Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/f24885-a4db-4fa1-a72d-86d6c1305357/1/rs2zH3fcDn9WSA3GZJ_YEZhDcIk.roa
File: rs2zH3fcDn9WSA3GZJ_YEZhDcIk.roa (raw, json)
Hash identifier: NixgnbonyOnyuFH2JIeyVjEaTTT8WrbpTfRvon9qMdg=
Subject key identifier: AE:CD:B3:1F:77:DC:0E:7F:56:48:0D:C6:64:9F:D8:11:98:43:70:89
Certificate issuer: /CN=7b148db42f90e96447bd7f63edd8a7ccbeeaa842
Certificate serial: 10FB93E2
Authority key identifier: 7B:14:8D:B4:2F:90:E9:64:47:BD:7F:63:ED:D8:A7:CC:BE:EA:A8:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/exSNtC-Q6WRHvX9j7dinzL7qqEI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/f24885-a4db-4fa1-a72d-86d6c1305357/1/rs2zH3fcDn9WSA3GZJ_YEZhDcIk.roa
Signing time: Sat 01 Jan 2022 11:55:07 +0000
ROA not before: Sat 01 Jan 2022 11:55:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60501
IP address blocks: 185.187.62.0/24 maxlen: 24
185.30.64.0/22 maxlen: 22
185.109.24.0/22 maxlen: 22
185.109.24.0/24 maxlen: 24
185.109.25.0/24 maxlen: 24
185.109.27.0/24 maxlen: 24
185.109.26.0/24 maxlen: 24
194.156.180.0/22 maxlen: 22
2a0d:cc0::/29 maxlen: 29
2a00:ae20::/32 maxlen: 32
2a06:4dc0::/29 maxlen: 29
2a0f:ccc0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 284922850 (0x10fb93e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b148db42f90e96447bd7f63edd8a7ccbeeaa842
Validity
Not Before: Jan 1 11:55:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aecdb31f77dc0e7f56480dc6649fd81198437089
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5b:16:95:3c:39:43:c1:0e:88:e6:70:61:f3:
ba:bf:32:7a:11:ca:9c:aa:01:e4:22:42:4e:e6:d0:
97:79:08:c3:3b:5a:2b:4b:1d:45:c7:74:a8:40:ce:
b0:0d:58:1d:d9:68:85:88:81:c5:87:d6:29:a5:89:
f8:30:a4:59:e8:39:30:b7:f1:57:36:c5:3c:bb:6f:
6b:ee:34:41:2c:3b:b5:3c:41:e0:e3:78:ee:59:11:
3f:ef:6e:26:65:55:2d:6c:a2:44:51:3e:4c:5c:b0:
02:1a:04:06:28:46:ef:dc:43:4a:d0:71:4e:1f:19:
86:25:8e:cc:7f:d5:e3:ef:b1:ae:98:b7:8d:a9:bf:
dd:7b:17:25:e9:96:d6:42:ed:de:25:dc:5e:d9:16:
bb:e3:70:f7:a7:4f:5d:9f:54:10:be:89:fe:3d:5a:
c4:05:80:da:01:7a:ed:cd:f4:4f:d3:fa:a3:1f:20:
26:6d:b6:8a:99:20:f4:67:3c:17:8f:c5:95:5d:23:
5b:d5:ea:5a:84:63:45:3a:ff:6d:7a:3f:33:02:19:
77:77:79:3b:92:9d:4d:21:69:62:b6:93:cb:1e:76:
09:48:bb:2f:d0:8d:36:b0:47:b5:1f:95:f9:52:38:
48:69:7a:f3:e9:5b:05:d7:ea:fe:3f:af:1e:e7:2d:
4c:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:CD:B3:1F:77:DC:0E:7F:56:48:0D:C6:64:9F:D8:11:98:43:70:89
X509v3 Authority Key Identifier:
keyid:7B:14:8D:B4:2F:90:E9:64:47:BD:7F:63:ED:D8:A7:CC:BE:EA:A8:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/exSNtC-Q6WRHvX9j7dinzL7qqEI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f24885-a4db-4fa1-a72d-86d6c1305357/1/rs2zH3fcDn9WSA3GZJ_YEZhDcIk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f24885-a4db-4fa1-a72d-86d6c1305357/1/exSNtC-Q6WRHvX9j7dinzL7qqEI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.30.64.0/22
185.109.24.0/22
185.187.62.0/24
194.156.180.0/22
IPv6:
2a00:ae20::/32
2a06:4dc0::/29
2a0d:cc0::/29
2a0f:ccc0::/29
Signature Algorithm: sha256WithRSAEncryption
4c:c5:a2:60:ec:1f:c4:90:0b:04:d4:e6:4c:94:02:ec:ea:a5:
2f:45:ff:9f:cc:08:c0:47:8f:fe:e1:77:df:52:68:7f:48:95:
4b:18:49:40:2c:61:7d:b2:3c:7e:49:31:ef:39:f5:1f:8c:b7:
9a:e7:95:42:90:85:33:43:7d:b4:92:f4:e7:56:7f:b0:d5:c5:
14:57:d1:64:ea:00:50:92:7a:e7:d0:0f:75:2f:54:ed:21:a0:
dd:32:e9:1a:e4:4a:cc:5c:d6:44:9c:24:01:d3:88:d2:d7:33:
6d:c6:3f:f2:fb:14:27:97:c9:0e:be:f2:5d:08:56:a5:80:d6:
27:1f:a0:b9:2a:5b:85:24:c8:6c:40:06:5f:89:f7:5c:51:dd:
d1:56:b0:f9:9e:4c:6d:02:ad:6d:10:fc:4d:75:e6:85:5e:b6:
f6:d2:17:bc:c0:13:95:de:74:bd:8e:f4:b5:b4:ea:69:4c:9e:
0b:3d:02:89:b0:a8:5d:52:65:6f:9c:d9:0f:b3:c7:2a:43:4c:
5b:dd:4f:a3:ff:cf:a2:b5:05:a9:c1:6d:c7:b7:58:e5:03:00:
eb:93:cb:b8:ef:71:87:c2:10:7d:3c:78:9d:b7:81:49:b1:48:
21:7c:59:79:b6:95:1b:0c:41:12:f2:84:b8:6b:85:5c:39:ff:
dd:32:8d:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:52:05 2025 by rpki-client