Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/e6fd0d-a02b-49c2-9a2c-4dc2dd56d57f/1/DP7OWy75NVrm0e-0CZoPrKgEmwo.roa
File: DP7OWy75NVrm0e-0CZoPrKgEmwo.roa (raw, json)
Hash identifier: uXvCNmiJdjsNBXtAPQ266k2wLiLgiKQhEpBoWkQzy1g=
Subject key identifier: 0C:FE:CE:5B:2E:F9:35:5A:E6:D1:EF:B4:09:9A:0F:AC:A8:04:9B:0A
Certificate issuer: /CN=7b018d2a51fef2d76c62600556c66d57cb7e9270
Certificate serial: 018C79AA331FE0E675C13D4402CECA2FA975
Authority key identifier: 7B:01:8D:2A:51:FE:F2:D7:6C:62:60:05:56:C6:6D:57:CB:7E:92:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ewGNKlH-8tdsYmAFVsZtV8t-knA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/e6fd0d-a02b-49c2-9a2c-4dc2dd56d57f/1/DP7OWy75NVrm0e-0CZoPrKgEmwo.roa
Signing time: Sun 17 Dec 2023 21:24:06 +0000
ROA not before: Sun 17 Dec 2023 21:24:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201596
IP address blocks: 185.47.248.0/22 maxlen: 24
185.58.136.0/22 maxlen: 24
141.195.32.0/19 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:79:aa:33:1f:e0:e6:75:c1:3d:44:02:ce:ca:2f:a9:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b018d2a51fef2d76c62600556c66d57cb7e9270
Validity
Not Before: Dec 17 21:24:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0cfece5b2ef9355ae6d1efb4099a0faca8049b0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:22:99:b7:a0:4a:fc:c6:8f:35:4c:08:b4:05:
f0:18:54:bb:1b:2c:f3:58:98:9d:16:80:81:b1:c2:
cd:bd:7c:1b:07:d1:0c:dc:50:bf:db:4c:92:85:11:
e1:6b:aa:e2:a7:e1:c2:06:b4:05:ca:92:62:b9:0b:
95:21:02:0a:87:06:4e:dc:e8:50:12:2f:45:5c:f3:
e4:d7:7a:58:76:40:ca:94:cd:13:73:78:c8:00:51:
c0:2a:42:c8:6e:3d:e6:73:11:d5:3f:57:c4:3c:4e:
9a:63:c5:95:7a:ce:27:19:3e:28:f7:57:d6:73:91:
0a:ef:83:d1:2d:ee:e3:d9:02:08:ea:3d:70:4a:cd:
3d:b4:13:e6:ab:45:66:2d:e6:50:4e:6b:f7:e7:16:
47:f7:fe:c2:cd:69:bc:f5:1e:2d:bd:7e:ee:ad:63:
5f:9a:66:87:65:3c:9d:98:7f:de:5f:20:dc:88:67:
57:bc:77:f7:7a:d6:91:b7:74:eb:09:dc:32:34:2d:
29:0b:51:ee:80:c7:a7:09:0e:1f:80:48:8d:25:1b:
00:13:7f:93:74:78:8b:75:81:e6:da:ee:ef:de:87:
b8:c2:0e:d9:d6:90:fa:ae:5a:09:2f:9e:67:f3:fa:
83:f1:62:e9:80:79:8f:f3:ee:f9:27:8f:ab:6b:cc:
3e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:FE:CE:5B:2E:F9:35:5A:E6:D1:EF:B4:09:9A:0F:AC:A8:04:9B:0A
X509v3 Authority Key Identifier:
keyid:7B:01:8D:2A:51:FE:F2:D7:6C:62:60:05:56:C6:6D:57:CB:7E:92:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ewGNKlH-8tdsYmAFVsZtV8t-knA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e6fd0d-a02b-49c2-9a2c-4dc2dd56d57f/1/DP7OWy75NVrm0e-0CZoPrKgEmwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e6fd0d-a02b-49c2-9a2c-4dc2dd56d57f/1/ewGNKlH-8tdsYmAFVsZtV8t-knA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.195.32.0/19
185.47.248.0/22
185.58.136.0/22
Signature Algorithm: sha256WithRSAEncryption
b8:ad:db:a4:df:4c:09:fc:d0:f4:8e:c5:b5:98:55:e0:cd:74:
f7:cd:a7:ea:ce:de:d8:7e:bf:4c:5f:2e:7b:09:ee:57:06:2f:
4f:3d:23:1e:8b:d1:ca:e9:00:e3:bb:b6:c6:9a:74:fa:b2:1c:
4c:6a:5c:cc:d4:dd:2b:39:d7:f9:cd:9a:4b:72:e7:45:f6:07:
84:fb:ce:ea:d2:74:fb:a1:89:b6:a3:45:3a:fa:93:57:15:8d:
61:e7:17:72:5e:97:0b:bc:d8:33:8f:f2:84:5a:72:16:a5:ef:
8b:e6:68:51:4e:83:63:5a:4b:c3:ec:84:85:7f:5c:3a:d3:1d:
d2:30:fb:7c:6f:23:50:1e:82:08:31:ac:cb:11:bc:80:0a:13:
bc:e9:11:b8:79:3b:1d:d4:1b:8f:da:41:14:6b:3b:6f:a0:17:
bf:75:1e:ec:ad:b8:02:c0:ed:57:e0:6b:2a:8f:11:6d:0b:a6:
31:e0:ba:cf:16:47:16:23:8e:4a:0e:bf:ba:a3:7e:5b:f6:3e:
13:93:bf:73:d6:17:e1:68:01:fb:96:23:fa:31:c6:0f:83:ce:
2f:33:e8:6e:99:c1:90:0d:0a:ff:df:f6:5f:37:cd:f2:e2:3f:
3a:58:97:89:d2:7c:f8:89:c9:a5:5c:f5:cb:1a:07:c3:9b:ee:
43:a2:50:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:45:02 2025 by rpki-client