Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/6da0aa-1327-4fa6-a947-ada270825218/1/gVseH7tZyhw4moxc9sEC8f6QQj0.roa
File: gVseH7tZyhw4moxc9sEC8f6QQj0.roa (raw, json)
Hash identifier: B1CI4gi4F2qQjzmyA5QoxCwj4XOi0bHKQijieAVeT80=
Subject key identifier: 81:5B:1E:1F:BB:59:CA:1C:38:9A:8C:5C:F6:C1:02:F1:FE:90:42:3D
Certificate issuer: /CN=04732b985f8f63ff8ae8eac7c70832b30cee80ad
Certificate serial: 1215EEA4
Authority key identifier: 04:73:2B:98:5F:8F:63:FF:8A:E8:EA:C7:C7:08:32:B3:0C:EE:80:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BHMrmF-PY_-K6OrHxwgyswzugK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/6da0aa-1327-4fa6-a947-ada270825218/1/gVseH7tZyhw4moxc9sEC8f6QQj0.roa
Signing time: Sat 01 Jan 2022 01:57:34 +0000
ROA not before: Sat 01 Jan 2022 01:57:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15695
IP address blocks: 185.86.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 303427236 (0x1215eea4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04732b985f8f63ff8ae8eac7c70832b30cee80ad
Validity
Not Before: Jan 1 01:57:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=815b1e1fbb59ca1c389a8c5cf6c102f1fe90423d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:67:61:86:91:b7:ee:47:9c:5b:09:83:09:e9:
ef:c2:e2:61:a7:8f:93:0d:3f:aa:92:79:84:69:f7:
81:83:4c:45:ce:04:3f:0d:d0:e3:f7:a6:70:d3:1c:
3b:3e:2e:46:ee:40:f2:1d:b4:6e:2d:8f:9d:b3:97:
5c:53:e6:7b:df:3d:a1:bd:7b:fd:e0:9d:dd:a9:af:
15:1b:f8:7a:11:5d:61:a3:60:27:82:92:6d:ed:d0:
9e:16:e1:5d:11:d4:34:13:19:07:95:c2:ff:4a:10:
cd:1d:5e:e9:20:fe:c1:41:e3:3a:3d:7c:2f:91:25:
a7:c8:8d:93:82:13:ee:a9:ea:49:b3:f3:a7:3b:59:
40:1b:45:d5:cb:bf:d9:1c:fa:d5:bc:1c:4e:44:c2:
7e:f3:f1:23:90:7a:82:69:f8:2a:27:49:a9:48:e9:
e7:9b:85:b0:8a:78:fc:c7:e9:7a:ef:6b:bd:7c:a2:
e1:4a:d6:49:23:20:aa:61:21:36:86:e4:55:f2:c3:
cf:9a:70:45:42:31:4a:df:ae:73:76:73:ea:6f:a6:
9a:ca:7c:88:b5:61:00:ba:01:88:2f:86:bd:6d:22:
56:18:c5:33:fc:4f:84:7c:15:46:70:5a:7a:0b:13:
f0:82:74:25:09:d9:2e:14:62:6c:e1:b8:a4:ea:79:
27:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:5B:1E:1F:BB:59:CA:1C:38:9A:8C:5C:F6:C1:02:F1:FE:90:42:3D
X509v3 Authority Key Identifier:
keyid:04:73:2B:98:5F:8F:63:FF:8A:E8:EA:C7:C7:08:32:B3:0C:EE:80:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BHMrmF-PY_-K6OrHxwgyswzugK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6da0aa-1327-4fa6-a947-ada270825218/1/gVseH7tZyhw4moxc9sEC8f6QQj0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6da0aa-1327-4fa6-a947-ada270825218/1/BHMrmF-PY_-K6OrHxwgyswzugK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.55.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:69:5b:01:05:86:30:38:6e:b6:84:96:b8:9c:2f:c3:23:33:
cc:ae:85:9e:e9:34:21:01:3a:b5:94:bd:ef:d3:bc:a1:74:4b:
55:e1:51:2a:9b:fc:b8:22:21:d4:44:c0:2e:a5:e1:f6:9a:5d:
cb:b0:1f:f0:13:b0:d4:64:58:0b:01:b3:a9:c2:4b:a9:99:3d:
94:fd:4c:e0:3d:ed:24:c8:41:ac:1b:88:6e:c5:e4:0c:83:b0:
d5:6a:ff:9a:87:f0:97:a6:d7:4d:ea:93:f9:27:28:24:6d:dd:
37:f1:4e:bc:5b:c0:08:a2:f4:4c:c5:f0:b5:f6:14:7b:f3:47:
78:bd:4d:2f:9b:52:59:7b:90:44:78:a8:8e:38:65:71:9f:2c:
74:97:d3:6e:03:5f:67:91:f5:ce:3b:fb:69:95:90:90:d4:02:
00:1c:3c:b7:90:e0:b7:72:d7:0c:0b:c5:1c:de:aa:cd:0e:28:
9f:71:d6:63:1c:fe:a3:b0:93:2e:36:66:ec:79:e6:49:40:f0:
ff:39:06:6a:1a:de:a3:5e:9c:5e:dd:de:a0:d3:ac:10:05:b2:
ab:73:26:0a:69:5a:7c:06:c3:c0:96:e3:0a:ba:ae:c2:62:7e:
4b:12:ef:21:94:88:c6:b1:87:f6:00:6a:9d:89:94:c2:4e:6b:
16:05:4e:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:31 2025 by rpki-client