Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/rWYHETckBCXrabiaeHgeWQzyfuY.roa
File: rWYHETckBCXrabiaeHgeWQzyfuY.roa (raw, json)
Hash identifier: JVaHMWgppWJdkrxY5fTZ21TyQlyMLEA1hVTEPXO5qdE=
Subject key identifier: AD:66:07:11:37:24:04:25:EB:69:B8:9A:78:78:1E:59:0C:F2:7E:E6
Certificate issuer: /CN=a21788c08aa437d1165cecbd68fdb195a15dfa08
Certificate serial: 13076551
Authority key identifier: A2:17:88:C0:8A:A4:37:D1:16:5C:EC:BD:68:FD:B1:95:A1:5D:FA:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oheIwIqkN9EWXOy9aP2xlaFd-gg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/rWYHETckBCXrabiaeHgeWQzyfuY.roa
Signing time: Sat 01 Jan 2022 02:56:19 +0000
ROA not before: Sat 01 Jan 2022 02:56:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207916
IP address blocks: 93.174.80.0/21 maxlen: 21
185.80.116.0/22 maxlen: 22
83.229.20.0/23 maxlen: 23
37.26.74.0/23 maxlen: 23
37.26.76.0/22 maxlen: 22
2a00:1350::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 319251793 (0x13076551)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a21788c08aa437d1165cecbd68fdb195a15dfa08
Validity
Not Before: Jan 1 02:56:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad66071137240425eb69b89a78781e590cf27ee6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:df:84:73:dc:96:d7:e9:68:fe:25:ca:21:56:
55:2a:bf:32:a5:ac:74:c7:c0:b2:44:a9:46:d4:3b:
07:2b:18:ec:b5:1b:d8:0c:30:81:3b:c7:fb:ba:d4:
30:38:b9:e1:c3:28:a7:41:1c:6f:fb:e7:be:4e:1d:
0f:d3:c3:7f:e0:0b:a8:60:82:f7:d0:21:ae:23:4f:
ef:2a:20:e3:61:ec:ce:56:32:cf:28:56:89:91:e8:
d1:b8:c6:fe:33:28:fa:ee:6f:24:3c:23:65:fd:d7:
e5:de:e2:d9:2f:8d:de:2d:68:99:26:c4:a3:17:75:
58:74:79:14:a6:47:84:a5:32:7b:45:c1:3a:fb:7f:
45:4c:c6:02:77:4f:ca:d8:3c:86:88:45:24:d8:43:
0e:8e:ea:3b:5f:12:7e:ec:6d:9a:ea:53:ad:8f:a0:
45:89:45:85:2f:5c:62:fc:56:82:66:e7:7c:50:49:
15:b6:fe:34:2d:27:31:63:69:5a:d1:a0:19:0d:37:
4e:12:cb:6f:9e:08:1d:07:34:53:42:48:54:85:58:
10:88:52:3a:54:86:98:85:bf:e9:dc:44:70:f7:29:
86:44:c9:82:5c:a1:a5:bf:07:d4:54:6f:06:04:18:
90:55:28:87:24:05:3a:62:81:03:fc:92:58:2e:6a:
6b:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:66:07:11:37:24:04:25:EB:69:B8:9A:78:78:1E:59:0C:F2:7E:E6
X509v3 Authority Key Identifier:
keyid:A2:17:88:C0:8A:A4:37:D1:16:5C:EC:BD:68:FD:B1:95:A1:5D:FA:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oheIwIqkN9EWXOy9aP2xlaFd-gg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/rWYHETckBCXrabiaeHgeWQzyfuY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/oheIwIqkN9EWXOy9aP2xlaFd-gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.26.74.0-37.26.79.255
83.229.20.0/23
93.174.80.0/21
185.80.116.0/22
IPv6:
2a00:1350::/32
Signature Algorithm: sha256WithRSAEncryption
23:d8:80:db:ef:3b:9a:b2:a1:c0:9f:e8:7e:fe:0a:67:8f:db:
46:1a:72:a1:88:55:27:b6:99:ad:12:4e:78:c7:31:85:26:54:
79:66:04:b4:4a:53:2a:0c:04:db:71:47:94:09:52:a3:5a:58:
d7:34:49:3b:6e:69:0a:e8:cd:f7:2e:88:90:ef:b5:99:11:ec:
9a:0d:2d:3e:c1:74:da:7e:c5:10:07:09:4c:04:ed:91:f8:fd:
54:d8:77:a7:42:02:25:65:b4:1c:b7:38:f5:d3:04:54:a9:60:
63:47:50:a0:d4:16:e9:b1:c5:58:7a:10:59:42:84:47:6e:af:
24:55:6f:84:7c:1d:2e:16:b2:89:cf:0e:ce:9a:3b:26:16:b9:
92:26:26:77:7e:82:ca:15:ec:7a:a5:e7:ef:1e:67:5f:a8:20:
b2:03:14:6f:0a:99:1e:8a:49:56:9c:31:93:c4:cd:58:5b:95:
3c:a5:88:53:e8:58:94:68:40:46:d2:97:49:f5:95:11:35:50:
42:42:b8:39:b1:8d:1b:98:fa:68:97:8d:ec:57:f1:f6:9c:a3:
2e:b0:7f:b6:2c:68:d2:86:00:da:da:58:10:ab:de:1c:0b:91:
57:8e:56:ef:66:fa:34:3e:e7:e1:87:a1:6a:08:0e:49:40:18:
07:0f:3f:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:59:42 2025 by rpki-client