Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4d24c7-7477-4f7f-a8b4-9d63795211d3/1/mG6ig9QYeuEhuIMdWT9NzCPNzDc.roa
File: mG6ig9QYeuEhuIMdWT9NzCPNzDc.roa (raw, json)
Hash identifier: q2zHXGSDoViyLJgHYVi5BmTIatf7awzCECY05QZAtkU=
Subject key identifier: 98:6E:A2:83:D4:18:7A:E1:21:B8:83:1D:59:3F:4D:CC:23:CD:CC:37
Certificate issuer: /CN=2b495fe56f34762026a94035f320f0a90b7a2566
Certificate serial: 16857C3B
Authority key identifier: 2B:49:5F:E5:6F:34:76:20:26:A9:40:35:F3:20:F0:A9:0B:7A:25:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K0lf5W80diAmqUA18yDwqQt6JWY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4d24c7-7477-4f7f-a8b4-9d63795211d3/1/mG6ig9QYeuEhuIMdWT9NzCPNzDc.roa
Signing time: Sat 01 Jan 2022 14:59:09 +0000
ROA not before: Sat 01 Jan 2022 14:59:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198612
IP address blocks: 37.208.0.0/19 maxlen: 19
185.166.208.0/22 maxlen: 22
2a00:c640::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 377846843 (0x16857c3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b495fe56f34762026a94035f320f0a90b7a2566
Validity
Not Before: Jan 1 14:59:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=986ea283d4187ae121b8831d593f4dcc23cdcc37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:54:a5:8b:db:97:6f:31:7b:91:db:54:96:60:
bd:ac:c5:fb:aa:6e:cf:e7:aa:57:17:92:42:56:e7:
96:15:43:d2:47:77:9d:9e:a7:46:63:1c:09:e2:fe:
34:3b:b0:5a:c3:6b:6e:9a:fc:0d:2f:d4:03:de:2a:
0d:d2:d3:a3:e3:b1:b1:e8:03:f5:b0:ff:3b:4e:32:
b4:f8:51:b6:21:43:72:ac:4b:55:c8:92:f0:99:e6:
42:3a:4d:c8:72:d6:2c:ea:3b:f4:0a:30:80:db:77:
83:6e:26:e5:3a:ce:d3:f8:b7:f5:d1:f9:78:c4:c6:
f2:a5:e7:e1:19:95:30:03:9f:f9:af:90:a7:cd:66:
9c:0b:26:d3:68:f6:d2:48:9b:2a:84:f6:83:cb:33:
71:68:9b:06:d8:13:65:aa:f4:e3:d7:dc:5a:82:ab:
f6:22:04:57:9c:9d:99:f1:07:72:2a:67:3e:9d:65:
e2:de:c9:f0:22:ff:97:d0:86:c7:90:c1:ae:5b:52:
ad:72:38:c0:35:57:a5:6c:40:72:5b:1c:0b:fb:81:
98:8e:0a:3e:6f:38:49:73:b2:04:f6:47:e0:e1:59:
2e:72:5e:11:ce:14:09:5a:52:a5:94:af:93:e4:ad:
a9:aa:db:cd:ef:39:56:cc:56:73:15:22:70:85:8e:
10:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:6E:A2:83:D4:18:7A:E1:21:B8:83:1D:59:3F:4D:CC:23:CD:CC:37
X509v3 Authority Key Identifier:
keyid:2B:49:5F:E5:6F:34:76:20:26:A9:40:35:F3:20:F0:A9:0B:7A:25:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K0lf5W80diAmqUA18yDwqQt6JWY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4d24c7-7477-4f7f-a8b4-9d63795211d3/1/mG6ig9QYeuEhuIMdWT9NzCPNzDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4d24c7-7477-4f7f-a8b4-9d63795211d3/1/K0lf5W80diAmqUA18yDwqQt6JWY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.208.0.0/19
185.166.208.0/22
IPv6:
2a00:c640::/32
Signature Algorithm: sha256WithRSAEncryption
67:f3:9c:f6:0c:ee:9c:26:ea:3d:62:f4:fc:27:49:5d:72:e9:
99:83:29:f3:2a:1b:84:a1:09:9f:25:c3:e1:04:4b:d7:91:3c:
52:4f:98:b0:84:53:d1:7a:cf:cb:1a:44:3a:81:aa:00:6e:33:
7f:21:a6:2c:43:ec:0f:72:eb:72:73:1d:92:2b:c9:e8:52:5a:
6d:98:82:7d:4d:0e:99:57:a6:f2:29:ce:ec:86:97:2b:d1:85:
31:60:b0:2e:75:19:5c:20:c9:f1:18:79:4a:2b:1a:4e:95:4e:
c8:55:b7:6d:0f:2e:5b:0b:8d:34:5e:59:cc:bb:80:cc:dd:29:
44:94:39:cf:64:be:93:3c:49:9c:8c:b9:2f:43:83:b3:42:54:
47:47:4f:a3:c7:1e:a3:11:4d:dc:0a:e5:c1:cb:03:c1:19:bd:
5d:fe:c6:b1:ec:ff:1e:67:a8:67:4e:ae:74:52:bd:5c:39:c3:
99:05:85:cc:af:bb:a6:ae:b0:7c:86:8e:78:c2:d7:37:b7:52:
6d:66:e2:99:b8:5e:fb:ce:be:b4:af:fd:37:ae:96:90:76:93:
1c:22:6c:24:ee:50:02:91:3f:17:57:aa:c8:c1:3e:f5:1e:18:
f6:f8:c2:2d:56:44:9e:f8:6d:ef:b0:8d:40:ea:0e:e1:35:8b:
d7:c8:d5:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:49:28 2025 by rpki-client