Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/7GDFPs0bu9T_nOWf6_HTzJrseqA.roa
File: 7GDFPs0bu9T_nOWf6_HTzJrseqA.roa (raw, json)
Hash identifier: qdggdnXaTM9h0X9VaLvTzchq9MOge1lBDqFD2CXcHCs=
Subject key identifier: EC:60:C5:3E:CD:1B:BB:D4:FF:9C:E5:9F:EB:F1:D3:CC:9A:EC:7A:A0
Certificate issuer: /CN=397d9f3dbfc365332e282bd176a68075446d1d1b
Certificate serial: 01AD4F36
Authority key identifier: 39:7D:9F:3D:BF:C3:65:33:2E:28:2B:D1:76:A6:80:75:44:6D:1D:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OX2fPb_DZTMuKCvRdqaAdURtHRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/7GDFPs0bu9T_nOWf6_HTzJrseqA.roa
Signing time: Tue 01 Feb 2022 16:21:06 +0000
ROA not before: Tue 01 Feb 2022 16:21:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210172
IP address blocks: 185.218.104.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28135222 (0x1ad4f36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=397d9f3dbfc365332e282bd176a68075446d1d1b
Validity
Not Before: Feb 1 16:21:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec60c53ecd1bbbd4ff9ce59febf1d3cc9aec7aa0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:1c:47:e0:99:06:16:df:9a:f8:2c:45:61:39:
c3:ea:18:b6:e7:09:b6:f8:bf:7a:f6:a5:a1:56:cd:
66:86:8a:ab:80:6d:5d:1e:f9:4f:b6:09:74:d0:dc:
3f:de:a2:91:81:26:0d:e6:9e:d2:51:2f:82:c5:b9:
9a:50:ca:20:43:5a:64:e2:73:9f:b3:58:4e:09:47:
94:2d:1d:76:6f:d8:60:01:b8:fa:93:c8:af:7f:39:
c9:b1:2c:21:99:91:f3:a3:3c:0f:72:3c:34:dd:b7:
99:e1:a3:81:73:ae:94:f9:7f:2e:77:5d:d8:6b:ec:
6b:9e:2a:85:05:2a:b6:ed:8e:5c:d2:e7:b3:d8:94:
bb:a7:67:fd:a7:55:38:d1:83:9d:7e:7a:0f:91:3f:
88:14:bf:c0:78:a3:33:14:8e:61:72:7f:9a:47:70:
37:b5:3e:70:58:3c:41:81:1a:c8:79:a0:5c:b4:14:
47:ac:a6:05:9b:f2:fd:76:b2:6e:31:b5:08:0e:7d:
29:f1:84:bb:5b:70:d3:c5:f6:73:11:6f:09:bc:48:
16:af:a5:a6:f2:e3:d7:0c:1b:25:df:65:b6:96:6a:
6d:0b:3f:88:ea:8f:dc:77:14:ea:50:de:a5:cd:c2:
be:7f:ad:9c:7e:1f:e1:bd:67:d0:8f:0b:27:75:e6:
13:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:60:C5:3E:CD:1B:BB:D4:FF:9C:E5:9F:EB:F1:D3:CC:9A:EC:7A:A0
X509v3 Authority Key Identifier:
keyid:39:7D:9F:3D:BF:C3:65:33:2E:28:2B:D1:76:A6:80:75:44:6D:1D:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OX2fPb_DZTMuKCvRdqaAdURtHRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/7GDFPs0bu9T_nOWf6_HTzJrseqA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.104.0/24
Signature Algorithm: sha256WithRSAEncryption
37:b0:ff:68:20:17:a1:12:4f:00:d9:93:51:34:fd:15:f1:9b:
98:5a:d8:2f:f1:95:47:cb:1e:b7:a0:d0:3f:3d:74:28:74:0e:
e8:98:3a:04:00:e0:fd:68:ee:e2:6f:c5:5b:46:11:2d:8b:2c:
44:04:86:6f:09:bd:83:f0:51:e1:c4:fb:9e:7f:04:17:c4:05:
08:d4:1a:24:9a:36:02:a9:d2:13:26:e7:17:db:65:a6:58:80:
a3:b9:35:81:a2:9c:59:91:0e:ec:7d:06:8a:bc:79:33:30:a1:
30:ba:fd:a0:48:c4:3a:9d:a7:03:94:c2:f0:95:48:90:53:4e:
86:e0:d0:31:33:a3:17:83:7c:41:a9:b9:22:4e:f0:d3:9f:59:
15:e7:77:2c:f8:2b:a5:47:41:df:cb:85:35:95:8b:5e:9b:52:
f4:af:f3:aa:77:b6:a8:0c:4a:57:d8:e7:07:b6:ed:55:6f:14:
f9:ff:d0:e9:bd:d8:7a:11:78:a8:de:f0:ed:9c:b1:0d:00:04:
2b:00:69:da:f1:52:a5:70:18:62:84:99:e7:32:68:04:8f:5d:
32:63:48:d5:8a:44:39:a6:53:29:1b:a3:7d:1f:e6:e1:cb:9f:
7a:3c:ad:f1:1a:3e:80:14:80:24:50:ac:e8:c1:54:3e:09:6f:
00:40:05:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:34:37 2025 by rpki-client