Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/c12395-c0f8-4e05-8cb1-73a3d07d2c31/1/ik9rtf9qF0eV6jYkDDn9Ipi69Cs.roa
File: ik9rtf9qF0eV6jYkDDn9Ipi69Cs.roa (raw, json)
Hash identifier: GHjB+cWRo1WU6Vr1sqhEi+QvLxg98IrGExIB0xnDL64=
Subject key identifier: 8A:4F:6B:B5:FF:6A:17:47:95:EA:36:24:0C:39:FD:22:98:BA:F4:2B
Certificate issuer: /CN=5b7a905e25a4d5cccb2eebe4e2d5c3920819758e
Certificate serial: 064793DF
Authority key identifier: 5B:7A:90:5E:25:A4:D5:CC:CB:2E:EB:E4:E2:D5:C3:92:08:19:75:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W3qQXiWk1czLLuvk4tXDkggZdY4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/c12395-c0f8-4e05-8cb1-73a3d07d2c31/1/ik9rtf9qF0eV6jYkDDn9Ipi69Cs.roa
Signing time: Tue 10 May 2022 10:20:02 +0000
ROA not before: Tue 10 May 2022 10:20:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204650
IP address blocks: 185.110.253.0/24 maxlen: 24
185.110.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105354207 (0x64793df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b7a905e25a4d5cccb2eebe4e2d5c3920819758e
Validity
Not Before: May 10 10:20:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a4f6bb5ff6a174795ea36240c39fd2298baf42b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:67:cf:ca:26:c6:de:d4:31:b2:9b:17:16:5d:
74:f2:29:cb:49:1b:c6:3e:af:03:96:7c:de:40:6b:
91:53:b6:29:c8:82:a9:ec:bb:5c:43:63:be:41:90:
e9:ee:08:fc:91:bc:d0:ac:a8:1d:3c:08:e4:d4:6c:
d4:18:8c:f2:c6:c5:e7:d7:54:1f:30:05:27:14:45:
bd:5b:25:6c:63:10:09:b0:ab:45:ea:b4:1a:f0:df:
5a:19:d9:8f:09:85:65:4a:9b:0c:43:26:4f:4f:43:
a2:98:4b:02:83:14:4c:3f:8d:6d:71:30:a8:0c:60:
1a:c3:b9:d8:d6:24:ff:dc:57:d3:b0:7a:ad:39:8c:
d4:57:b8:84:f3:26:06:a0:d2:d6:f5:ec:65:46:51:
34:e7:e5:b1:eb:54:be:b0:bd:59:84:56:31:cb:db:
69:a8:90:e4:6e:52:d9:fa:2a:5a:c3:5f:79:fb:c7:
0a:7f:20:45:fd:88:f1:d3:05:17:c5:fb:eb:c0:57:
7e:71:0a:41:49:0c:70:66:81:0c:91:c6:44:ac:f9:
ec:21:eb:96:61:5c:40:87:d6:1f:d5:12:15:11:79:
3e:49:3f:0e:15:63:7b:3d:02:1d:cb:b4:af:d4:45:
6e:12:1a:6f:19:b5:31:96:ba:1b:7a:38:e0:23:7d:
6d:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:4F:6B:B5:FF:6A:17:47:95:EA:36:24:0C:39:FD:22:98:BA:F4:2B
X509v3 Authority Key Identifier:
keyid:5B:7A:90:5E:25:A4:D5:CC:CB:2E:EB:E4:E2:D5:C3:92:08:19:75:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W3qQXiWk1czLLuvk4tXDkggZdY4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/c12395-c0f8-4e05-8cb1-73a3d07d2c31/1/ik9rtf9qF0eV6jYkDDn9Ipi69Cs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/c12395-c0f8-4e05-8cb1-73a3d07d2c31/1/W3qQXiWk1czLLuvk4tXDkggZdY4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.110.253.0-185.110.254.255
Signature Algorithm: sha256WithRSAEncryption
2c:c7:64:17:4b:31:45:c7:ec:d3:c6:ba:67:93:dc:9a:99:a7:
08:ce:20:9e:ae:5f:2e:05:47:81:a7:89:ed:bc:e5:2d:8f:40:
b6:6f:90:0b:a0:c3:15:00:0c:e8:46:e2:60:3a:ca:11:7a:48:
27:08:d7:33:7f:fe:d6:d1:c7:15:34:6d:6d:85:2d:0e:58:e8:
56:76:51:ea:32:d8:75:bb:fe:51:1a:ac:51:db:86:00:08:eb:
5e:39:19:09:a1:2c:fd:2b:48:af:eb:07:35:c5:3f:07:f3:5e:
d5:6e:19:07:cd:cc:84:46:cb:6c:3a:e8:3e:b7:9e:a5:ca:9e:
66:bc:85:4b:52:12:89:0f:4a:a4:e6:99:00:71:1f:d8:80:ef:
eb:6b:3e:d1:7d:84:8e:61:49:70:0d:2c:b6:5f:e0:31:96:07:
de:71:8e:65:ad:28:94:6f:2b:f0:8a:7d:5d:9d:82:6e:f3:ae:
f1:e7:2d:40:cd:0c:72:a6:30:dc:33:06:49:64:d9:3c:e1:99:
90:c4:17:5b:1b:f3:7f:2e:e5:36:f3:19:62:a6:09:3b:ef:09:
c9:33:b0:18:ed:60:4b:54:f1:68:31:fe:c0:d5:b0:69:70:59:
da:87:40:cb:bc:78:85:f3:82:ed:37:35:f3:24:b8:d5:fa:01:
ba:1a:ae:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:27:00 2025 by rpki-client