Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/RHLiDIKCMEUL6pqDwr6DVZehtMI.roa
File: RHLiDIKCMEUL6pqDwr6DVZehtMI.roa (raw, json)
Hash identifier: F3R4GCUumQmieJSDd/wIGhRqVmczJ77KcyH8PWnuG1g=
Subject key identifier: 44:72:E2:0C:82:82:30:45:0B:EA:9A:83:C2:BE:83:55:97:A1:B4:C2
Certificate issuer: /CN=d3cb5cecc213b9f86dbba518521e8546ec93861c
Certificate serial: 02D5A3D3
Authority key identifier: D3:CB:5C:EC:C2:13:B9:F8:6D:BB:A5:18:52:1E:85:46:EC:93:86:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/08tc7MITufhtu6UYUh6FRuyThhw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/RHLiDIKCMEUL6pqDwr6DVZehtMI.roa
Signing time: Sat 01 Jan 2022 16:06:25 +0000
ROA not before: Sat 01 Jan 2022 16:06:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205727
IP address blocks: 176.107.128.0/20 maxlen: 24
80.211.240.0/20 maxlen: 24
2a00:6d47::/36 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47555539 (0x2d5a3d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cb5cecc213b9f86dbba518521e8546ec93861c
Validity
Not Before: Jan 1 16:06:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4472e20c828230450bea9a83c2be835597a1b4c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c4:09:e2:7a:da:2e:98:06:c8:3b:f1:df:56:
9f:a0:ed:43:d2:80:3b:06:ab:8d:c3:f1:04:90:00:
0b:0b:7c:c0:3b:06:73:03:97:8c:6c:4d:31:d6:46:
51:e2:6b:98:87:11:cd:1d:a6:70:66:e7:a1:0a:e3:
0b:73:ef:6e:bb:d4:a1:7a:17:fa:45:89:97:67:e5:
f4:ed:90:10:21:8f:55:ba:d3:f1:12:83:d0:d7:ce:
b3:2c:33:58:ee:aa:03:69:a4:fd:05:00:07:02:78:
32:bb:e3:06:08:74:a4:02:7a:8a:b9:bc:f8:15:f0:
9b:d4:3e:0e:3f:56:d5:62:40:f3:7b:bd:75:24:6d:
3b:c5:df:69:8b:18:32:55:cc:ee:0b:91:6d:73:f9:
88:02:4d:73:b0:7e:54:35:92:6a:3d:e3:ec:c8:1f:
6b:26:12:5f:dc:a3:b9:6d:e7:42:35:2a:dc:90:9b:
9d:99:6c:45:47:85:3b:64:ba:2c:fb:56:f5:6e:75:
e4:22:e1:0b:44:0a:05:7a:99:d5:d2:29:60:65:2d:
1f:ad:25:c9:71:d2:f9:2c:10:92:02:b4:57:b1:a9:
07:24:6c:5d:0f:63:94:13:b6:bb:56:53:1e:50:03:
ba:e9:52:b5:b7:34:38:7e:0c:e1:6e:6d:23:bc:01:
58:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:72:E2:0C:82:82:30:45:0B:EA:9A:83:C2:BE:83:55:97:A1:B4:C2
X509v3 Authority Key Identifier:
keyid:D3:CB:5C:EC:C2:13:B9:F8:6D:BB:A5:18:52:1E:85:46:EC:93:86:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/08tc7MITufhtu6UYUh6FRuyThhw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/RHLiDIKCMEUL6pqDwr6DVZehtMI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/08tc7MITufhtu6UYUh6FRuyThhw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.211.240.0/20
176.107.128.0/20
IPv6:
2a00:6d47::/36
Signature Algorithm: sha256WithRSAEncryption
26:47:51:c6:9f:cb:2e:e5:1e:62:95:cb:09:bf:12:40:1d:78:
78:ae:8a:35:fa:3e:1a:7d:28:16:c7:20:86:36:41:79:20:36:
fc:5d:f7:c9:de:a9:58:8c:f8:f2:0c:e2:81:d1:62:d9:e7:17:
fc:1c:1e:77:95:52:e9:a0:3a:ad:b5:26:c6:c7:85:ca:b2:b7:
1e:6f:8f:cd:d0:ff:71:8e:3d:57:3e:4f:fe:8c:9f:39:13:32:
60:ac:85:a1:3c:26:64:ac:77:46:6f:5f:6f:d7:a8:e7:14:21:
04:ba:8e:56:31:31:b2:7a:f9:5e:6c:2b:aa:36:f0:68:2b:23:
c8:68:77:dd:6a:01:6e:1c:8e:97:60:10:b4:23:ab:25:a9:6f:
d0:2c:87:69:78:d0:68:47:32:b1:60:5f:c1:b0:86:b1:34:3b:
71:52:18:fb:ba:23:64:7b:76:37:44:d4:0b:05:cc:65:13:94:
17:09:44:42:7d:48:8c:88:d4:17:31:c5:bb:9c:76:cd:7c:b6:
50:d9:96:31:67:6d:ca:06:fd:15:ca:c0:fd:33:f5:84:d9:50:
c2:22:9f:69:62:be:04:2e:d6:35:01:ad:0c:14:62:ec:c0:b1:
c2:bd:5a:71:bc:15:88:52:e0:dd:4a:c1:34:e4:a6:9f:49:0e:
01:d5:ad:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:09:19 2025 by rpki-client