Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/gvftWsIrazgzoeUSFxFQZWSrJX4.roa
File: gvftWsIrazgzoeUSFxFQZWSrJX4.roa (raw, json)
Hash identifier: 1wh45xlRpJyVS+soWNfhgaS0GcqW06rGIHPfx40iiCA=
Subject key identifier: 82:F7:ED:5A:C2:2B:6B:38:33:A1:E5:12:17:11:50:65:64:AB:25:7E
Certificate issuer: /CN=835bc9bb547e27788d221bc8bbd5fb02e024480f
Certificate serial: 10A1D097
Authority key identifier: 83:5B:C9:BB:54:7E:27:78:8D:22:1B:C8:BB:D5:FB:02:E0:24:48:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g1vJu1R-J3iNIhvIu9X7AuAkSA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/gvftWsIrazgzoeUSFxFQZWSrJX4.roa
Signing time: Sat 01 Jan 2022 13:59:26 +0000
ROA not before: Sat 01 Jan 2022 13:59:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200639
IP address blocks: 185.186.10.0/24 maxlen: 24
185.186.9.0/24 maxlen: 24
2a0b:6b84::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 279040151 (0x10a1d097)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=835bc9bb547e27788d221bc8bbd5fb02e024480f
Validity
Not Before: Jan 1 13:59:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82f7ed5ac22b6b3833a1e5121711506564ab257e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:40:67:21:52:95:45:93:5d:8d:ad:58:c9:1e:
b9:9e:e3:e1:cd:40:fd:05:88:2d:b4:88:b0:40:05:
5d:2c:2a:51:0e:8f:92:7d:0f:20:2e:19:13:b8:d8:
b1:b5:bd:6e:ce:44:7e:07:99:5d:cb:21:b3:05:8f:
24:ab:0b:0b:c2:60:56:f6:3c:80:7a:59:f8:cd:41:
0a:e2:2d:f3:71:07:9d:c3:31:cf:44:48:3d:d4:3a:
fa:42:30:c1:1d:c0:f0:eb:00:db:db:60:d9:7e:fb:
de:4e:9b:0b:e2:c5:5d:8e:11:6a:db:b1:86:16:72:
7b:36:82:ad:ba:f5:45:d2:75:db:bb:bc:14:87:be:
99:0f:a6:cb:11:6f:9d:8b:25:28:72:0b:c7:28:f3:
48:2a:1b:24:70:b6:6b:32:33:fd:fd:8a:e0:a1:5e:
e8:6f:c7:53:29:ae:76:ec:84:b4:fc:57:af:ee:3a:
94:4f:6c:37:b3:1c:a2:71:dd:5b:97:e1:c9:a2:d9:
bf:5e:07:12:2c:53:8c:6a:65:7c:4e:b7:26:e8:ee:
51:e5:3c:27:6f:99:e1:f2:d3:23:4c:b5:1a:fe:4a:
07:f9:24:1e:f2:b6:bf:d8:4b:ee:51:6e:63:c5:d5:
61:ec:70:25:fb:9a:c4:b5:ee:4c:22:d9:d7:7d:47:
b0:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:F7:ED:5A:C2:2B:6B:38:33:A1:E5:12:17:11:50:65:64:AB:25:7E
X509v3 Authority Key Identifier:
keyid:83:5B:C9:BB:54:7E:27:78:8D:22:1B:C8:BB:D5:FB:02:E0:24:48:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g1vJu1R-J3iNIhvIu9X7AuAkSA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/gvftWsIrazgzoeUSFxFQZWSrJX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/g1vJu1R-J3iNIhvIu9X7AuAkSA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.9.0-185.186.10.255
IPv6:
2a0b:6b84::/32
Signature Algorithm: sha256WithRSAEncryption
90:e2:0d:7c:8f:ab:e6:4b:62:7e:c9:3f:07:1f:51:e0:01:cf:
0d:e7:f4:71:5c:b5:b0:a1:e0:b3:38:c9:ea:4d:d6:26:18:ab:
74:47:96:ed:43:70:d6:e4:31:2d:e2:69:af:4a:89:c6:d8:65:
cb:b0:cc:8e:8a:2b:39:58:7d:25:f8:f0:66:ef:04:36:c9:96:
d6:b1:d9:94:ba:00:4a:eb:7c:0f:ef:a0:ed:df:94:1b:3e:e0:
18:ce:94:f6:0c:eb:9a:62:09:fb:6c:84:83:16:24:eb:93:cc:
69:49:c0:ba:2c:a7:50:b7:0f:f5:be:fb:38:6f:25:df:7f:9c:
80:e0:dc:86:d0:b0:4a:91:1d:c8:37:f3:f5:d1:6d:21:19:ed:
03:57:85:7f:98:ed:0d:ce:46:c4:a0:6c:04:29:e5:80:d3:bd:
32:cb:48:9a:0e:af:8a:11:ee:29:88:41:f2:5e:77:ad:d7:6a:
f5:65:65:5a:28:35:5c:15:b0:cb:31:f8:42:22:f7:eb:6c:76:
8b:27:35:c4:cf:cc:50:51:4a:4d:df:c6:7f:60:0e:1b:82:e0:
2c:ac:0d:c7:e9:35:44:e6:e3:63:32:f5:ae:b0:34:69:47:b5:
61:2a:bb:1e:77:7f:09:57:f6:5b:fc:12:78:04:63:7a:e2:1d:
31:f1:4b:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:33:32 2025 by rpki-client