Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/cba0d3-5944-4747-8835-bed0567efa6b/1/F4z_E8gIwQGRZVyr5A3VRHELlVw.roa
File: F4z_E8gIwQGRZVyr5A3VRHELlVw.roa (raw, json)
Hash identifier: bPirCxy3sTCiqvPHOWyQZ0LlDiv9Z1NIAjOedQgABKg=
Subject key identifier: 17:8C:FF:13:C8:08:C1:01:91:65:5C:AB:E4:0D:D5:44:71:0B:95:5C
Certificate issuer: /CN=773be7cf3252a68975d5e2245898c03c4fb60dda
Certificate serial: 0967DE06
Authority key identifier: 77:3B:E7:CF:32:52:A6:89:75:D5:E2:24:58:98:C0:3C:4F:B6:0D:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dzvnzzJSpol11eIkWJjAPE-2Ddo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/cba0d3-5944-4747-8835-bed0567efa6b/1/F4z_E8gIwQGRZVyr5A3VRHELlVw.roa
Signing time: Sat 01 Jan 2022 11:01:59 +0000
ROA not before: Sat 01 Jan 2022 11:01:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51142
IP address blocks: 185.189.211.0/24 maxlen: 24
185.189.210.0/24 maxlen: 24
185.189.209.0/24 maxlen: 24
185.189.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157801990 (0x967de06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=773be7cf3252a68975d5e2245898c03c4fb60dda
Validity
Not Before: Jan 1 11:01:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=178cff13c808c10191655cabe40dd544710b955c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:54:ef:8c:cf:8b:98:29:0a:2a:7f:fd:68:f2:
d4:0c:f1:82:40:9e:ff:5f:9a:31:d6:cd:91:b9:d9:
09:f4:09:16:eb:bf:d4:14:73:3c:6e:20:59:e9:6f:
64:2e:ac:b6:fb:c2:e1:d7:65:4d:dc:d0:11:e6:cd:
cc:5c:7d:d8:2a:a4:49:a8:14:ea:0c:65:3a:05:eb:
a7:4b:aa:ff:bb:7d:7e:23:78:02:1c:ae:07:2e:b9:
16:7b:38:d5:98:22:b8:e7:d5:9f:97:ba:0a:30:cb:
62:f4:a1:c3:4a:b6:02:fc:4d:4c:00:ab:9e:b9:62:
11:8a:87:dd:80:0b:17:0a:4a:2c:36:6a:f6:05:e2:
3f:25:d3:3d:77:3b:8b:7b:35:4c:51:6a:b7:00:89:
ba:f5:74:e1:3d:10:c9:be:e7:33:7b:77:fa:e3:42:
02:7d:31:a3:e1:74:da:db:ef:6e:ec:8d:0d:7c:c7:
65:2d:56:25:5a:66:84:a1:88:b9:c5:e7:a3:28:db:
d0:63:00:f6:bf:59:df:3d:f1:c6:6b:94:cf:70:70:
42:c0:2f:89:2d:fb:dd:e4:b9:2f:93:ad:5a:24:02:
e2:61:a2:24:95:02:22:56:6e:d6:c9:8c:91:2b:4c:
7c:9e:7a:62:cb:69:87:43:c9:99:ae:43:70:6f:fc:
dd:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:8C:FF:13:C8:08:C1:01:91:65:5C:AB:E4:0D:D5:44:71:0B:95:5C
X509v3 Authority Key Identifier:
keyid:77:3B:E7:CF:32:52:A6:89:75:D5:E2:24:58:98:C0:3C:4F:B6:0D:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dzvnzzJSpol11eIkWJjAPE-2Ddo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/cba0d3-5944-4747-8835-bed0567efa6b/1/F4z_E8gIwQGRZVyr5A3VRHELlVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/cba0d3-5944-4747-8835-bed0567efa6b/1/dzvnzzJSpol11eIkWJjAPE-2Ddo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.189.208.0/22
Signature Algorithm: sha256WithRSAEncryption
38:2a:6c:34:51:ea:6f:ff:21:28:8d:4f:4e:a3:46:12:d3:88:
8f:26:0e:a2:6a:d2:81:7d:77:33:88:58:52:b3:a4:cd:dd:70:
14:42:0c:11:da:60:89:9a:1f:12:c6:e6:ed:ee:dd:97:d0:4d:
dc:ab:c9:c3:5b:f9:b8:c8:53:c4:d8:1c:7f:f1:cc:fa:5a:19:
1d:2d:1f:3e:ab:98:ff:6f:60:d4:1f:11:3a:7b:40:e1:46:b8:
33:3d:f4:37:a3:c2:f1:05:9d:d3:2e:25:69:a1:bd:53:fb:72:
00:c0:ac:4d:99:f6:9b:1c:1d:e2:76:7a:ff:04:72:84:ac:58:
24:41:cd:5b:f3:43:f8:32:16:c9:b9:ff:bc:4d:2e:2d:69:c7:
12:c9:26:99:20:fa:1d:67:97:9e:36:62:bf:89:c4:39:8b:3b:
6b:56:d3:0d:d2:39:d0:83:4d:03:cd:fd:fe:fc:18:13:ee:2c:
26:bc:cd:47:8c:4c:50:98:7f:e6:23:18:8a:e2:51:fd:b2:1c:
9e:ac:ef:e4:a0:25:fc:91:28:99:30:21:9a:42:9f:77:b4:b6:
4b:3b:9c:99:5c:4f:6a:d8:ef:07:a0:3a:3d:f3:ce:19:8f:be:
ce:23:e6:d4:6a:06:f5:cc:34:b8:d0:99:a8:77:81:b0:bd:79:
e8:c3:fa:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:49:20 2025 by rpki-client