Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/16afe5-a443-4237-ad7d-dab6e2c5fdd9/1/Mv6sH2gBVNNafKWPX5BZ3zzYomo.roa
File: Mv6sH2gBVNNafKWPX5BZ3zzYomo.roa (raw, json)
Hash identifier: gw+hs/LL9R5/PCbvqSENr2bsFMBmz6biXVajuGwr2Qw=
Subject key identifier: 32:FE:AC:1F:68:01:54:D3:5A:7C:A5:8F:5F:90:59:DF:3C:D8:A2:6A
Certificate issuer: /CN=cef84e4749cccd583fefc7797c3d67b10898a188
Certificate serial: 01B8E0BC
Authority key identifier: CE:F8:4E:47:49:CC:CD:58:3F:EF:C7:79:7C:3D:67:B1:08:98:A1:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zvhOR0nMzVg_78d5fD1nsQiYoYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/16afe5-a443-4237-ad7d-dab6e2c5fdd9/1/Mv6sH2gBVNNafKWPX5BZ3zzYomo.roa
Signing time: Sat 01 Jan 2022 10:54:57 +0000
ROA not before: Sat 01 Jan 2022 10:54:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43627
IP address blocks: 185.61.65.0/24 maxlen: 24
185.61.66.0/24 maxlen: 24
185.61.67.0/24 maxlen: 24
213.164.120.0/23 maxlen: 24
213.164.124.0/23 maxlen: 24
213.164.122.0/23 maxlen: 24
213.164.126.0/23 maxlen: 24
46.36.92.0/22 maxlen: 24
185.61.64.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28893372 (0x1b8e0bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cef84e4749cccd583fefc7797c3d67b10898a188
Validity
Not Before: Jan 1 10:54:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=32feac1f680154d35a7ca58f5f9059df3cd8a26a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:79:4e:59:64:75:0b:fb:4c:d5:15:3c:90:65:
fc:f3:2c:a0:5b:4d:97:88:da:40:63:31:7c:74:67:
15:95:1d:12:20:06:fe:70:09:49:d6:5a:0c:51:3f:
84:05:60:a3:8c:6c:7e:f9:e3:3b:bf:cc:5e:fd:d3:
b0:63:d8:3f:a5:4a:c7:c5:57:8c:40:29:eb:42:d7:
e7:6d:27:97:ff:11:87:ec:6e:3a:a9:64:fb:a1:de:
eb:10:e0:8b:2f:e1:17:df:73:25:13:05:0d:16:b2:
91:41:07:7d:fb:66:a6:7b:8e:fa:d9:28:74:69:b1:
cc:66:43:09:5c:11:db:61:15:10:fa:11:56:62:64:
6b:60:a5:4f:34:fb:db:a0:b1:16:1e:37:a6:c9:4c:
f9:d8:07:53:e2:e1:02:b1:6f:c0:a2:d2:b1:d1:72:
c7:3a:b0:44:ad:d9:8d:df:f2:8e:b2:f2:50:48:c4:
f9:55:54:17:81:17:53:80:7b:42:ca:b9:a0:b8:ba:
e5:37:fe:b0:d0:80:33:8b:82:54:88:d0:b7:4e:02:
b1:31:f3:3d:c5:a2:74:e7:f4:c4:0e:d4:ae:41:08:
c0:dc:86:a4:22:de:4e:e4:bb:99:7c:c5:7c:62:c8:
10:88:ae:52:c1:00:4c:8f:0d:5b:49:5d:e6:dd:aa:
11:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:FE:AC:1F:68:01:54:D3:5A:7C:A5:8F:5F:90:59:DF:3C:D8:A2:6A
X509v3 Authority Key Identifier:
keyid:CE:F8:4E:47:49:CC:CD:58:3F:EF:C7:79:7C:3D:67:B1:08:98:A1:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zvhOR0nMzVg_78d5fD1nsQiYoYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/16afe5-a443-4237-ad7d-dab6e2c5fdd9/1/Mv6sH2gBVNNafKWPX5BZ3zzYomo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/16afe5-a443-4237-ad7d-dab6e2c5fdd9/1/zvhOR0nMzVg_78d5fD1nsQiYoYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.36.92.0/22
185.61.64.0/22
213.164.120.0/21
Signature Algorithm: sha256WithRSAEncryption
53:38:3c:d6:fd:38:c4:88:49:aa:51:22:0c:31:cc:78:b2:fd:
ef:16:b0:b9:8e:dc:ed:b1:81:d0:ee:af:c8:81:8a:af:62:0f:
10:c7:c7:26:ec:a6:4f:15:87:09:66:86:4d:c1:ab:be:72:e5:
9d:f0:f7:6d:e9:c4:83:0a:ff:d6:ce:82:16:af:58:63:a5:f6:
86:1f:69:fe:d5:3e:20:6b:1f:34:c2:2b:be:4c:a0:db:3b:75:
ed:07:a7:5a:7f:b3:5e:6d:6d:75:17:c4:c7:0f:50:6c:45:aa:
83:bc:c8:f6:2c:d4:fc:3c:4e:2b:f6:b4:89:ba:ee:44:52:24:
e3:66:d0:d6:05:5c:81:93:c0:0d:bf:c9:0e:c5:a8:bb:43:32:
7e:34:1f:4e:b0:7f:6d:54:54:0f:d8:d6:a4:e6:e5:8c:07:8a:
98:87:68:23:12:c4:ea:24:57:2c:6d:21:7c:82:e0:3d:e7:5e:
19:fc:61:aa:5a:73:a4:ed:14:b9:33:10:b8:70:41:09:02:07:
34:d4:93:fa:de:57:ae:63:9d:fe:75:c2:c5:e0:14:8d:d7:63:
7b:b2:4e:5e:82:a4:86:17:d5:e1:5f:a3:74:3d:6d:a1:64:1e:
4a:db:e8:ec:0f:85:d8:34:92:af:bd:d6:15:01:aa:4d:44:bf:
86:21:5d:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:52:22 2025 by rpki-client