Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/52a10d-d851-40ae-a8b0-a1028eda6383/1/fj0cu7Xo6ixx4h_dAE26TzVehOA.roa
File: fj0cu7Xo6ixx4h_dAE26TzVehOA.roa (raw, json)
Hash identifier: jKYHoJUXSmqPMISGmhEMAqj232h0lHbLB1QUf2pNFxA=
Subject key identifier: 7E:3D:1C:BB:B5:E8:EA:2C:71:E2:1F:DD:00:4D:BA:4F:35:5E:84:E0
Certificate issuer: /CN=8d89223c1f335c0cc569359fa2dda349a2236ccb
Certificate serial: 011BAFA5
Authority key identifier: 8D:89:22:3C:1F:33:5C:0C:C5:69:35:9F:A2:DD:A3:49:A2:23:6C:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYkiPB8zXAzFaTWfot2jSaIjbMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/52a10d-d851-40ae-a8b0-a1028eda6383/1/fj0cu7Xo6ixx4h_dAE26TzVehOA.roa
Signing time: Sat 01 Jan 2022 10:00:27 +0000
ROA not before: Sat 01 Jan 2022 10:00:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34984
IP address blocks: 185.213.171.0/24 maxlen: 24
185.213.170.0/24 maxlen: 24
185.213.169.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18591653 (0x11bafa5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d89223c1f335c0cc569359fa2dda349a2236ccb
Validity
Not Before: Jan 1 10:00:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e3d1cbbb5e8ea2c71e21fdd004dba4f355e84e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ab:99:23:2e:25:c0:da:cf:f5:2d:7c:2d:a4:
35:9a:6e:cc:30:28:78:a5:8a:ab:b9:47:49:34:a7:
be:a5:e6:31:30:18:76:8f:6c:0f:02:c1:c5:43:09:
c6:97:2c:e4:a8:39:ed:95:4e:dd:9d:78:6d:64:b7:
96:e3:73:32:2a:d1:89:90:b1:9a:17:00:df:d1:02:
80:09:8c:69:33:5f:73:42:51:f3:ec:c8:ee:bf:82:
e4:bd:de:1f:c1:1f:df:65:5e:24:4c:c9:4e:76:2b:
e8:74:5c:8a:5e:00:fb:58:ee:fc:80:52:88:0a:db:
c5:e6:36:77:1f:40:f5:ec:36:c8:19:09:b5:2e:62:
38:68:d8:d5:3b:21:f3:81:c8:0e:0d:02:bc:37:9a:
3d:19:21:11:5e:a3:6e:5a:ea:ce:31:c4:f0:c8:ff:
04:ca:80:f4:a2:67:13:71:8d:f7:e6:50:72:d4:ab:
8d:72:61:cc:70:e9:d3:cd:2c:14:75:3d:bf:6b:41:
03:6b:15:d0:42:27:79:8c:82:d0:5e:11:8e:10:7f:
49:83:75:71:76:8c:18:a0:9f:83:8b:4c:7b:88:02:
5b:c4:cf:01:4a:37:73:d9:10:cf:dc:b7:70:46:78:
74:06:15:ad:43:31:24:d2:a1:b2:ca:51:e8:a6:71:
63:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:3D:1C:BB:B5:E8:EA:2C:71:E2:1F:DD:00:4D:BA:4F:35:5E:84:E0
X509v3 Authority Key Identifier:
keyid:8D:89:22:3C:1F:33:5C:0C:C5:69:35:9F:A2:DD:A3:49:A2:23:6C:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYkiPB8zXAzFaTWfot2jSaIjbMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/52a10d-d851-40ae-a8b0-a1028eda6383/1/fj0cu7Xo6ixx4h_dAE26TzVehOA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/52a10d-d851-40ae-a8b0-a1028eda6383/1/jYkiPB8zXAzFaTWfot2jSaIjbMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.169.0-185.213.171.255
Signature Algorithm: sha256WithRSAEncryption
98:fc:0a:90:dd:0e:ff:20:32:f5:06:e0:b2:b3:45:11:cc:3b:
01:1c:08:59:b5:94:21:fc:87:26:3d:d7:7e:7d:32:5a:d8:3a:
7d:50:9a:f5:ba:73:07:29:77:de:20:4d:41:1a:18:8a:03:61:
1b:77:89:d3:55:12:a5:b3:65:93:bb:68:d5:f2:37:60:eb:46:
9a:29:51:6b:96:16:74:20:4a:1c:03:9b:79:70:4c:1b:d7:60:
63:62:63:0f:f9:e4:7b:c9:f8:d6:f2:ec:20:f7:1a:d4:2f:f6:
70:fe:52:85:d3:40:ec:ec:33:b8:9a:67:85:eb:b3:c0:cb:84:
03:2c:62:c8:c6:9e:cf:43:84:25:3d:3a:fc:89:fb:66:bc:15:
6c:f1:87:83:18:6e:ae:e3:50:c4:9b:47:8d:f2:c0:4a:c8:07:
9f:3b:11:2e:97:60:9d:03:16:9f:fa:3c:76:bc:9a:75:be:d1:
43:cf:35:48:5c:a7:a2:db:30:8e:f9:d0:74:5e:61:38:2f:28:
76:31:3a:49:37:97:92:a4:aa:13:80:1d:ca:85:b2:25:49:fd:
67:3e:f7:bb:e6:e7:df:7f:ba:8a:62:7d:29:86:bf:92:e9:c9:
60:6c:41:96:70:59:fd:c6:64:5d:6d:f9:c3:dc:2a:bf:c5:4c:
71:b9:2c:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:40:36 2025 by rpki-client