Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/17bf85-e2c0-46f9-b0fb-07ae682c1262/1/B99hoQegn6hTt9QLkcNPSApKxhM.roa
File: B99hoQegn6hTt9QLkcNPSApKxhM.roa (raw, json)
Hash identifier: qfokUOHTe3T1W+Y4LwPiwzDkOtBN3s805PeiqlaCHeE=
Subject key identifier: 07:DF:61:A1:07:A0:9F:A8:53:B7:D4:0B:91:C3:4F:48:0A:4A:C6:13
Certificate issuer: /CN=e3b35956a4038a0938ccda85592ad531e4a883ad
Certificate serial: 07900EF7
Authority key identifier: E3:B3:59:56:A4:03:8A:09:38:CC:DA:85:59:2A:D5:31:E4:A8:83:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/47NZVqQDigk4zNqFWSrVMeSog60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/17bf85-e2c0-46f9-b0fb-07ae682c1262/1/B99hoQegn6hTt9QLkcNPSApKxhM.roa
Signing time: Sun 20 Feb 2022 23:38:59 +0000
ROA not before: Sun 20 Feb 2022 23:38:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204741
IP address blocks: 185.242.24.0/22 maxlen: 22
185.242.24.0/24 maxlen: 24
185.242.27.0/24 maxlen: 24
185.242.25.0/24 maxlen: 24
2a0c:ba80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126881527 (0x7900ef7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3b35956a4038a0938ccda85592ad531e4a883ad
Validity
Not Before: Feb 20 23:38:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=07df61a107a09fa853b7d40b91c34f480a4ac613
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:3e:51:42:ea:41:c7:d1:c4:27:91:21:78:5a:
71:86:93:8d:e0:5a:25:73:5d:6e:d7:61:9c:96:aa:
f6:df:ff:30:d2:f7:9d:b3:6c:01:7f:92:b8:5d:13:
8e:77:08:70:be:2a:3c:62:bc:1e:55:81:da:ad:03:
de:33:f7:03:33:49:0f:84:24:41:5a:6e:b2:5a:dc:
2e:70:af:a6:ca:58:ba:e8:55:f8:4d:e0:cc:e5:59:
48:19:5e:a7:a8:a1:1e:b6:ae:7f:5f:62:44:8b:76:
7e:b3:07:8e:cc:f4:5b:fc:a1:a0:a3:38:20:f0:31:
9b:f2:78:2b:07:ad:46:7c:d6:7d:a0:e9:13:15:d4:
96:03:79:9b:5d:4e:b9:7c:e3:d9:38:6f:1a:35:91:
c2:b8:7d:f0:42:6a:58:7c:d2:20:79:85:46:2e:dc:
72:63:10:24:a8:4c:d1:98:20:55:4c:58:2e:28:42:
28:2c:6e:60:7f:eb:a2:14:04:43:25:97:4f:c5:b1:
44:7f:2e:a0:6a:72:92:3e:b3:b7:26:0b:e4:55:a8:
e7:f2:af:4d:c8:88:93:9c:b1:ad:df:f9:26:de:19:
94:cd:78:94:8f:3b:37:80:06:6f:bd:0d:c3:af:05:
0a:ab:cd:6d:78:b8:e2:9e:01:74:de:2b:97:47:a5:
a3:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:DF:61:A1:07:A0:9F:A8:53:B7:D4:0B:91:C3:4F:48:0A:4A:C6:13
X509v3 Authority Key Identifier:
keyid:E3:B3:59:56:A4:03:8A:09:38:CC:DA:85:59:2A:D5:31:E4:A8:83:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/47NZVqQDigk4zNqFWSrVMeSog60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/17bf85-e2c0-46f9-b0fb-07ae682c1262/1/B99hoQegn6hTt9QLkcNPSApKxhM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/17bf85-e2c0-46f9-b0fb-07ae682c1262/1/47NZVqQDigk4zNqFWSrVMeSog60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.24.0/22
IPv6:
2a0c:ba80::/29
Signature Algorithm: sha256WithRSAEncryption
95:ae:07:b9:d6:44:18:11:bf:96:c9:c3:9a:d3:64:bb:e9:50:
61:81:ee:23:d1:b0:da:24:78:28:94:cd:18:2a:36:e0:bc:51:
79:54:9f:ad:37:c9:a8:e5:84:e2:f1:c5:27:bd:82:a3:a1:85:
e6:ca:fc:60:b9:a7:82:b3:5d:85:66:5b:88:d9:4a:c6:79:21:
cb:54:1b:0f:54:69:0b:81:b2:73:a3:ed:55:24:f2:8b:52:fe:
0e:9c:03:41:a0:8b:60:50:a3:4a:97:91:7d:86:6a:e6:a8:2e:
ba:0a:93:a3:ab:22:ff:2b:d6:48:db:e6:c7:a3:90:54:eb:65:
42:7a:f4:08:4e:f0:83:91:6b:df:9b:f9:89:3f:24:0e:00:d4:
3f:bd:ec:fa:2e:36:73:bb:ab:7c:0c:b6:22:15:48:06:de:9c:
cb:1e:b7:bf:e5:9d:1f:63:b2:58:3b:fc:40:b6:6f:bc:05:27:
9c:f9:dc:b8:3e:12:f5:f9:66:e4:2c:47:61:4f:3a:73:d5:01:
b6:68:04:9e:ec:68:89:c1:c6:83:f0:dc:aa:37:0b:c9:af:cd:
2c:b0:52:8a:94:58:71:6b:6c:de:bd:86:12:28:b1:3f:71:18:
d5:c9:61:f5:66:d3:88:ee:0f:7b:8f:db:70:59:55:7c:0a:99:
49:7b:0d:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 09:37:21 2025 by rpki-client