6B:4B:81:2F:9E:13:71:6E:25:F1:C3:C3:D1:4C:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FL7g69BrS4EvnhNxbiXxw8PRTMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/6hfVNZK7bBA0ek1gTyiGqQ0ZFdQ.roa
Signing time: Sat 01 Jan 2022 05:59:45 +0000
ROA not before: Sat 01 Jan 2022 05:59:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213035
IP address blocks: 37.0.9.0/24 maxlen: 24
37.0.14.0/24 maxlen: 24
37.0.12.0/23 maxlen: 24
85.202.168.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160475961 (0x990ab39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14bee0ebd06b4b812f9e13716e25f1c3c3d14cc6
Validity
Not Before: Jan 1 05:59:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea17d53592bb6c10347a4d604f2886a90d1915d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5b:bb:93:c1:e9:a1:f4:c0:ab:cd:b9:86:c5:
2a:28:6a:ca:ce:28:df:4b:b6:08:2e:48:43:b1:1f:
14:c0:27:f2:39:0b:26:e2:81:0d:40:9f:62:dc:84:
e1:74:cf:18:f6:b8:80:d1:4d:46:5d:ca:25:8d:a3:
8a:b4:e3:7c:d4:41:0f:e7:71:99:12:84:ce:55:7e:
62:a0:95:df:70:5e:1f:37:de:ee:e4:c1:f2:ab:21:
ac:03:5c:f8:f6:a8:cf:7a:85:19:75:df:6b:2b:cf:
dc:19:6e:b8:4d:25:c7:55:44:d0:76:b3:c5:75:d9:
ec:b0:40:4c:d7:2d:16:35:c1:e1:58:f4:7d:55:fa:
4a:74:ec:9c:d8:0c:18:c0:e9:df:02:38:4a:bd:03:
8e:79:a3:52:50:a3:5d:e9:9c:e2:e7:0d:61:68:bc:
9d:59:ad:b7:d1:ad:f6:08:75:5e:3a:9d:6a:89:dc:
b7:52:b2:1b:c9:d1:9b:44:05:7a:75:72:e0:31:7b:
e4:40:30:98:b3:55:78:ad:3e:5c:56:1e:25:79:f4:
68:4d:eb:f2:98:36:94:0c:e3:6c:19:f1:94:e2:e6:
1a:fe:7a:59:ec:42:21:37:1f:50:5b:14:57:6b:f1:
8c:e0:dd:c5:63:76:87:7a:8b:cf:47:25:95:8e:f4:
80:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:17:D5:35:92:BB:6C:10:34:7A:4D:60:4F:28:86:A9:0D:19:15:D4
X509v3 Authority Key Identifier:
keyid:14:BE:E0:EB:D0:6B:4B:81:2F:9E:13:71:6E:25:F1:C3:C3:D1:4C:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FL7g69BrS4EvnhNxbiXxw8PRTMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/6hfVNZK7bBA0ek1gTyiGqQ0ZFdQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/FL7g69BrS4EvnhNxbiXxw8PRTMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.0.9.0/24
37.0.12.0-37.0.14.255
85.202.168.0/22
Signature Algorithm: sha256WithRSAEncryption
65:5b:03:44:ad:63:82:de:e1:35:a8:86:23:00:13:3f:6f:b3:
14:0a:bb:30:44:0d:c8:81:24:b0:dc:e7:93:56:93:58:fb:7c:
4e:17:7b:6a:ac:57:53:c0:aa:92:f7:f9:b1:4d:5d:8b:a3:c0:
2c:74:6a:1a:98:13:08:49:15:55:d4:12:ec:e2:10:7e:d3:b8:
d8:32:ab:ae:03:9d:61:0a:56:45:40:5a:ac:02:35:10:87:5c:
f6:ff:09:2f:41:66:1a:58:07:2a:f7:21:24:37:7b:78:1c:96:
76:b0:91:e9:d6:82:21:6c:41:26:0f:df:a6:b4:cc:65:aa:ef:
e5:be:fd:ad:c8:56:bb:6d:69:1f:3d:35:4a:8f:72:c9:65:88:
c4:e8:02:56:23:74:13:36:14:ef:a4:6c:2a:fc:76:1f:4d:b9:
07:cd:87:27:16:02:58:8e:15:62:5b:82:00:88:f1:22:d6:a3:
a3:53:f3:eb:65:3d:bd:eb:72:41:4b:ad:1e:0c:16:22:37:4f:
95:28:32:50:88:39:3a:8e:2f:c9:7b:64:8a:97:c7:0e:fd:9e:
dc:1e:da:5e:75:9e:51:52:05:b2:6e:86:8f:03:f7:82:89:c9:
ec:9c:37:76:9d:6e:ed:f3:99:62:83:01:33:8d:5d:fa:cb:86:
7c:cd:65:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:04:55 2025 by rpki-client