Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/29cb2e-4680-4a36-b0a5-985182001e92/1/6JgqjoWM4R9GQlaPkA6hA-04VW8.roa
File: 6JgqjoWM4R9GQlaPkA6hA-04VW8.roa (raw, json)
Hash identifier: l8//HzxiZRUH7w56iibwqGMSuaC21ezOB56LvSOC3q0=
Subject key identifier: E8:98:2A:8E:85:8C:E1:1F:46:42:56:8F:90:0E:A1:03:ED:38:55:6F
Certificate issuer: /CN=067dcf577654dca17a610b9af4f2ca7421dcbb81
Certificate serial: 028D28B0
Authority key identifier: 06:7D:CF:57:76:54:DC:A1:7A:61:0B:9A:F4:F2:CA:74:21:DC:BB:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bn3PV3ZU3KF6YQua9PLKdCHcu4E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/29cb2e-4680-4a36-b0a5-985182001e92/1/6JgqjoWM4R9GQlaPkA6hA-04VW8.roa
Signing time: Sat 01 Jan 2022 00:51:52 +0000
ROA not before: Sat 01 Jan 2022 00:51:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205160
IP address blocks: 185.237.167.0/24 maxlen: 24
2a11:9940::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42805424 (0x28d28b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=067dcf577654dca17a610b9af4f2ca7421dcbb81
Validity
Not Before: Jan 1 00:51:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e8982a8e858ce11f4642568f900ea103ed38556f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:eb:a7:e9:48:b9:df:ab:51:5a:90:c7:da:bf:
4f:65:4d:d0:d0:7a:ef:99:92:27:f4:d8:eb:60:24:
f6:6f:4b:4f:7d:44:30:dd:dd:e1:b9:68:1f:f1:0c:
c6:60:d4:f5:41:e3:2b:b7:98:56:e5:2e:6a:3d:f9:
45:22:47:15:05:53:27:3d:d6:77:3e:dd:e3:d5:56:
bd:d8:da:79:3c:c4:bf:9a:4f:a3:5e:e9:a2:a9:60:
85:b4:89:b7:15:e2:4a:df:03:07:a4:34:58:e6:d0:
3c:1d:e0:e8:67:0e:b6:dd:9e:3e:ad:79:fe:80:9d:
f8:f3:b8:3c:8f:0a:fb:94:c5:47:40:98:8e:de:70:
c2:5c:bf:fd:02:4b:f9:c3:70:40:71:95:0f:8b:34:
99:07:2c:e9:df:09:7f:a4:4c:2b:b5:e0:7b:e0:25:
3f:ff:e9:6a:11:33:07:f9:8a:44:86:82:cd:94:4a:
e7:cf:1a:89:9e:e1:d3:68:ae:f8:45:4f:88:56:aa:
43:53:89:83:06:90:6e:83:f5:78:b9:fd:66:04:76:
88:4e:34:0c:0f:57:be:50:35:6c:40:bd:d5:a8:59:
83:ad:10:8c:c1:bd:88:1c:75:68:42:f1:91:1e:09:
e0:ee:2c:6b:d0:6d:d4:05:2d:d2:6f:51:a9:21:27:
d2:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:98:2A:8E:85:8C:E1:1F:46:42:56:8F:90:0E:A1:03:ED:38:55:6F
X509v3 Authority Key Identifier:
keyid:06:7D:CF:57:76:54:DC:A1:7A:61:0B:9A:F4:F2:CA:74:21:DC:BB:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bn3PV3ZU3KF6YQua9PLKdCHcu4E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/29cb2e-4680-4a36-b0a5-985182001e92/1/6JgqjoWM4R9GQlaPkA6hA-04VW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/29cb2e-4680-4a36-b0a5-985182001e92/1/Bn3PV3ZU3KF6YQua9PLKdCHcu4E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.237.167.0/24
IPv6:
2a11:9940::/32
Signature Algorithm: sha256WithRSAEncryption
1f:8c:48:17:1b:3e:0f:19:ed:ca:95:13:5c:86:b1:33:2e:17:
fd:7c:4b:73:5e:ef:8e:91:69:6e:c7:72:0c:33:8b:b2:7f:f6:
61:d0:02:cf:c4:da:0f:af:fb:03:81:31:92:8e:e2:ae:b2:f4:
06:0e:ca:11:2e:13:99:f7:3d:78:01:bd:82:cf:5c:23:32:4e:
5f:fe:a4:c8:54:29:57:38:c3:56:09:ab:f0:62:5c:39:dc:cb:
bb:27:01:68:5f:80:10:31:bf:27:ef:95:cd:f6:b9:8c:1a:c4:
80:b9:3c:41:05:dc:0d:4e:9c:e6:c6:ff:8a:f3:84:31:5c:32:
f4:9a:d8:d0:ed:c5:b7:a5:41:c1:5f:18:f8:f8:08:9f:de:a2:
8c:ae:7e:0d:11:49:fe:4b:f3:89:12:95:87:24:96:59:5f:6a:
54:30:88:41:4c:3b:c3:f9:6d:a8:3e:d2:c6:31:0e:08:5a:ba:
32:b2:74:a3:f1:19:06:89:7f:c7:a2:61:0f:e0:92:ab:d8:b8:
34:5e:a9:55:83:a2:ac:52:04:24:0e:7a:89:45:16:c3:68:b4:
06:da:c5:99:81:75:19:8e:8f:80:8d:4d:3e:bd:db:61:6c:7e:
af:3b:76:58:bb:c8:b0:01:24:ae:d6:bf:7b:c5:1e:68:ca:e2:
bf:84:f2:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:34 2025 by rpki-client