Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/03731d-4ab0-4981-8a3a-23c47e9535e7/1/AepZrmV95msCOU8ADkSpMC9tZ64.roa
File: AepZrmV95msCOU8ADkSpMC9tZ64.roa (raw, json)
Hash identifier: ngqP81c4FreDYiApy8tC9+N+GMPq9fci2EGX0hBq1vY=
Subject key identifier: 01:EA:59:AE:65:7D:E6:6B:02:39:4F:00:0E:44:A9:30:2F:6D:67:AE
Certificate issuer: /CN=7c772e1e26e6c23f40ad6668c85fe950da1063fc
Certificate serial: 01856F26C403F37E9B7E3D6641F64384AFD5
Authority key identifier: 7C:77:2E:1E:26:E6:C2:3F:40:AD:66:68:C8:5F:E9:50:DA:10:63:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fHcuHibmwj9ArWZoyF_pUNoQY_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/03731d-4ab0-4981-8a3a-23c47e9535e7/1/AepZrmV95msCOU8ADkSpMC9tZ64.roa
Signing time: Sun 01 Jan 2023 21:04:49 +0000
ROA not before: Sun 01 Jan 2023 21:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51301
IP address blocks: 185.135.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:c4:03:f3:7e:9b:7e:3d:66:41:f6:43:84:af:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c772e1e26e6c23f40ad6668c85fe950da1063fc
Validity
Not Before: Jan 1 21:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=01ea59ae657de66b02394f000e44a9302f6d67ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:78:27:22:e8:b9:ac:9b:44:8f:37:d1:31:7c:
68:a1:46:7f:a3:48:3d:78:36:12:f9:98:55:e3:3c:
bc:6d:90:9a:c2:a8:9a:37:62:d6:65:88:d6:3a:ff:
02:be:29:d1:e2:b3:81:f2:ba:1e:5d:02:84:74:68:
df:f4:cd:04:1b:57:20:05:71:b4:bf:c6:db:ee:69:
ae:8d:2e:7a:80:f8:4d:0c:5a:20:83:bd:a1:e7:d0:
33:eb:b7:13:8f:f5:58:0b:8a:06:47:67:23:3f:41:
a2:6c:dd:ea:d0:91:1d:41:aa:f4:a2:8c:7d:38:84:
17:94:1f:46:bb:a5:44:be:1a:05:5c:d1:e1:50:66:
0c:d5:8d:79:4a:01:be:c0:b5:b8:5b:bc:9e:ca:85:
0d:48:aa:6d:35:82:48:3e:eb:e4:31:1c:3a:f4:d7:
b1:8a:70:1c:b2:d1:89:f6:d8:61:3f:63:b8:0d:e7:
fe:e2:31:b4:26:ff:27:a1:ea:04:5f:3b:52:db:0c:
65:01:c8:4c:6d:d3:00:16:92:65:e9:f8:e6:86:2f:
e7:99:eb:7c:e3:95:cd:56:ac:29:9c:61:f1:9a:5f:
80:16:a1:de:47:b3:c9:1c:63:b2:2b:8d:34:37:04:
c8:79:1e:77:fe:3c:55:d3:f8:db:13:ec:00:34:e5:
9e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:EA:59:AE:65:7D:E6:6B:02:39:4F:00:0E:44:A9:30:2F:6D:67:AE
X509v3 Authority Key Identifier:
keyid:7C:77:2E:1E:26:E6:C2:3F:40:AD:66:68:C8:5F:E9:50:DA:10:63:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fHcuHibmwj9ArWZoyF_pUNoQY_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/03731d-4ab0-4981-8a3a-23c47e9535e7/1/AepZrmV95msCOU8ADkSpMC9tZ64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/03731d-4ab0-4981-8a3a-23c47e9535e7/1/fHcuHibmwj9ArWZoyF_pUNoQY_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.135.188.0/24
Signature Algorithm: sha256WithRSAEncryption
10:71:80:11:12:b4:85:82:d1:31:4d:5b:89:5f:60:bd:ad:f4:
56:e1:8e:5a:40:87:35:3d:b5:7e:4f:fd:ae:82:be:84:d7:c1:
e3:95:5e:51:0a:14:3c:4a:67:7f:c7:ea:4c:07:71:f6:59:78:
cf:02:7e:f6:e9:51:a9:18:ed:1e:59:15:25:36:2b:af:59:80:
f4:77:e0:cc:14:2d:8d:b6:2b:3a:13:de:3f:33:15:e0:57:83:
d0:70:41:f3:28:60:9d:bf:ce:a9:00:2d:21:fb:cd:91:46:2e:
1b:d8:74:c8:7f:83:2e:f6:76:09:ac:92:7e:04:c8:22:7b:72:
39:e1:17:66:b1:06:15:dd:26:7c:41:c4:a2:ee:d7:c6:6e:65:
ec:a3:23:5a:9d:aa:dd:22:43:10:bc:3b:89:9b:ca:8d:2c:81:
39:a6:cb:29:30:e4:fc:0e:31:a4:d6:03:eb:d0:c9:2c:54:c9:
90:5b:d8:4c:c1:b9:a3:52:26:c2:8d:e2:76:76:90:17:c3:78:
9f:ec:25:cf:5d:eb:53:00:35:4c:16:87:09:62:10:79:31:de:
02:63:e4:46:d2:6d:54:1d:9a:42:47:b4:a5:44:e3:30:7b:c8:
71:a7:0e:9f:a2:c3:ea:45:37:98:30:57:69:5a:47:72:d9:4a:
3a:5c:7f:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 05:43:19 2025 by rpki-client