Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/8c37f0-af3a-4024-8043-d30cef9114b7/1/aj7VpbJcGq5MnF-9aFV3_-tli0A.roa
File: aj7VpbJcGq5MnF-9aFV3_-tli0A.roa (raw, json)
Hash identifier: v6nvA8I9T+wwQ8Sv9WAbfhscrBr+8lbW45OJ3+ykeMY=
Subject key identifier: 6A:3E:D5:A5:B2:5C:1A:AE:4C:9C:5F:BD:68:55:77:FF:EB:65:8B:40
Certificate issuer: /CN=ec757603b171af34e1c6231e5e82e77f2d589db9
Certificate serial: 018AB6F496879AE36A062E960F8DC62326ED
Authority key identifier: EC:75:76:03:B1:71:AF:34:E1:C6:23:1E:5E:82:E7:7F:2D:58:9D:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7HV2A7FxrzThxiMeXoLnfy1Ynbk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/8c37f0-af3a-4024-8043-d30cef9114b7/1/aj7VpbJcGq5MnF-9aFV3_-tli0A.roa
Signing time: Thu 21 Sep 2023 08:56:37 +0000
ROA not before: Thu 21 Sep 2023 08:56:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198006
IP address blocks: 185.82.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b6:f4:96:87:9a:e3:6a:06:2e:96:0f:8d:c6:23:26:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec757603b171af34e1c6231e5e82e77f2d589db9
Validity
Not Before: Sep 21 08:56:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a3ed5a5b25c1aae4c9c5fbd685577ffeb658b40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:2d:95:57:78:d9:fe:01:1a:5f:9b:ae:0f:91:
b3:f2:bc:3b:eb:5a:cf:10:d3:83:45:2d:1f:92:83:
70:4b:1f:c5:f5:e4:a0:cd:31:75:01:15:14:7e:02:
46:70:d2:59:ed:6b:b8:be:18:e5:39:d6:bf:a0:1f:
27:df:7a:81:f7:19:45:69:58:37:93:ed:9b:19:15:
63:20:a5:3b:ee:c5:d7:da:5f:b9:dd:04:2b:00:3b:
aa:8b:cc:09:79:87:e6:7e:2c:6a:00:a7:8b:df:b9:
40:ed:9f:71:b0:62:87:30:09:e5:ce:09:97:e8:ee:
5b:dc:9f:f0:74:14:36:6a:14:b6:11:3f:84:9f:90:
75:d9:a6:76:d7:01:cb:83:d3:b6:ca:f9:a9:7c:d8:
60:ae:99:3a:e8:74:6f:61:56:7b:a8:48:d3:79:50:
d3:a7:a0:2b:6b:b4:51:ea:51:2a:a6:a0:d7:c3:38:
48:f3:95:1b:db:f0:b5:2c:8d:59:3a:48:bd:43:3e:
30:8c:c0:77:b7:d5:9d:72:87:58:c9:3d:67:65:5c:
80:13:73:ec:8e:16:3e:b7:b0:60:95:53:17:bf:6f:
54:db:ba:32:17:58:b0:9d:25:91:68:5b:86:38:e0:
06:84:35:fd:ca:1b:7f:02:f8:c2:ac:e3:16:6a:36:
33:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:3E:D5:A5:B2:5C:1A:AE:4C:9C:5F:BD:68:55:77:FF:EB:65:8B:40
X509v3 Authority Key Identifier:
keyid:EC:75:76:03:B1:71:AF:34:E1:C6:23:1E:5E:82:E7:7F:2D:58:9D:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7HV2A7FxrzThxiMeXoLnfy1Ynbk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/8c37f0-af3a-4024-8043-d30cef9114b7/1/aj7VpbJcGq5MnF-9aFV3_-tli0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/8c37f0-af3a-4024-8043-d30cef9114b7/1/7HV2A7FxrzThxiMeXoLnfy1Ynbk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.82.154.0/24
Signature Algorithm: sha256WithRSAEncryption
68:5c:3f:cd:07:5b:0d:83:71:8d:95:25:64:ce:e0:10:62:b8:
c9:15:2a:32:d8:95:51:2b:4e:c7:27:9d:cb:fa:83:5d:14:0c:
09:9a:0f:1e:24:f6:71:2a:93:e5:0a:4d:e7:ab:32:14:59:0d:
30:f2:6e:49:0a:58:7b:39:da:27:3e:28:85:1d:62:97:3a:f4:
87:b4:b7:14:0e:de:0c:92:ca:d8:79:ce:da:93:b9:52:a9:dc:
bf:85:5c:c8:d8:b8:f4:7d:40:2c:82:c6:76:b4:a7:b1:96:cd:
66:3b:6d:17:83:44:b3:db:2d:fc:66:3d:d0:35:2e:cd:4b:58:
f2:1e:b0:ac:50:df:55:5e:71:4f:39:0e:09:fa:a4:6c:e1:f7:
bf:7e:48:0b:62:cc:f0:0a:7b:11:a2:59:82:1a:ca:5e:dd:19:
d6:9e:1b:35:40:63:6a:bc:2f:b8:2b:54:42:69:9b:ea:42:1d:
58:53:d4:84:e1:cd:66:35:1b:05:43:53:13:a4:5d:9f:6b:c9:
16:63:c5:b2:8a:49:b2:40:1f:f4:c8:33:05:fb:85:c6:7d:a7:
61:9e:06:43:f9:93:62:a1:12:e5:20:38:89:ff:45:25:47:6b:
f4:57:b7:9f:41:49:f9:f4:59:e4:11:63:2c:30:e7:01:14:b5:
3e:55:8a:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:45:32 2025 by rpki-client