![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/Imq4Gj5rvpg4BmGK02nIzCcGOZ4.roa
File: Imq4Gj5rvpg4BmGK02nIzCcGOZ4.roa (raw, json)
Hash identifier: nnE6MaqOZ+qbFNNOKhzfAa/4D9i1GzonxG6/5AUDJ6s=
Subject key identifier: 22:6A:B8:1A:3E:6B:BE:98:38:06:61:8A:D3:69:C8:CC:27:06:39:9E
Certificate issuer: /CN=2378a4a9c52325a85920809ba1a4d89e21c02f17
Certificate serial: 03E8A10D
Authority key identifier: 23:78:A4:A9:C5:23:25:A8:59:20:80:9B:A1:A4:D8:9E:21:C0:2F:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/Imq4Gj5rvpg4BmGK02nIzCcGOZ4.roa
Signing time: Sat 01 Jan 2022 03:55:57 +0000
ROA not before: Sat 01 Jan 2022 03:55:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205364
IP address blocks: 195.230.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65577229 (0x3e8a10d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2378a4a9c52325a85920809ba1a4d89e21c02f17
Validity
Not Before: Jan 1 03:55:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=226ab81a3e6bbe983806618ad369c8cc2706399e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:cf:9f:fc:f5:a6:4d:bf:8d:b5:6a:b3:f9:3f:
9a:25:c4:9a:29:0c:45:fd:1d:c5:a4:5b:bd:34:27:
85:bc:57:6b:65:ee:0c:8a:83:18:34:0f:a8:d8:59:
12:d1:ef:48:7c:b4:0c:e7:08:5d:ae:18:ae:b2:74:
e1:28:25:76:ae:ee:2f:5a:3b:9b:2d:ff:7e:c4:09:
04:4b:51:8e:1c:ed:a6:4d:11:64:d3:76:57:8b:a7:
b9:d6:c5:c6:f6:e0:a8:eb:0d:6f:1a:7a:4b:41:7a:
92:b8:44:5a:f0:da:c1:95:52:21:7c:25:dd:44:df:
b9:48:d4:c3:1a:73:24:62:a2:1e:81:04:e0:1c:36:
2a:d4:ff:4e:37:8d:ef:f6:f0:3c:c0:12:08:87:65:
94:a8:83:10:a1:0d:05:96:53:83:a7:37:ce:15:9c:
a7:a6:6c:7f:f5:fe:f5:53:3a:24:7e:9a:a3:1b:09:
61:4c:b6:20:81:05:e5:04:58:8d:61:15:9b:9b:03:
7d:a1:f4:cd:41:2d:5b:d9:c7:73:76:43:01:10:7c:
6b:c9:51:c9:85:31:f5:86:7e:52:a6:5f:00:d4:53:
40:1d:95:a5:94:5f:8b:bb:0f:d7:4e:89:b2:10:c3:
ce:5c:6b:ed:91:26:95:45:03:5a:56:ea:f1:05:4a:
eb:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:6A:B8:1A:3E:6B:BE:98:38:06:61:8A:D3:69:C8:CC:27:06:39:9E
X509v3 Authority Key Identifier:
keyid:23:78:A4:A9:C5:23:25:A8:59:20:80:9B:A1:A4:D8:9E:21:C0:2F:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/Imq4Gj5rvpg4BmGK02nIzCcGOZ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.230.148.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:b5:66:23:04:2e:3b:35:20:01:50:8b:ce:30:5b:fd:ae:b3:
8e:9d:a0:86:b7:76:8b:99:36:e5:ab:ad:72:aa:d2:b3:04:2e:
63:22:1f:73:19:9b:ed:a6:bb:d3:4c:0e:9e:fb:29:ea:ce:b9:
b4:fa:58:2b:e6:eb:ea:70:07:dd:46:91:cf:d0:9a:2e:a3:40:
24:8e:fb:01:de:cd:70:27:37:f2:94:d2:27:b8:0f:2d:66:95:
88:89:96:46:2a:4d:a9:80:5b:54:7b:0d:0f:40:c9:39:04:f6:
ca:9a:6f:71:c3:04:6a:34:c3:6e:44:4b:11:49:93:a7:1c:b0:
03:9f:1a:48:55:c8:3a:59:58:81:0d:f5:a0:28:77:47:6f:05:
00:84:05:b6:96:1c:2a:3b:f5:20:b7:fa:6e:dd:38:3c:a5:d9:
cb:5f:1a:c5:3c:11:94:64:fd:b9:b6:95:95:42:18:4d:6a:84:
ee:6d:ec:bb:4f:01:68:0f:cd:c4:bc:15:36:c1:22:90:77:cb:
bc:33:3e:c5:85:0c:c1:08:b7:e3:29:bd:e0:1a:bd:bc:09:8b:
bd:31:e7:ab:c9:40:a6:fe:de:6b:99:ea:eb:6a:4c:bc:4c:d6:
2e:3b:13:64:91:1f:e9:45:27:1a:20:e8:56:5e:ad:36:51:20:
e7:a1:67:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:47 2024 by rpki-client on console-fra.rpki-client.org