Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/95b434-3de0-48e9-88e9-2d7f38474c08/1/rYFNzaatEJg3OVUFVdfm23_tFgE.roa
File: rYFNzaatEJg3OVUFVdfm23_tFgE.roa (raw, json)
Hash identifier: /V2ZI+FZ/irQR71RfM3Q4A9BFyjnqnjr6fL/6ElrQik=
Subject key identifier: AD:81:4D:CD:A6:AD:10:98:37:39:55:05:55:D7:E6:DB:7F:ED:16:01
Certificate issuer: /CN=f963247d0d83b9f608cf864f427cdfe94b252a10
Certificate serial: 06DBAADB
Authority key identifier: F9:63:24:7D:0D:83:B9:F6:08:CF:86:4F:42:7C:DF:E9:4B:25:2A:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-WMkfQ2DufYIz4ZPQnzf6UslKhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/95b434-3de0-48e9-88e9-2d7f38474c08/1/rYFNzaatEJg3OVUFVdfm23_tFgE.roa
Signing time: Sat 01 Jan 2022 14:55:03 +0000
ROA not before: Sat 01 Jan 2022 14:55:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202191
IP address blocks: 185.26.211.0/24 maxlen: 24
185.26.210.0/24 maxlen: 24
185.26.210.0/23 maxlen: 23
193.53.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115059419 (0x6dbaadb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f963247d0d83b9f608cf864f427cdfe94b252a10
Validity
Not Before: Jan 1 14:55:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad814dcda6ad10983739550555d7e6db7fed1601
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:51:1e:ae:82:08:80:42:50:ea:7e:df:f3:58:
c7:90:3d:c3:7e:76:ac:48:e3:b2:06:30:23:7f:39:
f3:ea:e7:f4:db:f6:ae:c8:bb:45:4f:04:f1:06:34:
f9:0e:e5:98:a5:38:bb:70:6a:41:3b:fd:29:d4:36:
94:7d:35:e2:68:e2:86:e5:9c:4e:06:60:87:0a:a2:
4c:a7:53:1b:94:df:55:90:60:50:69:dd:c5:57:7b:
29:c9:2c:71:ae:3d:3d:5b:08:e6:a7:d4:d8:15:f4:
b7:59:67:5c:36:9c:0a:7c:9f:91:11:d8:38:8d:28:
b4:59:a1:0b:cc:41:98:35:36:98:fe:a7:5c:45:9c:
3d:35:b6:b1:52:cd:cd:63:d2:cf:18:2d:91:b3:ca:
f1:d4:cc:30:be:39:2f:d3:70:26:95:1c:25:04:fe:
6a:a2:19:99:3c:31:95:57:e2:6c:ee:47:de:25:a6:
41:d8:03:91:81:35:a8:66:25:20:3e:1b:1b:01:04:
89:de:8c:a2:44:76:cb:a9:e4:ca:5e:34:5e:4b:b4:
81:68:df:4d:50:78:90:af:96:5a:da:3d:fa:37:26:
52:95:83:73:ea:2b:b3:ea:26:be:38:7f:e2:aa:1b:
c9:10:ae:85:60:cc:d8:8f:0b:fd:36:e0:44:4e:c1:
18:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:81:4D:CD:A6:AD:10:98:37:39:55:05:55:D7:E6:DB:7F:ED:16:01
X509v3 Authority Key Identifier:
keyid:F9:63:24:7D:0D:83:B9:F6:08:CF:86:4F:42:7C:DF:E9:4B:25:2A:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-WMkfQ2DufYIz4ZPQnzf6UslKhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/95b434-3de0-48e9-88e9-2d7f38474c08/1/rYFNzaatEJg3OVUFVdfm23_tFgE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/95b434-3de0-48e9-88e9-2d7f38474c08/1/1-WMkfQ2DufYIz4ZPQnzf6UslKhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.26.210.0/23
193.53.39.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:c3:5a:87:21:7e:de:2f:65:9e:a2:0b:15:c6:df:8e:29:5e:
b5:06:3c:c2:dd:9c:36:8c:e1:18:0c:63:08:42:e3:7f:86:a7:
e4:33:de:e0:3a:9a:1a:2b:e3:f5:a4:02:c3:64:73:31:9b:84:
69:ea:41:42:e9:2f:b3:a2:6e:dc:1b:66:9b:90:b9:4a:ed:a6:
ff:89:1b:34:ca:8c:f9:57:66:55:36:35:75:ae:7e:89:ec:ce:
48:bf:05:00:50:bd:b7:52:8f:a2:97:81:6c:36:c6:84:15:11:
61:88:59:1c:2a:de:b6:2f:10:5f:c3:3b:df:33:aa:6f:d1:28:
fb:a0:45:1e:28:5f:84:6b:0f:bc:fb:66:0a:94:c3:2d:38:c1:
40:c0:3d:84:28:ae:c2:72:00:3d:68:a9:49:d4:3c:6d:f3:ff:
fe:f6:37:34:77:d0:22:ef:a3:47:ea:eb:c6:cd:e1:63:41:ef:
04:49:1d:8d:fc:f7:f5:14:11:1b:0a:77:0f:7a:23:13:a2:93:
80:09:48:ca:98:80:50:73:91:db:57:25:fd:23:70:93:8b:71:
67:35:a8:0f:bd:d8:00:12:2f:a5:39:31:c8:64:da:e8:30:51:
02:69:5c:c2:1e:40:4f:fa:af:29:13:84:13:94:66:18:c8:3c:
67:bb:77:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 20:02:25 2025 by rpki-client