Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/gmCNTz4fXw8xcrlmETrXJN-GnNU.roa
File: gmCNTz4fXw8xcrlmETrXJN-GnNU.roa (raw, json)
Hash identifier: AXf2Pn92v7k8vEdLTvL/eA2YP7KxxoHt5wolvbkMUxA=
Subject key identifier: 82:60:8D:4F:3E:1F:5F:0F:31:72:B9:66:11:3A:D7:24:DF:86:9C:D5
Certificate issuer: /CN=a85310f503137ae8b35d4f329f46f069dd703815
Certificate serial: 8062D3
Authority key identifier: A8:53:10:F5:03:13:7A:E8:B3:5D:4F:32:9F:46:F0:69:DD:70:38:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/gmCNTz4fXw8xcrlmETrXJN-GnNU.roa
Signing time: Fri 08 Apr 2022 08:53:32 +0000
ROA not before: Fri 08 Apr 2022 08:53:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206961
IP address blocks: 185.197.141.0/24 maxlen: 24
185.197.143.0/24 maxlen: 24
185.197.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8413907 (0x8062d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a85310f503137ae8b35d4f329f46f069dd703815
Validity
Not Before: Apr 8 08:53:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82608d4f3e1f5f0f3172b966113ad724df869cd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:32:6d:4c:96:cd:89:e1:c2:56:45:d3:6c:f0:
16:71:3c:5c:35:bb:29:6c:56:27:2e:1f:4a:69:a0:
d7:95:5a:81:d2:4d:29:e1:ef:8a:2b:36:b0:fa:d5:
00:e0:a5:9e:c7:a3:d5:a7:80:2c:4d:d5:8b:ae:0e:
aa:fe:2c:f4:27:7a:55:63:7b:49:6b:a0:56:c8:bd:
88:8d:86:06:72:b7:82:f9:54:bd:fd:4f:bb:ea:20:
3f:df:1a:36:b0:85:4e:5d:e5:f0:a3:f8:4a:9f:26:
1e:6f:23:ac:16:f9:11:b8:39:f0:d3:ef:39:4b:6e:
e6:45:aa:52:49:cb:9e:dc:25:d5:20:5b:50:7b:c9:
82:fb:b3:d9:b0:9c:20:4f:b2:ad:e4:c5:2a:5a:13:
09:ab:28:43:85:13:50:89:22:81:1d:98:df:da:3a:
86:91:e1:b6:2e:03:8b:60:f2:51:03:e9:2c:cd:03:
0b:34:a9:2f:0e:b5:7f:3e:b5:1e:a9:1d:de:98:3a:
84:b6:a8:8c:c4:a1:46:95:e6:88:ca:a0:93:91:1c:
8b:77:08:76:e1:31:55:17:4e:29:8b:5d:99:c0:cb:
5d:d6:f8:46:22:ee:a3:9f:36:a6:e4:ac:37:e1:f5:
a5:5e:61:e0:f4:4c:19:7f:cb:43:10:27:83:93:4d:
05:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:60:8D:4F:3E:1F:5F:0F:31:72:B9:66:11:3A:D7:24:DF:86:9C:D5
X509v3 Authority Key Identifier:
keyid:A8:53:10:F5:03:13:7A:E8:B3:5D:4F:32:9F:46:F0:69:DD:70:38:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/gmCNTz4fXw8xcrlmETrXJN-GnNU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/qFMQ9QMTeuizXU8yn0bwad1wOBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.197.140.0/23
185.197.143.0/24
Signature Algorithm: sha256WithRSAEncryption
86:96:fd:46:c0:70:3b:b1:89:a3:52:9b:27:62:f3:68:db:50:
5f:71:29:de:37:1d:da:46:56:ba:2b:f8:db:c9:9f:22:20:53:
a2:d1:1e:5a:d2:61:e7:09:63:05:0d:24:18:b9:c0:74:8b:76:
cd:92:73:ea:81:65:0b:7c:f9:e8:9a:8e:5d:35:c5:3c:30:79:
06:75:ff:e8:db:e2:ac:e1:5b:ff:ac:f0:80:b4:8d:78:82:33:
37:63:be:b0:bb:72:8a:1a:0e:52:66:47:fc:ea:34:c3:b1:46:
4e:bf:8b:ff:77:06:98:37:bf:97:d2:91:ef:cc:9d:f0:5a:c7:
e8:0d:a4:cf:96:26:8c:df:74:8f:51:87:a7:13:e2:11:c3:d2:
ad:2d:0e:b9:f9:a6:e7:35:42:9c:32:bb:39:14:a2:fb:00:cc:
c3:ec:d8:0d:2d:bb:8f:b0:4f:02:fd:75:3b:7c:f1:4d:0d:cb:
ae:65:63:bc:95:c7:ef:dd:5d:80:7d:4c:ef:33:3b:a0:92:2e:
07:cd:57:f0:1e:74:11:1e:ee:71:62:9d:f7:ab:b5:08:b7:6a:
bf:21:af:82:b8:d3:d8:d8:6c:a5:41:63:de:d2:8d:19:09:0b:
fa:21:0c:a7:01:dc:22:e1:ef:9d:4e:f0:b1:a7:82:e9:09:8c:
3e:26:5c:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:14:52 2025 by rpki-client