Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/n8vjF8i8W72iiK00t9AlAaYXfGo.roa
File: n8vjF8i8W72iiK00t9AlAaYXfGo.roa (raw, json)
Hash identifier: zD+UKkgoDRp7FJGYh/so/S69BfTjk51nsTKK+YjEnsY=
Subject key identifier: 9F:CB:E3:17:C8:BC:5B:BD:A2:88:AD:34:B7:D0:25:01:A6:17:7C:6A
Certificate issuer: /CN=1eabd765a05052fec59a6a273d5ef4bfc7a4035a
Certificate serial: 18BC196A
Authority key identifier: 1E:AB:D7:65:A0:50:52:FE:C5:9A:6A:27:3D:5E:F4:BF:C7:A4:03:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqvXZaBQUv7FmmonPV70v8ekA1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/n8vjF8i8W72iiK00t9AlAaYXfGo.roa
Signing time: Sat 01 Jan 2022 00:55:12 +0000
ROA not before: Sat 01 Jan 2022 00:55:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62357
IP address blocks: 185.39.184.0/22 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 414980458 (0x18bc196a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eabd765a05052fec59a6a273d5ef4bfc7a4035a
Validity
Not Before: Jan 1 00:55:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9fcbe317c8bc5bbda288ad34b7d02501a6177c6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c7:1b:66:57:38:0e:c3:92:c1:4e:68:57:10:
c1:9b:ab:61:97:ff:62:74:13:ff:e3:42:5b:3e:1b:
a0:7b:49:da:7c:49:db:b8:e3:61:df:ac:55:7a:c7:
d6:51:bd:d6:72:75:99:cc:10:4d:c3:f5:cf:87:dc:
4a:27:a1:15:93:04:42:3a:23:94:50:cd:3c:11:0e:
00:7d:39:65:45:a6:1e:c1:05:cf:da:8b:c0:96:c2:
f6:14:d5:d3:ec:5f:b9:a6:b4:90:df:79:5f:45:aa:
c4:a5:06:d4:34:a8:9d:e0:90:9c:f8:39:08:0a:f6:
01:ff:9b:1c:ad:21:58:70:19:5d:65:eb:6c:2a:24:
59:fa:17:d2:4e:11:4e:93:07:52:d6:43:88:1f:b9:
81:59:1b:61:1a:66:bb:ae:9e:33:67:50:85:14:3d:
07:68:35:d5:86:8c:68:1f:ac:0b:8c:d0:95:35:83:
db:68:3f:f4:dc:26:88:88:1e:ca:c8:2e:d5:c3:0a:
a8:e3:db:11:cd:f4:58:dc:f1:c4:39:6a:43:7e:ae:
92:fc:62:1b:d6:41:1d:a6:39:c5:a2:10:15:e2:98:
b2:85:68:68:11:91:34:d8:c1:ca:bf:42:3b:ea:38:
bf:47:f7:d9:e2:0b:1f:d9:99:15:a6:b0:b7:1f:9e:
c0:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:CB:E3:17:C8:BC:5B:BD:A2:88:AD:34:B7:D0:25:01:A6:17:7C:6A
X509v3 Authority Key Identifier:
keyid:1E:AB:D7:65:A0:50:52:FE:C5:9A:6A:27:3D:5E:F4:BF:C7:A4:03:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqvXZaBQUv7FmmonPV70v8ekA1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/n8vjF8i8W72iiK00t9AlAaYXfGo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.39.184.0/22
Signature Algorithm: sha256WithRSAEncryption
44:ac:55:3b:fc:1c:18:e6:d6:7a:53:e8:bb:ef:6b:a8:e3:d9:
73:c1:9a:84:d5:92:fc:bd:c2:a5:53:75:5c:6c:0c:d3:16:89:
f8:fa:09:28:36:ff:a6:05:d7:6d:a1:41:21:c4:61:98:26:d5:
af:4a:25:46:5f:5c:0e:48:85:22:46:1f:b7:ed:b4:16:84:53:
fd:bc:aa:f2:62:9d:7f:9a:43:cb:3b:f0:68:0f:8f:e9:9f:69:
77:2f:4f:f4:69:1b:64:06:2b:9b:9a:d9:bf:6b:63:b6:ce:70:
cf:c3:10:bb:75:46:d6:e3:ae:bb:ee:41:94:43:c2:57:bf:ea:
74:fe:32:51:84:10:ec:0a:35:0e:16:55:77:1c:be:a5:15:67:
0f:6c:77:09:d9:5b:f2:27:fb:a5:5c:2c:71:4f:48:e3:24:4a:
12:d0:5f:28:3b:2c:c1:bd:a3:d5:25:81:fa:2e:23:0a:3b:1e:
be:98:43:d5:a8:58:69:47:ed:88:67:7d:7f:1e:f7:ed:8a:8f:
4f:06:9d:95:b6:16:98:83:c1:aa:1b:99:9e:19:2b:3e:2a:f8:
be:21:f6:a6:57:f6:94:6c:0e:75:fa:aa:2e:69:ed:a7:77:2b:
80:d3:ab:eb:9b:3c:d4:26:e3:a6:28:b5:14:f0:7a:92:35:88:
79:31:0c:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 22:42:41 2025 by rpki-client