Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/bb9947-172c-48b1-be8e-4c905adbf076/1/_Ue-l3E0YQCZCq6pq9Cb8ZvECd4.roa
File: _Ue-l3E0YQCZCq6pq9Cb8ZvECd4.roa (raw, json)
Hash identifier: Bw6qJuZ1iJNJatvv+ZZL7Vv4sRHYTzD2VPfpGkY/xVs=
Subject key identifier: FD:47:BE:97:71:34:61:00:99:0A:AE:A9:AB:D0:9B:F1:9B:C4:09:DE
Certificate issuer: /CN=4345d0773c7ade08d44819e3b611bd297a3989d3
Certificate serial: 04AF3EB9
Authority key identifier: 43:45:D0:77:3C:7A:DE:08:D4:48:19:E3:B6:11:BD:29:7A:39:89:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q0XQdzx63gjUSBnjthG9KXo5idM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/bb9947-172c-48b1-be8e-4c905adbf076/1/_Ue-l3E0YQCZCq6pq9Cb8ZvECd4.roa
Signing time: Mon 18 Apr 2022 02:04:42 +0000
ROA not before: Mon 18 Apr 2022 02:04:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204883
IP address blocks: 185.237.208.0/24 maxlen: 24
185.237.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78593721 (0x4af3eb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4345d0773c7ade08d44819e3b611bd297a3989d3
Validity
Not Before: Apr 18 02:04:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd47be9771346100990aaea9abd09bf19bc409de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ba:a8:64:b1:f3:c6:79:61:e0:6e:7a:23:5a:
18:d2:de:08:4b:3e:79:c1:e8:a5:ee:87:2c:71:64:
80:95:e8:c8:03:51:b7:b3:8f:59:8a:86:84:0d:94:
a7:38:95:58:36:e5:2c:ee:0e:6b:37:65:7b:64:1c:
08:8d:e1:64:ff:d6:a9:4f:b1:4b:33:28:30:54:a1:
13:76:1e:72:cb:02:57:8e:eb:71:93:4b:bc:6a:fc:
12:0f:ad:f1:d1:b4:ba:95:9d:ca:6e:29:38:54:18:
76:5e:85:40:6e:4f:c8:f1:d7:1a:40:46:c0:b9:20:
a7:9a:f7:4a:b1:96:67:41:72:26:f2:7f:ea:f1:4a:
c1:e2:e4:a2:7a:0c:a5:46:7a:48:e9:91:ae:3d:40:
0c:25:2d:78:bf:bb:92:4a:b3:2f:19:ee:4e:cb:b1:
62:9d:b5:07:3b:e4:00:cf:bb:e2:bd:5d:8a:d0:a6:
8c:bf:21:38:65:c0:41:df:45:98:ff:28:3b:3a:a6:
ef:02:82:0f:f8:b4:52:24:dd:88:30:b6:3a:88:f6:
ba:f5:84:0d:9a:ee:37:12:ce:30:fc:21:95:a6:79:
18:a6:eb:54:27:e3:5b:a8:f1:01:dc:db:6d:59:4b:
a1:bc:18:b4:7e:c4:cb:84:e1:6d:3f:fc:bf:0e:0a:
43:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:47:BE:97:71:34:61:00:99:0A:AE:A9:AB:D0:9B:F1:9B:C4:09:DE
X509v3 Authority Key Identifier:
keyid:43:45:D0:77:3C:7A:DE:08:D4:48:19:E3:B6:11:BD:29:7A:39:89:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q0XQdzx63gjUSBnjthG9KXo5idM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/bb9947-172c-48b1-be8e-4c905adbf076/1/_Ue-l3E0YQCZCq6pq9Cb8ZvECd4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/bb9947-172c-48b1-be8e-4c905adbf076/1/Q0XQdzx63gjUSBnjthG9KXo5idM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.237.208.0/23
Signature Algorithm: sha256WithRSAEncryption
74:df:57:49:7c:75:dd:b8:16:0e:e0:98:29:5e:67:78:ed:94:
78:bc:4a:e6:3d:94:41:ec:86:fd:95:76:2b:74:3c:86:f2:b7:
45:e2:95:09:a5:41:2c:cb:77:9f:8a:59:ea:65:12:14:b5:cd:
0f:db:cb:3e:aa:77:dc:7f:9e:10:36:8b:90:bf:95:71:b1:0f:
73:08:2e:90:fc:db:3d:29:a1:33:68:a3:3d:b5:98:bb:10:2a:
92:83:20:c9:64:79:aa:9e:f6:27:5e:d8:7e:c2:e9:be:99:fe:
86:e0:a7:9a:25:41:13:31:36:98:cf:b1:14:25:46:76:34:fc:
28:24:42:f1:b0:a3:19:6c:be:81:3d:eb:37:2d:06:44:19:a6:
9d:0a:76:e4:75:a5:7d:ab:85:c9:5a:06:9f:59:16:8f:04:3c:
ae:9c:c3:7a:5b:a8:95:44:a4:64:29:fc:05:d8:01:7a:ea:3e:
d1:a8:9c:c2:8c:e5:00:87:b7:44:8c:6b:f5:e5:0c:e2:9e:3f:
a2:46:ad:b2:c3:75:93:ab:a7:ec:a8:2a:84:bf:c0:22:f9:81:
13:66:2e:0d:ed:05:d4:a6:14:96:22:ce:cd:c0:d5:4f:42:68:
c4:03:3b:24:2a:27:85:86:44:3b:67:99:b2:68:cd:ad:27:2b:
22:40:c7:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 00:53:49 2025 by rpki-client