Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/fI5oVC89RRy2QoiqkidEwewp7ZY.roa
File: fI5oVC89RRy2QoiqkidEwewp7ZY.roa (raw, json)
Hash identifier: 0vgBZr+nj8Wcb4tb8OvPGyhaMs8rN/rvuEPdveZhRpI=
Subject key identifier: 7C:8E:68:54:2F:3D:45:1C:B6:42:88:AA:92:27:44:C1:EC:29:ED:96
Certificate issuer: /CN=b2df00f38cced92197993076cb3685bf32bc5e69
Certificate serial: 018572A7EB7646D79724832DCCF412079EE3
Authority key identifier: B2:DF:00:F3:8C:CE:D9:21:97:99:30:76:CB:36:85:BF:32:BC:5E:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/st8A84zO2SGXmTB2yzaFvzK8Xmk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/fI5oVC89RRy2QoiqkidEwewp7ZY.roa
Signing time: Mon 02 Jan 2023 13:24:45 +0000
ROA not before: Mon 02 Jan 2023 13:24:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57111
IP address blocks: 185.103.112.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:a7:eb:76:46:d7:97:24:83:2d:cc:f4:12:07:9e:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2df00f38cced92197993076cb3685bf32bc5e69
Validity
Not Before: Jan 2 13:24:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7c8e68542f3d451cb64288aa922744c1ec29ed96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e7:24:32:46:03:29:02:38:b7:2e:b6:2b:39:
08:bb:d5:3e:e7:74:d3:22:a8:97:bf:14:1f:a5:d0:
22:22:d6:14:31:e6:1a:02:b0:bc:f5:b8:14:39:d7:
7d:74:31:de:ee:6a:cc:f3:b1:de:46:b1:e7:ce:c6:
2e:f7:ce:f6:44:7e:b5:4b:cb:bc:86:5b:23:5a:d8:
67:11:47:08:fb:7a:be:69:f9:13:d3:8f:c7:20:1d:
66:43:92:2c:a6:2d:5b:15:4d:be:08:b3:26:51:e8:
24:60:cb:a3:01:ce:b4:b7:17:14:4d:9c:10:d8:06:
28:1c:ef:d9:98:02:89:e1:23:ed:3f:20:67:d0:7c:
a4:15:0a:19:31:ca:6d:73:d7:f8:01:65:d9:fc:8f:
1d:82:7e:b9:5a:9a:5e:ae:28:61:40:db:ae:72:81:
50:a3:a0:01:15:a2:e5:2d:2f:fa:d5:25:cd:ec:b3:
97:e1:e9:33:6c:c9:91:b8:93:3f:03:b1:ae:04:8b:
fa:0d:c0:60:40:e1:f1:22:c5:b5:55:7c:94:ad:25:
fb:c8:95:52:cd:71:be:76:bb:57:f9:56:cd:d4:f7:
48:6e:fd:05:33:9b:46:a0:e9:4d:1e:98:1a:d3:b6:
49:c4:a8:25:f0:9e:54:7a:c8:26:13:ef:cd:b2:3a:
a5:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:8E:68:54:2F:3D:45:1C:B6:42:88:AA:92:27:44:C1:EC:29:ED:96
X509v3 Authority Key Identifier:
keyid:B2:DF:00:F3:8C:CE:D9:21:97:99:30:76:CB:36:85:BF:32:BC:5E:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/st8A84zO2SGXmTB2yzaFvzK8Xmk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/fI5oVC89RRy2QoiqkidEwewp7ZY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.112.0/22
Signature Algorithm: sha256WithRSAEncryption
70:9c:23:9f:54:86:c1:a1:1f:5c:e6:7f:44:96:5e:65:c4:76:
92:71:5c:dc:f7:ee:23:30:9d:97:3d:fc:a2:04:5f:2b:60:aa:
32:1c:9a:4f:38:de:10:72:55:0c:8b:9c:2c:ec:70:f5:7b:ff:
24:64:2f:3f:57:f9:e5:5f:fe:1b:49:c7:08:5a:ff:f0:2f:b4:
d4:9c:d6:b1:3a:90:fc:65:55:31:c3:fc:f2:cd:b9:2b:47:69:
b8:65:84:30:80:66:ed:a6:8b:f2:62:c5:00:d8:e1:80:af:97:
5d:3c:c0:06:76:2b:a4:69:46:64:a9:58:9c:20:62:85:46:54:
3a:08:a8:a2:d3:1b:6e:63:d6:07:de:e3:c1:8e:c8:61:0b:f3:
09:a3:9c:c5:0d:c8:a8:77:18:12:28:ae:40:d0:a2:8a:14:df:
69:3c:e1:10:7e:70:60:4a:67:da:52:45:61:ab:c6:49:de:c6:
c4:69:1b:96:c7:44:10:69:d7:2d:bd:54:01:24:5d:84:e2:64:
de:58:4a:f2:0c:ee:36:78:3f:28:1c:b0:3e:83:ae:96:6c:a3:
75:7b:06:78:d8:09:bd:d0:6f:76:46:63:6d:48:52:a9:3d:43:
8d:17:14:6c:00:b2:7b:f9:fa:7e:63:b2:20:9f:27:ec:9f:91:
10:d3:8a:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:20:15 2025 by rpki-client