Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/2cf88f-2c6a-4b48-a25e-4a8b6b4082b1/1/cO8UQfsGEnQIEU0bHYBd6lXqFKc.roa
File: cO8UQfsGEnQIEU0bHYBd6lXqFKc.roa (raw, json)
Hash identifier: gq2Xs1fM92I8nzirH2uRMwq4sEElXTp+GdrOXUR8Fg4=
Subject key identifier: 70:EF:14:41:FB:06:12:74:08:11:4D:1B:1D:80:5D:EA:55:EA:14:A7
Certificate issuer: /CN=039b01353e51a3a87e835963bd8833ed81853d77
Certificate serial: 12E7EFF8
Authority key identifier: 03:9B:01:35:3E:51:A3:A8:7E:83:59:63:BD:88:33:ED:81:85:3D:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A5sBNT5Ro6h-g1ljvYgz7YGFPXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/2cf88f-2c6a-4b48-a25e-4a8b6b4082b1/1/cO8UQfsGEnQIEU0bHYBd6lXqFKc.roa
Signing time: Wed 09 Feb 2022 15:10:57 +0000
ROA not before: Wed 09 Feb 2022 15:10:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24586
IP address blocks: 185.138.80.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 317190136 (0x12e7eff8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=039b01353e51a3a87e835963bd8833ed81853d77
Validity
Not Before: Feb 9 15:10:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70ef1441fb06127408114d1b1d805dea55ea14a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6c:fd:e5:ab:1c:2c:99:a2:09:41:db:0b:ea:
50:f6:ee:82:08:39:24:f8:02:c0:ea:54:85:0d:30:
ce:76:22:ae:1c:55:ab:88:8b:de:f5:35:8f:4b:9a:
b6:cb:aa:c4:48:10:08:dc:74:a8:13:d9:16:41:8e:
84:8f:90:ff:82:d4:74:99:9b:88:f0:6d:4b:08:c0:
05:ca:f7:fb:7f:e5:ea:a7:27:0e:f1:75:c6:de:fd:
3c:0d:c8:8e:e5:e6:59:21:ff:ba:8a:fc:b6:67:2c:
23:e8:e0:f2:49:16:5a:0f:79:1b:dc:ff:4b:2a:79:
31:ba:ee:92:18:52:c2:19:19:ef:06:5f:38:b0:33:
e8:a3:69:ea:7b:e7:7d:7b:c7:ef:77:f9:c6:e4:d2:
c2:97:6d:aa:62:db:85:60:0e:de:bf:46:de:77:41:
3b:fe:17:a8:ed:2f:f0:ed:3c:d3:5a:8c:54:77:02:
2b:09:c4:2b:06:36:30:4e:c9:71:c7:54:4d:ac:a0:
39:1b:46:de:08:12:b2:98:40:4f:51:cb:a5:97:1a:
fb:ba:3e:cb:0c:0b:fa:74:01:b1:75:55:19:27:6b:
0e:84:41:63:ce:09:09:be:69:8e:d7:26:45:90:70:
02:f4:1c:6f:15:d9:be:e1:a6:ff:bd:60:1a:bd:56:
c7:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:EF:14:41:FB:06:12:74:08:11:4D:1B:1D:80:5D:EA:55:EA:14:A7
X509v3 Authority Key Identifier:
keyid:03:9B:01:35:3E:51:A3:A8:7E:83:59:63:BD:88:33:ED:81:85:3D:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A5sBNT5Ro6h-g1ljvYgz7YGFPXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/2cf88f-2c6a-4b48-a25e-4a8b6b4082b1/1/cO8UQfsGEnQIEU0bHYBd6lXqFKc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/2cf88f-2c6a-4b48-a25e-4a8b6b4082b1/1/A5sBNT5Ro6h-g1ljvYgz7YGFPXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.80.0/22
Signature Algorithm: sha256WithRSAEncryption
a8:c7:30:fd:ed:b3:29:14:bf:ea:4d:1d:98:02:a4:da:e9:9f:
0e:f0:87:8c:22:94:a0:05:4f:2c:c5:d5:95:83:b3:99:65:18:
96:62:f5:bb:51:7e:b4:eb:5c:08:2f:a3:a4:6a:12:6f:a0:a3:
49:79:0f:8c:db:eb:26:6b:26:e5:8a:57:a4:72:c8:32:51:a9:
8f:7e:de:0d:53:00:28:54:05:c5:40:30:8e:6c:9a:eb:41:0d:
a7:f9:a9:4a:f4:f1:5f:7b:c6:4e:0c:54:ad:07:3e:67:28:e0:
37:46:c2:46:6c:e6:65:53:11:1c:b2:f8:14:5f:b1:43:de:49:
d5:24:ff:d6:f6:67:e4:c6:62:cb:44:c5:64:c6:ab:97:52:f1:
cb:78:85:c3:f4:cc:8f:b6:4e:a8:b2:3e:fc:f3:9d:c2:ad:fb:
82:19:86:b3:0b:ea:e8:bf:3b:ff:d6:ed:99:48:6d:d3:d7:7f:
e0:93:76:65:c2:e5:e9:d2:dd:81:31:5a:23:ac:ee:9c:c0:af:
f3:60:bc:9a:ab:de:27:76:e7:aa:f7:11:91:2a:d4:fd:78:c5:
66:5f:78:e0:42:55:bc:74:99:2c:b9:db:b6:ba:40:40:0c:93:
f0:33:54:d8:a3:e7:29:07:4b:23:1a:b7:4e:48:96:27:f1:b7:
3b:55:17:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:23:52 2025 by rpki-client