Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/1b35c5-7ac6-4253-86ea-7744ef3c0b99/1/_StN6rhaGRaznY1QUS9r4jV5YF8.roa
File: _StN6rhaGRaznY1QUS9r4jV5YF8.roa (raw, json)
Hash identifier: B9uvGKGcoU5TnvCRQjQvOmT4XOX4rdvTxdQDkeusS3I=
Subject key identifier: FD:2B:4D:EA:B8:5A:19:16:B3:9D:8D:50:51:2F:6B:E2:35:79:60:5F
Certificate issuer: /CN=7e4b54dfd41610774fe7f242d7dd3873a658473b
Certificate serial: 04BAF0D1
Authority key identifier: 7E:4B:54:DF:D4:16:10:77:4F:E7:F2:42:D7:DD:38:73:A6:58:47:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fktU39QWEHdP5_JC1904c6ZYRzs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/1b35c5-7ac6-4253-86ea-7744ef3c0b99/1/_StN6rhaGRaznY1QUS9r4jV5YF8.roa
Signing time: Sat 01 Jan 2022 02:58:41 +0000
ROA not before: Sat 01 Jan 2022 02:58:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51561
IP address blocks: 185.207.140.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79360209 (0x4baf0d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e4b54dfd41610774fe7f242d7dd3873a658473b
Validity
Not Before: Jan 1 02:58:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd2b4deab85a1916b39d8d50512f6be23579605f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:69:cc:1f:ca:6d:8a:08:05:d5:0d:d8:df:34:
5b:d1:04:cb:df:d8:93:c6:61:5f:71:25:99:6e:4a:
48:04:20:5f:8d:b1:a0:6c:a6:f0:5b:f2:7e:3f:1a:
c4:da:e2:a6:b5:89:c5:c0:31:be:54:20:c1:07:d0:
7b:f4:bf:5e:d5:cc:cc:7b:d0:7f:14:6e:41:c5:34:
f1:2b:05:e8:e2:10:51:cb:ed:90:7e:2a:96:2b:20:
77:a7:3c:0b:ca:46:8b:dc:81:86:ca:3c:4d:a0:1f:
39:5c:67:74:dc:51:7c:77:c8:9d:31:85:f9:7e:1c:
6a:2f:ff:08:e2:a9:55:97:29:e6:7f:2d:cb:36:01:
8c:3b:1d:b0:dc:fc:0d:d2:67:3f:fa:df:0b:54:5d:
24:3a:7b:f2:0b:ac:81:e8:40:d5:97:49:3c:25:f7:
c5:bd:9e:78:48:2c:9c:d4:be:a1:61:be:89:ee:43:
09:25:54:52:a7:e0:bc:04:d6:46:8d:3c:e4:fc:3f:
8b:d1:f4:18:5f:56:13:c0:ea:3c:cb:ce:23:d0:72:
7d:89:22:c9:ef:61:00:fb:62:2a:58:f9:0c:60:09:
1a:e8:e7:87:a5:d5:76:5c:8a:ef:28:ea:e4:5e:be:
5a:81:b4:93:d2:8e:cd:b2:d1:ed:a0:8a:aa:43:f7:
76:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:2B:4D:EA:B8:5A:19:16:B3:9D:8D:50:51:2F:6B:E2:35:79:60:5F
X509v3 Authority Key Identifier:
keyid:7E:4B:54:DF:D4:16:10:77:4F:E7:F2:42:D7:DD:38:73:A6:58:47:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fktU39QWEHdP5_JC1904c6ZYRzs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/1b35c5-7ac6-4253-86ea-7744ef3c0b99/1/_StN6rhaGRaznY1QUS9r4jV5YF8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/1b35c5-7ac6-4253-86ea-7744ef3c0b99/1/fktU39QWEHdP5_JC1904c6ZYRzs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.140.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:93:91:60:82:66:bb:94:d2:fa:3d:d1:da:c2:89:f4:a3:96:
04:6a:19:88:59:de:1c:48:e6:3b:40:83:f2:ab:eb:e5:09:1d:
10:88:73:49:3c:6c:22:c1:6c:52:b1:68:5b:98:6e:59:dd:28:
4a:e6:fa:9d:ba:a1:09:18:92:37:2d:aa:b8:d9:80:21:67:bf:
b6:38:ec:00:d1:9d:ca:2e:65:10:fd:ec:0a:3c:aa:54:9d:bb:
d6:90:7b:09:8e:15:51:4a:a7:2a:b7:3b:30:f4:04:b3:1d:34:
bf:c6:57:f8:4e:b0:f3:6b:38:f2:22:26:e0:d6:72:5b:ad:a7:
2f:c1:41:3e:8e:13:60:6d:6a:4a:05:72:30:00:ef:43:14:38:
f4:e1:2f:98:7a:2e:8e:06:d3:7c:a5:0f:6d:8a:7b:21:0f:3e:
47:b4:21:b5:06:a3:e5:d3:6b:58:40:14:70:64:19:d9:a1:68:
60:9d:5d:0e:7b:a9:d7:b8:70:5e:52:cd:0d:45:f5:9c:e5:18:
f8:20:72:17:7a:fa:71:24:bd:e7:82:0e:dc:03:fa:c9:df:f7:
0b:da:56:27:94:dd:51:9a:c2:48:26:4b:63:f2:61:66:ec:69:
ba:d6:4d:8f:54:f0:c0:4e:a0:5f:20:9f:9b:11:e2:d1:51:7f:
23:70:35:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:12:35 2025 by rpki-client