Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/772cbc-7e69-4c91-86a3-3661b1ebbcfb/1/oma7RX2HfYeClX1xSfqguJewHAc.roa
File: oma7RX2HfYeClX1xSfqguJewHAc.roa (raw, json)
Hash identifier: qI+bFo22PjEGJhvsts1PHnJaWpOIsr9bKlJ8VHmTbi8=
Subject key identifier: A2:66:BB:45:7D:87:7D:87:82:95:7D:71:49:FA:A0:B8:97:B0:1C:07
Certificate issuer: /CN=c276a8ba874c3fbddad344d03258b3e2c04d7bcb
Certificate serial: 01856DEF72370086DA4350A94F252947B081
Authority key identifier: C2:76:A8:BA:87:4C:3F:BD:DA:D3:44:D0:32:58:B3:E2:C0:4D:7B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wnaouodMP73a00TQMliz4sBNe8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/772cbc-7e69-4c91-86a3-3661b1ebbcfb/1/oma7RX2HfYeClX1xSfqguJewHAc.roa
Signing time: Sun 01 Jan 2023 15:24:46 +0000
ROA not before: Sun 01 Jan 2023 15:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206380
IP address blocks: 185.188.27.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ef:72:37:00:86:da:43:50:a9:4f:25:29:47:b0:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c276a8ba874c3fbddad344d03258b3e2c04d7bcb
Validity
Not Before: Jan 1 15:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a266bb457d877d8782957d7149faa0b897b01c07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:2f:d4:18:97:ee:e0:ea:ed:ed:92:77:c6:dc:
a1:8d:52:b5:85:3f:fb:38:90:55:16:d1:f1:36:9c:
cb:8b:41:ca:10:18:a8:b9:6a:fe:0a:95:85:b6:15:
f1:10:69:a9:33:ca:d3:30:86:53:74:46:e4:26:16:
f7:d5:d0:71:40:89:87:54:87:5b:c4:e1:36:07:17:
3a:64:1e:b8:a2:2d:73:ac:c8:a5:1b:da:d1:2f:ef:
02:6b:cb:64:2c:24:53:d6:8c:62:80:36:a6:aa:33:
41:fa:2d:d9:05:bd:79:10:0e:70:a6:c5:e8:71:fd:
17:f6:34:11:50:57:e3:a9:32:7f:cf:73:de:4f:a7:
66:44:38:26:e7:f2:9b:74:b7:ec:94:2b:7f:0b:aa:
f4:82:44:6c:63:24:9f:6e:61:98:53:ce:02:6f:da:
3d:69:7a:a1:8d:a2:95:23:2c:50:31:ab:01:fe:da:
d9:d6:59:ed:7c:80:b3:11:8b:40:25:38:6a:a4:da:
4d:91:9e:79:18:48:54:9b:d7:b9:e3:ed:6a:f4:53:
ef:f2:d5:ed:bf:4d:19:e8:b8:93:2c:4c:67:e0:60:
38:34:0b:46:17:25:98:52:8c:58:b2:6c:f5:cc:0c:
cc:95:f7:92:4c:c2:e9:8a:8f:11:12:a5:29:33:31:
a6:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:66:BB:45:7D:87:7D:87:82:95:7D:71:49:FA:A0:B8:97:B0:1C:07
X509v3 Authority Key Identifier:
keyid:C2:76:A8:BA:87:4C:3F:BD:DA:D3:44:D0:32:58:B3:E2:C0:4D:7B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wnaouodMP73a00TQMliz4sBNe8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/772cbc-7e69-4c91-86a3-3661b1ebbcfb/1/oma7RX2HfYeClX1xSfqguJewHAc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/772cbc-7e69-4c91-86a3-3661b1ebbcfb/1/wnaouodMP73a00TQMliz4sBNe8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.27.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:0c:c9:4e:21:0c:fe:a9:e0:e2:21:f4:c5:bf:6c:07:f2:3d:
e1:68:65:b0:d2:06:b5:5e:07:92:ce:51:60:4f:51:22:a1:0f:
00:0e:d8:4c:bb:41:28:89:1b:97:f5:d0:f6:94:62:be:75:82:
da:be:2d:c0:a1:fd:47:de:b4:74:02:77:d6:6d:96:62:7d:61:
4b:56:4d:48:95:34:2e:e7:8a:21:1d:3e:c5:27:f2:94:10:a2:
81:43:54:14:97:74:ba:86:fc:e7:f7:df:82:3c:e0:db:2f:e1:
e9:c2:6d:78:ab:9c:be:35:d2:5c:52:61:35:49:4b:99:3f:88:
7e:ef:11:fc:98:5e:f5:5f:67:74:0c:b7:f0:93:80:ed:17:e7:
4e:dc:a4:a2:3c:cb:69:9f:22:24:76:58:71:29:ce:f6:f1:df:
32:7d:29:b8:cd:36:dc:6f:52:6f:7a:9c:51:f3:ff:56:40:eb:
5a:9e:51:8a:5a:46:22:0c:c8:39:e5:a1:ed:31:32:be:35:a5:
ae:a9:0e:49:1b:6f:5a:c3:61:97:7d:e8:d4:ea:85:0d:d4:18:
01:02:56:20:89:d9:81:e5:38:b1:a5:a2:a6:6d:c8:09:f7:97:
b0:a4:b9:9d:9f:e9:7e:fd:01:bb:55:93:97:f6:34:5c:b9:b1:
68:08:b9:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:35:32 2025 by rpki-client