Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/56d267-1c43-47c8-afb2-64d29c86bf3e/1/99Orjo27_fy_9xG0FhNOta5fEsQ.roa
File: 99Orjo27_fy_9xG0FhNOta5fEsQ.roa (raw, json)
Hash identifier: RwA/GBSRMbN+4zalgIXx2d+mrePU6WlKDHrj5GlCahM=
Subject key identifier: F7:D3:AB:8E:8D:BB:FD:FC:BF:F7:11:B4:16:13:4E:B5:AE:5F:12:C4
Certificate issuer: /CN=ac1f721b7b7e6d049fbfe520e1ca89c1ca256813
Certificate serial: 0184ADFE8CD750029160DB604CAE28D561D0
Authority key identifier: AC:1F:72:1B:7B:7E:6D:04:9F:BF:E5:20:E1:CA:89:C1:CA:25:68:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rB9yG3t-bQSfv-Ug4cqJwcolaBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/56d267-1c43-47c8-afb2-64d29c86bf3e/1/99Orjo27_fy_9xG0FhNOta5fEsQ.roa
Signing time: Fri 25 Nov 2022 08:54:11 +0000
ROA not before: Fri 25 Nov 2022 08:54:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20818
IP address blocks: 185.111.212.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ad:fe:8c:d7:50:02:91:60:db:60:4c:ae:28:d5:61:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac1f721b7b7e6d049fbfe520e1ca89c1ca256813
Validity
Not Before: Nov 25 08:54:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f7d3ab8e8dbbfdfcbff711b416134eb5ae5f12c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:2d:52:10:47:75:b3:88:a2:33:41:a6:2e:54:
f8:f0:5c:2b:a1:6a:d5:29:5d:49:91:7d:a4:f3:e7:
f0:38:46:0a:0f:f3:28:44:60:fe:60:f7:a2:a3:ba:
b8:10:09:5e:21:9f:d6:8d:17:05:a7:a5:51:2a:24:
ef:54:01:c3:a1:03:f2:45:5c:cb:b1:3b:6c:16:c3:
6d:2a:25:21:d6:1b:6d:ac:c6:ae:82:7a:f1:a8:54:
5f:3e:54:aa:b6:2b:e3:c1:2a:d8:8b:ff:59:00:d0:
94:ee:c3:72:b1:ca:38:24:29:b5:70:f1:1e:f1:10:
f0:db:42:72:41:eb:74:2b:85:36:f4:26:36:f4:96:
56:93:76:9c:55:24:d1:14:58:45:2e:9a:f8:3c:24:
16:8d:bc:de:dc:28:2b:3f:03:18:c2:0d:6e:25:de:
50:10:dd:14:08:a9:dd:5e:bb:1d:dd:0a:1a:9c:bd:
41:93:79:4f:0c:4c:cd:2a:c6:3f:7b:3a:f5:b2:9b:
2e:7b:fe:cc:18:3d:a2:6b:15:d4:e0:29:a8:1a:26:
06:e8:43:b7:42:16:13:84:3a:7c:3d:d0:97:a7:e1:
12:03:8c:ef:59:24:63:c8:48:b4:67:22:25:13:43:
70:c1:d6:64:ef:e4:ae:80:9d:21:07:0e:3d:29:38:
1c:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:D3:AB:8E:8D:BB:FD:FC:BF:F7:11:B4:16:13:4E:B5:AE:5F:12:C4
X509v3 Authority Key Identifier:
keyid:AC:1F:72:1B:7B:7E:6D:04:9F:BF:E5:20:E1:CA:89:C1:CA:25:68:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rB9yG3t-bQSfv-Ug4cqJwcolaBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/56d267-1c43-47c8-afb2-64d29c86bf3e/1/99Orjo27_fy_9xG0FhNOta5fEsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/56d267-1c43-47c8-afb2-64d29c86bf3e/1/rB9yG3t-bQSfv-Ug4cqJwcolaBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.111.212.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:1e:f2:18:f9:b1:9f:7a:97:e7:db:22:86:9d:27:c1:97:00:
c7:59:47:33:eb:56:39:13:4c:c3:67:3c:7b:b5:2d:7c:41:d8:
d0:cf:1d:9a:0e:53:72:12:67:67:57:d9:cb:98:62:f2:9b:f1:
42:82:5b:7b:d6:b8:8e:41:05:b1:59:4a:45:5c:57:d9:e3:7a:
10:4b:88:1f:87:fc:f3:f7:24:84:35:58:62:56:b7:a2:08:bc:
5b:4d:93:9e:5d:7f:5a:b2:53:19:fd:2c:f0:31:60:cb:9b:06:
0d:6c:c4:82:9a:08:42:57:e2:92:e4:f6:52:d0:4b:98:f2:be:
8e:66:3d:03:6b:6e:13:4e:3c:61:ff:38:a6:99:a6:09:84:10:
61:e2:be:1c:7f:66:90:cf:f9:f7:b2:e1:14:bd:0a:b6:5d:7b:
50:2d:62:4b:f7:33:a9:2a:6b:c5:bb:33:51:f0:64:7c:37:5c:
e8:53:81:21:78:ea:1d:48:0b:9e:78:04:62:17:7e:15:c5:8a:
6b:c0:85:92:79:b5:c0:a0:71:4d:81:7f:d5:07:1f:47:21:e1:
b7:f0:49:bb:b8:a2:d4:91:b3:24:4b:05:7f:7d:c6:d9:da:15:
86:73:fb:db:99:7e:32:f8:90:e4:29:99:2e:20:3e:f8:7a:05:
f2:76:bd:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:24:21 2025 by rpki-client