Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/1dbd6b-35cc-4f09-b92e-198b6a61ce85/1/B1sdPyKP_DEwJ_t2vMjj6hyEyG8.roa
File: B1sdPyKP_DEwJ_t2vMjj6hyEyG8.roa (raw, json)
Hash identifier: 3qeF455ZCqZFXvxA5cBTYqSl2h6rrgmMMuJAdycO/Is=
Subject key identifier: 07:5B:1D:3F:22:8F:FC:31:30:27:FB:76:BC:C8:E3:EA:1C:84:C8:6F
Certificate issuer: /CN=651bad95276947c7be536af4c870a3721f0b7761
Certificate serial: 0A5B69CF
Authority key identifier: 65:1B:AD:95:27:69:47:C7:BE:53:6A:F4:C8:70:A3:72:1F:0B:77:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZRutlSdpR8e-U2r0yHCjch8Ld2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/1dbd6b-35cc-4f09-b92e-198b6a61ce85/1/B1sdPyKP_DEwJ_t2vMjj6hyEyG8.roa
Signing time: Sat 01 Jan 2022 06:57:16 +0000
ROA not before: Sat 01 Jan 2022 06:57:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59795
IP address blocks: 213.184.84.0/24 maxlen: 24
213.184.86.0/24 maxlen: 24
2a09:3a00:3a00::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173763023 (0xa5b69cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=651bad95276947c7be536af4c870a3721f0b7761
Validity
Not Before: Jan 1 06:57:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=075b1d3f228ffc313027fb76bcc8e3ea1c84c86f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:f2:62:5a:25:34:97:18:f7:5c:1f:22:1d:29:
88:68:be:f0:8e:96:c9:bb:02:48:6c:01:e7:bf:35:
27:60:9f:af:20:4d:bf:bb:70:a5:52:c3:c9:26:98:
48:07:e4:80:9e:54:13:8f:ec:e6:30:aa:e2:ec:31:
f5:22:7c:1e:ed:26:1e:93:5e:03:a5:fe:3b:03:96:
9f:cd:77:6f:76:14:64:7e:75:a0:5b:48:55:1b:03:
6b:a3:c7:62:fc:78:5e:0b:38:84:b3:05:45:ed:2e:
2b:a3:9b:c8:96:c7:2f:85:bc:2c:1c:ff:0f:0a:20:
0c:03:67:d3:d6:bc:a5:6b:5f:f1:b8:09:a8:27:89:
02:d8:f9:1c:88:df:e6:86:44:ea:f1:bd:8e:00:04:
fc:d2:79:84:dd:e0:15:49:22:dc:b9:6f:3d:53:47:
51:9f:df:80:28:04:10:20:e8:34:52:00:3e:a2:f0:
8a:34:39:76:f9:82:fd:db:e2:6c:23:e9:45:56:f0:
9e:39:df:8b:cd:b3:68:09:e1:9e:4a:af:a8:ad:26:
4b:ff:eb:f1:a5:66:7e:50:06:1a:79:bc:b8:3c:50:
be:7a:2a:97:85:e4:3f:2e:c2:6b:cc:ea:3e:e2:96:
a0:bc:97:32:d3:cc:26:ab:e8:b5:ad:67:f9:94:56:
35:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:5B:1D:3F:22:8F:FC:31:30:27:FB:76:BC:C8:E3:EA:1C:84:C8:6F
X509v3 Authority Key Identifier:
keyid:65:1B:AD:95:27:69:47:C7:BE:53:6A:F4:C8:70:A3:72:1F:0B:77:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZRutlSdpR8e-U2r0yHCjch8Ld2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1dbd6b-35cc-4f09-b92e-198b6a61ce85/1/B1sdPyKP_DEwJ_t2vMjj6hyEyG8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1dbd6b-35cc-4f09-b92e-198b6a61ce85/1/ZRutlSdpR8e-U2r0yHCjch8Ld2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.184.84.0/24
213.184.86.0/24
IPv6:
2a09:3a00:3a00::/40
Signature Algorithm: sha256WithRSAEncryption
03:0d:fd:f3:ac:f9:e9:a3:e9:6d:16:a1:48:27:9f:b0:e7:c9:
85:57:53:6b:99:0a:66:70:09:a8:f1:ef:9c:17:e7:05:bc:43:
dd:2b:04:94:07:3a:e6:1e:be:ee:e0:a6:7a:e6:c3:7a:8d:68:
d5:bb:25:44:0c:14:30:8e:88:87:81:a4:a3:41:84:ff:0f:c1:
d2:43:4a:c7:4f:0a:48:89:8f:10:aa:54:10:d2:12:0b:29:60:
e3:90:09:75:60:89:48:e5:3c:d8:24:49:d8:71:75:c4:9d:4d:
6a:dd:5a:8d:18:ee:1e:34:13:00:cb:57:67:f8:fe:9b:90:4d:
a9:e3:0d:b7:50:fa:f9:af:ef:88:9f:2b:f3:e9:51:33:26:19:
c6:87:a1:3b:64:a1:9a:d8:51:2f:10:50:57:ce:44:60:77:42:
7d:54:d1:2f:46:f0:a8:28:61:ea:4b:35:64:d6:bd:03:2a:8a:
4d:22:b7:9c:22:e9:eb:15:ba:de:08:3d:24:7f:fc:91:f4:63:
e8:ca:77:d6:d5:d0:55:00:ca:f4:10:97:04:e3:17:f8:77:14:
a8:d5:3a:e0:21:be:60:36:a6:ec:5e:13:cb:27:20:9b:1a:5e:
dd:94:a9:33:50:56:18:6e:33:8e:8f:e5:14:af:ff:4d:46:be:
85:78:ed:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:29:13 2025 by rpki-client