Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/1bb1a2-6763-4b24-ad88-06413ceefce0/1/e7QSIWalMy0uPEf9Pw8jyDqLbXs.roa
File: e7QSIWalMy0uPEf9Pw8jyDqLbXs.roa (raw, json)
Hash identifier: x9GgSkJ9ND/FUXTvHLfxuGpZ3HOCH+J1Obc7x22sVUg=
Subject key identifier: 7B:B4:12:21:66:A5:33:2D:2E:3C:47:FD:3F:0F:23:C8:3A:8B:6D:7B
Certificate issuer: /CN=f08fba5263519b7c3a2155c69878217776defba0
Certificate serial: 0185727A171E7DED475758C7DEA377D5BD6E
Authority key identifier: F0:8F:BA:52:63:51:9B:7C:3A:21:55:C6:98:78:21:77:76:DE:FB:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8I-6UmNRm3w6IVXGmHghd3be-6A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/1bb1a2-6763-4b24-ad88-06413ceefce0/1/e7QSIWalMy0uPEf9Pw8jyDqLbXs.roa
Signing time: Mon 02 Jan 2023 12:34:42 +0000
ROA not before: Mon 02 Jan 2023 12:34:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205578
IP address blocks: 185.12.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:7a:17:1e:7d:ed:47:57:58:c7:de:a3:77:d5:bd:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f08fba5263519b7c3a2155c69878217776defba0
Validity
Not Before: Jan 2 12:34:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7bb4122166a5332d2e3c47fd3f0f23c83a8b6d7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:86:c1:b3:c0:2d:97:92:54:44:22:97:ed:f6:
74:7c:20:99:c2:ce:80:91:0e:14:85:24:d7:07:3c:
5d:cc:d5:11:a7:ee:79:63:9d:f2:31:76:a7:e5:6c:
c9:60:22:77:9b:79:b9:11:d8:8c:c8:2d:93:ef:56:
d6:39:16:04:a3:d1:6d:f1:26:e1:66:49:9a:93:78:
27:b8:93:a5:c3:20:ff:94:77:5e:b2:68:83:1a:f6:
d6:cf:15:87:84:7b:97:93:7b:bc:4f:44:c2:4c:90:
3d:50:a9:7f:1a:c3:af:65:be:78:5a:64:d8:a2:6c:
13:53:e8:b7:57:ed:4d:a6:19:cd:2f:f4:55:75:a0:
cd:f2:1b:21:b4:f1:c2:0a:8f:80:00:cc:07:c0:45:
43:56:7b:f3:9f:a7:3a:83:57:f4:72:f3:10:36:ba:
c4:5b:69:10:4c:d1:92:58:20:50:1c:b6:a8:18:92:
6f:25:f7:66:6d:79:f8:29:07:73:b6:36:74:f6:93:
7e:4d:06:81:d2:dc:5f:5b:a4:76:0c:73:2a:ee:bf:
c4:f1:04:45:5f:6d:58:2f:17:ab:17:b3:8b:a0:4d:
d5:3d:9a:6d:c6:cd:b4:58:02:29:70:c6:01:b3:4e:
4a:1b:70:01:8c:75:af:f7:ef:31:bc:e7:90:41:e0:
e9:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:B4:12:21:66:A5:33:2D:2E:3C:47:FD:3F:0F:23:C8:3A:8B:6D:7B
X509v3 Authority Key Identifier:
keyid:F0:8F:BA:52:63:51:9B:7C:3A:21:55:C6:98:78:21:77:76:DE:FB:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8I-6UmNRm3w6IVXGmHghd3be-6A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/1bb1a2-6763-4b24-ad88-06413ceefce0/1/e7QSIWalMy0uPEf9Pw8jyDqLbXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/1bb1a2-6763-4b24-ad88-06413ceefce0/1/8I-6UmNRm3w6IVXGmHghd3be-6A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.12.220.0/24
Signature Algorithm: sha256WithRSAEncryption
13:2d:56:36:08:31:b1:20:b2:7b:1c:d0:73:4b:89:96:7f:e4:
38:ba:59:86:2b:ad:39:09:a8:fa:3d:d4:12:a2:a9:e4:69:11:
be:4f:67:78:8a:cf:4a:f9:32:b6:3c:ab:df:d2:20:39:76:ec:
5f:8c:8d:e7:88:cd:7b:47:af:ff:fa:e7:6d:13:61:07:68:c5:
8b:e7:dd:50:02:83:f8:fe:99:01:59:9e:90:24:2c:7e:22:64:
ef:9a:63:2d:cb:f2:6e:79:7d:5e:2c:72:7e:93:04:36:89:13:
74:8d:63:f9:d6:4d:2c:b8:a9:c8:a3:5f:a3:20:c2:3e:eb:b2:
ea:a3:54:49:2a:59:64:ae:d1:aa:91:5e:7a:5e:ad:f1:05:68:
eb:cd:d9:b8:4f:0a:2f:39:f9:fc:62:91:f6:b8:a6:fe:d4:e3:
db:00:16:74:b6:00:b9:5a:7a:bd:40:12:e5:95:10:36:a8:d8:
65:39:14:3a:d3:c9:d2:c3:9d:d1:05:ed:b4:84:f3:66:2f:2f:
a8:6c:1b:24:72:e7:ff:77:d4:0e:f9:a1:e5:27:12:fb:99:3d:
5e:0a:8e:d5:f1:5a:fd:1e:fb:65:4f:61:50:68:73:ea:1d:13:
53:54:23:98:8e:54:94:55:8b:19:af:f7:67:e9:f3:a3:d7:0c:
f1:f5:9b:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 22:46:00 2025 by rpki-client