Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/c3069e-5ffc-4c8c-91dc-31d197f139d8/1/wEVUsarybhBdFjTfMEyVGnzLzdw.roa
File: wEVUsarybhBdFjTfMEyVGnzLzdw.roa (raw, json)
Hash identifier: vYOQxLuw+AAo/TPfY7reI369FFDwq4qH7STRXyNWDj4=
Subject key identifier: C0:45:54:B1:AA:F2:6E:10:5D:16:34:DF:30:4C:95:1A:7C:CB:CD:DC
Certificate issuer: /CN=e875464e89816ef00b0369502018a7e59ce2d36c
Certificate serial: 043E60B6
Authority key identifier: E8:75:46:4E:89:81:6E:F0:0B:03:69:50:20:18:A7:E5:9C:E2:D3:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6HVGTomBbvALA2lQIBin5Zzi02w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/c3069e-5ffc-4c8c-91dc-31d197f139d8/1/wEVUsarybhBdFjTfMEyVGnzLzdw.roa
Signing time: Sat 01 Jan 2022 04:01:32 +0000
ROA not before: Sat 01 Jan 2022 04:01:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198947
IP address blocks: 185.22.180.0/22 maxlen: 22
2a00:65e0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71196854 (0x43e60b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e875464e89816ef00b0369502018a7e59ce2d36c
Validity
Not Before: Jan 1 04:01:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c04554b1aaf26e105d1634df304c951a7ccbcddc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:5f:8e:2e:71:7f:50:66:d6:6b:4c:7c:4c:38:
65:0d:31:e7:b4:f6:c9:5a:f1:26:be:19:b9:19:c0:
ce:fb:87:d0:2f:9d:bd:55:be:b5:94:61:64:f3:30:
9f:fa:2a:83:4a:3d:b7:b9:71:a9:1e:82:ca:27:dd:
e5:90:eb:55:f1:e1:cf:2a:75:08:d1:b5:b5:44:73:
da:89:24:74:a4:c1:b3:b7:fe:24:27:38:25:5f:74:
5e:77:88:19:2e:50:d5:3c:e2:72:2b:6b:89:1d:9a:
c7:68:b7:b5:01:4d:af:97:09:50:01:99:03:39:d1:
b5:e1:5b:e7:0a:ee:00:99:9f:4f:17:de:82:95:40:
47:e1:5b:1d:71:e7:ad:80:91:d0:da:65:0f:ec:01:
b4:22:c2:88:13:bc:48:a8:05:50:2b:79:2f:b4:76:
56:4e:83:ed:da:e6:86:4c:81:8a:1f:c2:c5:03:2b:
64:ac:b9:07:4c:20:4a:ef:d0:b3:d0:f4:a6:6e:b1:
a9:70:9d:f2:5d:06:22:86:51:5e:fc:20:72:7d:01:
ab:67:7a:6a:98:af:fb:8a:17:33:0b:2d:f5:a8:35:
58:ed:4b:3b:fe:3a:f8:8b:90:4b:23:1f:96:3d:98:
bb:29:79:77:78:a7:f5:87:f4:52:16:e5:94:c3:f6:
13:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:45:54:B1:AA:F2:6E:10:5D:16:34:DF:30:4C:95:1A:7C:CB:CD:DC
X509v3 Authority Key Identifier:
keyid:E8:75:46:4E:89:81:6E:F0:0B:03:69:50:20:18:A7:E5:9C:E2:D3:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6HVGTomBbvALA2lQIBin5Zzi02w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/c3069e-5ffc-4c8c-91dc-31d197f139d8/1/wEVUsarybhBdFjTfMEyVGnzLzdw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/c3069e-5ffc-4c8c-91dc-31d197f139d8/1/6HVGTomBbvALA2lQIBin5Zzi02w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.22.180.0/22
IPv6:
2a00:65e0::/32
Signature Algorithm: sha256WithRSAEncryption
2a:d5:bf:95:52:c5:c4:5b:a4:11:f5:62:e2:d9:90:6d:a1:8b:
79:e2:21:c8:e4:98:10:bf:c5:7b:b8:24:ea:46:5d:7f:0f:49:
2b:2a:db:e1:8d:63:4d:26:8f:54:7e:dc:d0:04:48:f9:72:33:
93:ae:e6:a3:6b:ff:ce:84:3e:3d:0f:ee:09:ac:d1:51:85:e8:
32:6b:82:b6:3b:41:75:cf:65:b2:e2:a1:43:f5:0f:a9:d5:aa:
46:e1:1f:da:61:2c:18:3c:ce:32:8f:40:94:03:43:6b:95:3b:
af:b3:fd:a3:0d:f9:14:92:b9:e1:03:b7:87:b5:32:a0:2e:7e:
f3:fb:a1:81:cf:65:1d:5d:32:33:62:f6:74:8a:69:78:af:a8:
03:1f:2a:aa:1a:ec:1c:4b:6e:2d:ea:2d:9c:47:92:77:04:44:
36:e5:9c:da:77:21:0e:fd:85:d5:c7:40:8a:ad:7d:cd:71:c8:
f4:cd:7c:a7:7d:20:60:6e:27:c2:65:63:ee:cc:f8:e4:a7:6f:
18:6c:52:13:c5:65:35:b7:7d:c5:b4:27:b3:dc:5f:a1:f9:30:
88:b8:4d:a9:3b:2b:f7:fd:0a:30:08:ca:69:08:bf:7c:24:25:
74:fc:7e:b2:a7:2a:d2:da:93:6e:74:cb:ff:bd:50:0a:f3:ff:
89:85:87:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:03:36 2025 by rpki-client