![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/f52cea-3f41-482b-8ce8-2e2548310df3/1/UaPm7HEfaYuH6r-Uihnab2oCwpo.roa
File: UaPm7HEfaYuH6r-Uihnab2oCwpo.roa (raw, json)
Hash identifier: zChw2iX1wjR2MIbctn7OOuK5GIMswtzo8mZ4AY7d1v4=
Subject key identifier: 51:A3:E6:EC:71:1F:69:8B:87:EA:BF:94:8A:19:DA:6F:6A:02:C2:9A
Certificate issuer: /CN=bb61df71f97461c6b3b4548fdcfecd77b679030f
Certificate serial: 3285D894
Authority key identifier: BB:61:DF:71:F9:74:61:C6:B3:B4:54:8F:DC:FE:CD:77:B6:79:03:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u2Hfcfl0YcaztFSP3P7Nd7Z5Aw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/f52cea-3f41-482b-8ce8-2e2548310df3/1/UaPm7HEfaYuH6r-Uihnab2oCwpo.roa
Signing time: Sat 01 Jan 2022 05:02:17 +0000
ROA not before: Sat 01 Jan 2022 05:02:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41678
IP address blocks: 185.4.12.0/24 maxlen: 24
185.4.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 847632532 (0x3285d894)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb61df71f97461c6b3b4548fdcfecd77b679030f
Validity
Not Before: Jan 1 05:02:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51a3e6ec711f698b87eabf948a19da6f6a02c29a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:5b:43:96:5a:84:c5:86:97:0b:60:bd:77:92:
1d:4f:26:b2:e4:d4:b9:71:79:e3:ec:b3:e0:3f:cf:
b6:e2:5d:c1:05:1b:2a:e9:15:ed:6f:8a:25:68:4e:
bd:33:01:f0:f2:05:5b:e6:7a:b8:a8:b3:6e:5e:a9:
30:7a:ee:e3:a4:7b:a5:b8:58:3d:a9:61:e4:ce:05:
68:2f:d0:0a:97:40:86:74:ae:2f:b8:d7:fe:3b:51:
e2:73:76:ad:63:a8:66:13:5c:a1:b4:6a:53:94:d4:
ce:77:03:b9:29:12:c8:a2:b4:c9:13:2d:a0:1d:ed:
00:51:83:19:1b:15:e7:61:ba:1f:93:b8:6c:af:c0:
eb:47:d0:ba:bc:76:80:83:03:1a:ac:7f:b9:23:b3:
22:f4:98:66:a2:ae:23:6f:c4:f4:22:24:86:bc:fc:
72:f1:4c:d8:f3:b4:8b:26:64:1d:ec:b2:4b:a5:6c:
39:75:ce:74:d7:3e:a4:fd:69:05:72:20:e6:14:23:
17:df:bf:e6:20:7c:5c:05:62:d3:86:ca:cd:11:12:
63:18:74:f3:fb:9a:01:dc:1e:6a:c2:f0:5c:9f:bc:
0f:f9:6b:2c:0b:36:7c:98:51:09:6e:4e:55:d7:8a:
88:ad:f0:33:bc:49:3c:1d:02:01:13:b1:0c:67:09:
26:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:A3:E6:EC:71:1F:69:8B:87:EA:BF:94:8A:19:DA:6F:6A:02:C2:9A
X509v3 Authority Key Identifier:
keyid:BB:61:DF:71:F9:74:61:C6:B3:B4:54:8F:DC:FE:CD:77:B6:79:03:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u2Hfcfl0YcaztFSP3P7Nd7Z5Aw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/f52cea-3f41-482b-8ce8-2e2548310df3/1/UaPm7HEfaYuH6r-Uihnab2oCwpo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/f52cea-3f41-482b-8ce8-2e2548310df3/1/u2Hfcfl0YcaztFSP3P7Nd7Z5Aw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.4.12.0/23
Signature Algorithm: sha256WithRSAEncryption
98:61:9f:df:28:59:ea:79:4f:0e:cf:d4:3d:33:fb:50:02:c5:
1a:a0:cb:5a:2b:4b:21:f7:f4:5b:75:7b:59:f8:d3:be:51:48:
ae:b6:d3:70:b9:41:29:2a:14:cb:75:fa:5c:ff:67:3a:50:41:
1f:df:26:cb:95:da:fd:de:de:29:2d:99:e8:93:46:44:9c:77:
82:4e:12:e0:b8:4f:ec:ad:72:d7:71:19:55:0d:de:85:d2:f8:
e7:2b:b4:29:bd:44:51:0d:9a:16:3f:13:be:22:53:0b:94:05:
5e:4c:a0:36:01:ce:75:7d:dd:e6:60:e6:08:e2:06:d2:57:fe:
a3:e7:65:fc:89:ad:a4:fb:23:e7:c2:e7:ad:5b:24:4a:7a:85:
03:48:5d:56:99:66:97:74:75:dc:8c:4a:f3:67:6c:18:b6:58:
11:9d:a2:30:ba:8f:17:e9:27:22:c9:31:7f:f4:52:71:90:e2:
fb:71:10:58:fc:4c:ae:a1:f2:0f:18:09:3a:f1:4a:7f:1e:95:
c5:6f:21:d6:64:59:77:95:d8:b3:40:fb:33:55:8c:e0:ab:1f:
db:83:08:be:04:31:c9:ae:c8:c0:49:d2:fc:02:ea:55:7c:d2:
c7:a0:bd:d7:78:5c:65:42:38:fe:f1:78:69:2f:70:d5:27:2b:
1e:38:62:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:02 2025 by rpki-client