Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/dbf997-cdba-4930-8553-fd0989487b16/1/i_N6ZwwdfPvhC-Go0ZxVDUJq8PE.roa
File: i_N6ZwwdfPvhC-Go0ZxVDUJq8PE.roa (raw, json)
Hash identifier: X+qOFNiCz4nYXkfV33vUeTZSM9VDGdED5wwNIqPpMAE=
Subject key identifier: 8B:F3:7A:67:0C:1D:7C:FB:E1:0B:E1:A8:D1:9C:55:0D:42:6A:F0:F1
Certificate issuer: /CN=49e305d79cacdbefbf1e832b34d7c06bbb5f627a
Certificate serial: 1B026F82
Authority key identifier: 49:E3:05:D7:9C:AC:DB:EF:BF:1E:83:2B:34:D7:C0:6B:BB:5F:62:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeMF15ys2--_HoMrNNfAa7tfYno.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/dbf997-cdba-4930-8553-fd0989487b16/1/i_N6ZwwdfPvhC-Go0ZxVDUJq8PE.roa
Signing time: Sat 01 Jan 2022 14:02:49 +0000
ROA not before: Sat 01 Jan 2022 14:02:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60868
IP address blocks: 185.25.32.0/22 maxlen: 24
2a00:77e0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 453144450 (0x1b026f82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e305d79cacdbefbf1e832b34d7c06bbb5f627a
Validity
Not Before: Jan 1 14:02:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8bf37a670c1d7cfbe10be1a8d19c550d426af0f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:9a:f1:a5:99:ea:6a:f2:b5:88:a8:da:c7:59:
4a:42:ad:b8:84:c8:1f:aa:25:5b:70:b3:df:a9:eb:
f6:80:02:20:d0:08:13:e9:c5:f7:4c:3e:ba:8a:19:
c7:d6:d5:56:ff:82:4d:ae:6a:f8:86:e9:d1:47:eb:
b2:c9:08:dc:0d:cf:78:da:67:ab:48:f1:2d:9a:5d:
34:9e:68:e4:cd:e2:a7:0b:b1:ad:09:64:83:23:c0:
e0:54:76:eb:9d:a8:25:f0:85:52:52:04:56:38:38:
43:9e:5a:da:c4:55:4c:d9:e3:0b:03:9b:a7:9d:53:
d4:48:3a:8d:45:ce:b4:9b:58:d9:38:0d:f2:1b:74:
00:d6:76:81:9a:a1:3e:fd:dc:35:38:59:13:ba:5e:
43:d4:aa:e6:5f:63:32:f2:cd:11:30:34:d2:fc:74:
7d:8a:ae:60:be:79:08:9b:90:ba:06:26:a7:77:e3:
fc:90:51:ff:19:01:1f:df:00:52:8d:5c:4a:69:af:
33:8e:21:62:77:53:32:28:8b:92:9c:54:c3:5c:95:
b3:51:c1:fa:90:dd:77:87:2e:d2:1e:d9:ee:2f:f2:
27:e6:b7:12:70:93:3b:71:73:3e:8e:c9:e8:7d:e1:
04:8c:dd:be:cf:67:e7:36:47:63:e1:c6:95:54:5f:
f2:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:F3:7A:67:0C:1D:7C:FB:E1:0B:E1:A8:D1:9C:55:0D:42:6A:F0:F1
X509v3 Authority Key Identifier:
keyid:49:E3:05:D7:9C:AC:DB:EF:BF:1E:83:2B:34:D7:C0:6B:BB:5F:62:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeMF15ys2--_HoMrNNfAa7tfYno.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/dbf997-cdba-4930-8553-fd0989487b16/1/i_N6ZwwdfPvhC-Go0ZxVDUJq8PE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/dbf997-cdba-4930-8553-fd0989487b16/1/SeMF15ys2--_HoMrNNfAa7tfYno.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.25.32.0/22
IPv6:
2a00:77e0::/32
Signature Algorithm: sha256WithRSAEncryption
27:3a:48:94:c8:29:85:5b:8c:93:9f:ae:72:ba:4d:f5:79:d3:
59:c0:59:02:18:1d:1a:8f:02:85:f6:b3:74:31:cf:51:4c:45:
02:c8:c5:6c:44:80:9b:2a:8a:f0:a7:1e:ce:f5:6b:c2:0a:c7:
d2:c6:6f:ad:24:cc:d4:ae:15:19:da:65:9d:f5:50:69:5e:59:
4a:bc:9e:b0:53:13:a3:5e:17:f9:63:9c:cf:68:84:b4:9c:2c:
16:2b:7c:07:de:7e:27:1a:ba:7c:97:3e:9b:cd:00:b9:34:8f:
93:52:46:ab:09:89:e7:41:ee:f9:98:92:3a:68:18:ac:56:ee:
d4:77:54:6c:42:ce:82:a6:38:90:6b:82:70:77:f7:d6:36:39:
88:1e:3b:54:8e:c6:a3:d7:99:69:4a:65:b7:d0:39:70:2d:20:
ff:9e:3d:de:00:20:30:5e:a1:ba:f8:c8:de:42:ce:93:c7:78:
67:8d:ea:cc:ad:ac:18:10:5a:e4:a1:fd:f6:ae:c0:29:4c:ef:
db:d9:20:72:7d:cd:dd:73:a6:02:b0:2c:86:46:49:11:f4:68:
72:38:00:f6:93:f3:02:9d:97:fe:e9:86:64:8c:d4:09:e2:93:
74:ea:a0:ea:d3:c6:b0:ca:5a:69:59:ce:e2:82:37:d6:38:5f:
c3:21:a9:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:25:12 2025 by rpki-client