Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/36253f-cd8e-4fd0-ae37-e937099733c3/1/FEMeO1DPwDBDnTXvGOYtviWDhVM.roa
File: FEMeO1DPwDBDnTXvGOYtviWDhVM.roa (raw, json)
Hash identifier: a0dbqWHYDa1io/4w2gIBirQwb+l2YiQFrZh+h5ecfko=
Subject key identifier: 14:43:1E:3B:50:CF:C0:30:43:9D:35:EF:18:E6:2D:BE:25:83:85:53
Certificate issuer: /CN=de8b8549e8cf71e91faa63b40791e6bfbbfdac04
Certificate serial: C21B6A
Authority key identifier: DE:8B:85:49:E8:CF:71:E9:1F:AA:63:B4:07:91:E6:BF:BB:FD:AC:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ouFSejPcekfqmO0B5Hmv7v9rAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/36253f-cd8e-4fd0-ae37-e937099733c3/1/FEMeO1DPwDBDnTXvGOYtviWDhVM.roa
Signing time: Sat 01 Jan 2022 05:03:55 +0000
ROA not before: Sat 01 Jan 2022 05:03:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204429
IP address blocks: 185.217.84.0/24 maxlen: 24
185.217.84.0/22 maxlen: 22
185.217.85.0/24 maxlen: 24
185.217.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12721002 (0xc21b6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de8b8549e8cf71e91faa63b40791e6bfbbfdac04
Validity
Not Before: Jan 1 05:03:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=14431e3b50cfc030439d35ef18e62dbe25838553
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c7:3e:4a:9e:ee:f2:3d:48:cb:0a:fd:19:6a:
5d:59:4f:8c:9b:7f:e8:39:a3:3a:78:29:61:05:07:
ff:26:17:fc:f4:db:77:4a:f3:30:e4:6b:67:e8:09:
5a:78:36:3c:fc:c6:33:b8:9b:11:11:1c:ad:6d:e5:
fd:11:5f:8a:ef:ed:74:77:6b:b2:d5:76:c4:e1:b3:
f3:2b:69:72:26:e5:9f:7a:c2:95:d8:f4:a5:35:e3:
05:0b:c5:a0:88:3e:49:96:46:88:ca:87:57:df:2b:
44:b9:91:5c:ff:c8:e3:d7:d3:57:43:59:b8:08:59:
09:f9:4e:5f:35:72:fd:e8:1e:e1:74:67:f2:46:41:
41:83:a3:2f:eb:d3:3a:df:af:6d:d8:ec:36:3b:9b:
b6:3b:72:a1:7c:b1:e1:51:f3:13:07:f2:c9:93:1b:
39:7e:25:79:75:8b:3e:23:5a:79:4f:6e:3f:90:7b:
cc:e1:94:fe:57:72:27:6d:94:9b:1b:e7:d6:dd:48:
77:5a:35:02:10:e1:b0:d6:d7:c0:68:54:74:41:49:
83:03:cf:13:4c:74:36:94:76:56:98:dd:f1:a9:89:
ff:58:3b:b8:12:67:4a:1a:14:4a:d4:49:5d:80:7d:
70:4e:3d:0a:df:91:5c:53:a4:58:d7:23:8c:ab:4f:
7c:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:43:1E:3B:50:CF:C0:30:43:9D:35:EF:18:E6:2D:BE:25:83:85:53
X509v3 Authority Key Identifier:
keyid:DE:8B:85:49:E8:CF:71:E9:1F:AA:63:B4:07:91:E6:BF:BB:FD:AC:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ouFSejPcekfqmO0B5Hmv7v9rAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/36253f-cd8e-4fd0-ae37-e937099733c3/1/FEMeO1DPwDBDnTXvGOYtviWDhVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/36253f-cd8e-4fd0-ae37-e937099733c3/1/3ouFSejPcekfqmO0B5Hmv7v9rAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.84.0/22
Signature Algorithm: sha256WithRSAEncryption
92:04:c4:16:70:e4:14:51:29:6a:a5:a0:bf:8c:83:30:f0:9f:
b7:38:ca:22:5b:b6:85:d1:8d:48:93:b5:1f:47:64:df:0e:10:
62:4b:e5:07:5a:56:c4:ff:42:bc:fb:d4:4e:2b:3d:c0:a7:7b:
ec:e1:c5:1a:7a:d4:cc:63:b6:aa:e3:3d:07:88:f5:25:67:47:
75:1a:ab:11:c8:0c:14:e2:a4:18:d3:e8:88:c0:8c:5b:0b:f9:
c6:f8:2b:57:b3:65:18:e2:8d:b1:77:76:ba:c2:15:c3:89:39:
2f:7f:30:8a:7c:5e:55:75:08:73:fe:bf:f0:e5:73:e6:0a:8e:
3f:23:da:32:56:6f:12:5a:8e:dc:ea:eb:dd:03:01:f4:29:d7:
5d:97:14:b0:d9:15:bc:db:c6:75:bd:f8:f1:16:58:82:c0:79:
27:67:03:67:cf:76:1c:2c:d0:3f:87:d2:2b:6c:b6:25:b3:d6:
37:b0:fd:46:a2:86:36:cb:06:f8:05:c7:5b:a2:5f:75:13:b6:
73:4d:60:60:8c:64:a6:9b:d5:cc:84:0f:e3:9f:7b:d0:83:49:
b9:78:e5:22:55:fd:44:f6:67:9f:b6:e3:b2:93:e2:e8:de:84:
8e:e3:52:e0:18:3a:03:50:31:52:22:34:09:1a:ae:9b:03:9d:
cb:df:42:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:26:47 2025 by rpki-client