Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/c3dc1b-d1ee-4ff2-a5aa-f0c4be8e240a/1/UXl1EXUrXpOXon1zV7iP06nzRvo.roa
File: UXl1EXUrXpOXon1zV7iP06nzRvo.roa (raw, json)
Hash identifier: oruKfejQEPydeLnSJAERDeCzURF7c/gm/A8o76E0gRw=
Subject key identifier: 51:79:75:11:75:2B:5E:93:97:A2:7D:73:57:B8:8F:D3:A9:F3:46:FA
Certificate issuer: /CN=49e44eeea26569d0ddbd0e8637f12cf505a4ede9
Certificate serial: 34BF4F11
Authority key identifier: 49:E4:4E:EE:A2:65:69:D0:DD:BD:0E:86:37:F1:2C:F5:05:A4:ED:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeRO7qJladDdvQ6GN_Es9QWk7ek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/c3dc1b-d1ee-4ff2-a5aa-f0c4be8e240a/1/UXl1EXUrXpOXon1zV7iP06nzRvo.roa
Signing time: Sat 01 Jan 2022 04:01:30 +0000
ROA not before: Sat 01 Jan 2022 04:01:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35676
IP address blocks: 178.213.66.0/23 maxlen: 23
178.213.68.0/22 maxlen: 22
194.5.88.0/23 maxlen: 23
195.234.36.0/24 maxlen: 24
185.16.252.0/23 maxlen: 23
185.16.252.0/22 maxlen: 22
185.16.254.0/23 maxlen: 23
178.213.64.0/23 maxlen: 23
178.213.64.0/22 maxlen: 22
193.105.186.0/24 maxlen: 24
2a03:6f82::/32 maxlen: 32
2a03:6f81::/32 maxlen: 32
2a03:6f80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 884952849 (0x34bf4f11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e44eeea26569d0ddbd0e8637f12cf505a4ede9
Validity
Not Before: Jan 1 04:01:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51797511752b5e9397a27d7357b88fd3a9f346fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:3e:f8:5a:d5:a4:94:f0:85:be:40:72:00:94:
ba:95:09:94:9a:77:2c:0c:e8:42:34:2c:3d:80:24:
f3:b3:38:4a:ef:86:05:f1:c5:d3:5b:61:c7:af:44:
0b:48:d0:a6:4a:72:fd:1d:ed:e5:87:94:80:71:bc:
7b:d9:be:a3:5b:fc:ab:59:61:32:f2:25:a9:d9:2b:
ec:e0:ad:b5:af:13:99:e1:a7:60:27:fc:d9:bc:a3:
b7:c8:10:50:4c:12:ce:5a:01:d9:16:f7:11:82:2d:
28:c8:f8:53:59:71:38:58:fb:df:a1:e8:68:f5:95:
4f:20:c8:ce:2b:03:71:60:84:79:f8:78:a1:c1:7d:
38:a6:8e:23:12:21:a6:6c:b1:77:1b:34:db:28:21:
45:ee:64:b4:f3:14:c4:0b:07:fd:5b:6c:72:e9:73:
98:a8:a6:f3:b5:00:56:a8:0f:a3:2f:4e:30:de:1a:
0d:42:d6:eb:36:f6:38:72:07:c6:98:38:51:5e:06:
c8:5d:4b:44:dd:41:73:e8:7d:e8:6d:ba:bb:34:92:
54:a8:34:08:e2:70:38:ff:3c:8a:b0:75:f4:b7:af:
5a:fd:a4:2b:3a:00:87:07:ca:ff:56:cf:a2:04:0a:
60:35:6a:15:28:f6:11:22:eb:21:41:41:45:05:f3:
7d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:79:75:11:75:2B:5E:93:97:A2:7D:73:57:B8:8F:D3:A9:F3:46:FA
X509v3 Authority Key Identifier:
keyid:49:E4:4E:EE:A2:65:69:D0:DD:BD:0E:86:37:F1:2C:F5:05:A4:ED:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeRO7qJladDdvQ6GN_Es9QWk7ek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/c3dc1b-d1ee-4ff2-a5aa-f0c4be8e240a/1/UXl1EXUrXpOXon1zV7iP06nzRvo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/c3dc1b-d1ee-4ff2-a5aa-f0c4be8e240a/1/SeRO7qJladDdvQ6GN_Es9QWk7ek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.213.64.0/21
185.16.252.0/22
193.105.186.0/24
194.5.88.0/23
195.234.36.0/24
IPv6:
2a03:6f80::-2a03:6f82:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
7f:f5:64:f5:8c:8c:96:7a:ee:90:e4:93:fb:aa:a3:f6:43:23:
81:d6:7e:37:68:93:5c:46:e2:8b:51:f3:96:0c:9a:b1:99:bc:
76:2f:b9:cd:6b:dd:82:52:c9:4e:93:be:10:b0:06:37:ba:a3:
65:38:c7:ae:10:18:d3:74:98:ef:10:0a:56:ff:fd:44:ae:d2:
59:09:fa:44:36:5d:c8:51:3d:19:15:23:93:cb:53:c6:c2:f5:
86:df:4e:35:64:ec:58:28:33:11:43:c6:0b:76:89:30:47:17:
c4:c1:73:d0:e2:d3:cf:d1:73:e2:b2:ad:bd:75:89:cf:8d:20:
ab:12:96:49:c0:42:48:53:17:ab:95:4b:d2:96:c1:7b:81:84:
05:6f:94:a3:1c:ec:93:5e:78:db:62:44:a4:14:9f:bd:6d:fa:
8b:3c:3c:4d:c8:54:d6:af:61:ac:bc:c2:53:ad:08:74:ca:03:
8b:59:f5:4b:5d:c0:72:8d:b6:51:41:4b:67:de:d9:f2:77:23:
2e:5f:d6:5a:e4:8d:d2:67:d9:a7:18:37:14:1f:08:43:1c:f2:
c6:29:8d:e4:46:a1:9c:61:61:9e:53:a1:09:e2:38:4d:e4:89:
34:8c:e5:2b:3b:43:d5:69:a2:5a:81:d4:d3:44:0d:89:55:4b:
03:b8:15:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:33:18 2025 by rpki-client