Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/0bf5e9-d910-4037-8d37-5d39d5018f78/1/RIXdCPd4HNkRSHDd4ABmDbBJcVU.roa
File: RIXdCPd4HNkRSHDd4ABmDbBJcVU.roa (raw, json)
Hash identifier: crdHBwdJBrpA1TigmWfo3zcPEr1yPgcRlWtdqA8kNKs=
Subject key identifier: 44:85:DD:08:F7:78:1C:D9:11:48:70:DD:E0:00:66:0D:B0:49:71:55
Certificate issuer: /CN=24051080400940ff47c807dd6742becbb4edf22d
Certificate serial: 018CC64AED4B4DCF7F845871837E077BC6F2
Authority key identifier: 24:05:10:80:40:09:40:FF:47:C8:07:DD:67:42:BE:CB:B4:ED:F2:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JAUQgEAJQP9HyAfdZ0K-y7Tt8i0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/0bf5e9-d910-4037-8d37-5d39d5018f78/1/RIXdCPd4HNkRSHDd4ABmDbBJcVU.roa
Signing time: Mon 01 Jan 2024 18:30:48 +0000
ROA not before: Mon 01 Jan 2024 18:30:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21388
IP address blocks: 85.119.55.0/24 maxlen: 24
85.119.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:ed:4b:4d:cf:7f:84:58:71:83:7e:07:7b:c6:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24051080400940ff47c807dd6742becbb4edf22d
Validity
Not Before: Jan 1 18:30:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4485dd08f7781cd9114870dde000660db0497155
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:0c:81:0b:75:4f:bb:f2:c8:9f:1e:40:79:d0:
16:fc:ed:8f:e0:cd:b9:7e:69:3c:cb:22:0f:9c:69:
30:86:55:84:35:95:91:21:d7:c8:67:04:c1:60:4f:
2f:04:43:e1:eb:61:fb:b6:f8:de:84:dd:2e:39:66:
2f:f0:73:e3:5f:94:8b:f3:b3:58:74:75:f9:20:17:
e6:1e:7c:9c:82:4e:93:57:95:01:fa:b6:ea:13:35:
cf:82:fd:2c:ae:3b:82:37:e0:8a:9a:6a:04:6a:9c:
d8:be:f4:f4:5c:3f:c4:73:01:ab:83:40:49:24:d2:
67:a7:73:29:c4:ff:2e:29:50:d0:9b:52:56:c2:9d:
2c:96:3c:cd:d6:ef:b0:2d:07:46:a0:5a:22:1e:f7:
92:1f:65:14:84:38:53:29:5e:e6:bd:07:72:c3:68:
c3:d3:4f:6b:11:4d:c9:96:49:0f:fe:28:b8:5e:45:
d7:79:99:c2:c1:41:61:47:2d:ca:a3:f7:64:40:21:
df:3f:dd:e0:db:d0:ba:82:1d:2d:e9:ce:98:09:1e:
93:ec:07:c3:88:f5:b5:64:5d:33:17:a5:cc:25:ed:
ca:96:86:a9:a7:c7:63:0e:3c:82:dd:b7:12:e7:6b:
77:8f:fe:07:29:ca:c4:2a:de:cc:bf:e9:db:67:c5:
f5:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:85:DD:08:F7:78:1C:D9:11:48:70:DD:E0:00:66:0D:B0:49:71:55
X509v3 Authority Key Identifier:
keyid:24:05:10:80:40:09:40:FF:47:C8:07:DD:67:42:BE:CB:B4:ED:F2:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JAUQgEAJQP9HyAfdZ0K-y7Tt8i0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/0bf5e9-d910-4037-8d37-5d39d5018f78/1/RIXdCPd4HNkRSHDd4ABmDbBJcVU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/0bf5e9-d910-4037-8d37-5d39d5018f78/1/JAUQgEAJQP9HyAfdZ0K-y7Tt8i0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.119.53.0/24
85.119.55.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:19:dc:e6:5f:29:82:a7:f0:d5:f7:4b:d7:33:4d:d5:35:ad:
59:82:80:25:85:97:6c:c6:21:87:f7:36:6e:63:67:4a:96:5e:
f9:04:a0:1d:e6:5a:f0:3d:96:3a:85:22:ac:e6:41:69:2a:c6:
14:b6:67:0b:ec:37:02:bd:8f:85:7e:6b:d9:01:08:9e:83:ed:
c5:ae:f7:ed:f4:c5:ae:aa:53:4b:2a:4c:ed:00:ba:ae:1e:4f:
35:9e:b4:30:49:a5:5a:0b:55:7c:cb:87:00:22:df:da:92:24:
eb:67:1b:2e:08:6b:bb:23:00:23:9a:57:79:46:07:63:5c:d6:
15:8f:0e:4e:c8:4b:8d:36:63:46:a9:c3:9b:31:68:5b:62:3f:
5d:78:28:e3:a4:5b:b5:c6:b0:b4:b9:f7:a0:60:7e:bc:bf:2b:
b1:f7:7b:8e:9c:20:57:be:f4:53:0a:fb:1f:68:0e:d7:7b:56:
0e:db:cb:39:a2:96:c2:cf:b5:19:c8:4e:ad:2b:da:a7:d5:e1:
7d:42:8e:7e:48:4d:1e:3c:04:0b:8d:3f:bf:51:2a:06:d6:c8:
89:2d:8e:17:e1:62:74:38:9a:25:3f:0b:ee:4a:df:26:ac:b1:
0b:c8:03:d5:ca:d7:18:76:c9:42:75:f6:3a:05:e6:2b:a1:c3:
8b:f8:f1:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 05:22:02 2025 by rpki-client