Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4tTh2YWTaP1PAaxHqQY3JWbV-lk.roa
File: 4tTh2YWTaP1PAaxHqQY3JWbV-lk.roa (raw, json)
Hash identifier: NZ8DBhMZevEFxwAI2CdEVIu4rLb0fA4eDDa9z7crRLA=
Subject key identifier: E2:D4:E1:D9:85:93:68:FD:4F:01:AC:47:A9:06:37:25:66:D5:FA:59
Certificate issuer: /CN=e24a03f80f62da866352e1990997f1d46ceb2fb0
Certificate serial: 0361B220
Authority key identifier: E2:4A:03:F8:0F:62:DA:86:63:52:E1:99:09:97:F1:D4:6C:EB:2F:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4tTh2YWTaP1PAaxHqQY3JWbV-lk.roa
Signing time: Sat 01 Jan 2022 07:02:01 +0000
ROA not before: Sat 01 Jan 2022 07:02:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206280
IP address blocks: 185.190.252.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56734240 (0x361b220)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e24a03f80f62da866352e1990997f1d46ceb2fb0
Validity
Not Before: Jan 1 07:02:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e2d4e1d9859368fd4f01ac47a906372566d5fa59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:40:3c:31:c5:38:56:fa:23:a7:1c:b0:da:c3:
a7:5f:f1:f0:df:a8:1c:d3:1c:d3:21:83:36:b3:0f:
39:c2:fc:c6:b9:cc:c5:74:07:3e:97:3f:ab:a0:c4:
00:e2:62:9a:a2:f3:a0:40:f1:26:fb:dc:c6:fa:25:
5b:1f:98:31:31:86:de:05:dc:ef:2d:30:2b:3b:e0:
33:24:9c:7c:ab:58:e5:17:40:bf:11:14:ad:46:59:
65:aa:7b:ab:bf:1c:9a:d1:30:8f:45:e0:9f:cf:8c:
37:2a:23:d3:1b:19:03:b2:37:f5:4b:2a:84:0f:e5:
26:a7:24:9d:8d:1b:95:ef:8e:99:22:8a:25:82:9a:
9c:dc:d2:28:23:6f:ee:4d:0b:8d:50:33:4d:24:fa:
54:2e:c6:fc:15:df:ce:e5:a1:35:48:33:17:27:f8:
74:49:9a:5d:21:76:4e:9c:e4:22:e2:33:aa:f6:11:
23:8b:87:bc:b9:9e:24:bc:4f:e9:63:bc:00:70:fc:
88:a3:61:55:ac:0a:25:b4:af:aa:22:e8:ae:3f:db:
3f:26:f2:85:3b:15:34:e4:82:06:e0:d2:0a:a3:68:
6e:5e:df:a0:6d:ad:33:52:bb:8a:26:12:00:fd:18:
e9:74:73:71:a2:8d:78:21:8f:58:89:05:b4:f8:cc:
05:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:D4:E1:D9:85:93:68:FD:4F:01:AC:47:A9:06:37:25:66:D5:FA:59
X509v3 Authority Key Identifier:
keyid:E2:4A:03:F8:0F:62:DA:86:63:52:E1:99:09:97:F1:D4:6C:EB:2F:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4tTh2YWTaP1PAaxHqQY3JWbV-lk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.190.252.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:f3:e8:5d:1d:92:5a:d9:a3:52:99:d5:ef:ec:14:53:b0:f9:
5b:4d:39:7f:ac:b0:d2:2a:57:60:a0:ff:dc:16:85:68:72:bd:
1c:28:10:05:ae:c9:5d:75:b9:f7:42:87:65:1d:01:e5:41:dd:
10:bb:18:75:71:23:62:9f:b6:ef:9f:69:d8:3d:0f:48:b9:94:
72:97:14:04:af:91:75:43:c2:fe:91:16:32:73:6a:8e:04:2d:
bb:7b:be:95:e5:cd:e3:00:63:6e:31:1d:ed:cc:68:b8:4c:06:
5c:69:e1:35:61:78:1f:b8:6b:a6:b9:8e:4f:6f:69:94:60:e8:
15:e5:fa:3c:8e:45:92:e0:a2:ae:d1:4d:d9:fe:a5:e6:bc:8a:
ee:93:0f:93:05:09:7e:36:41:b3:bd:41:13:34:db:6d:31:9b:
47:f2:17:1d:c2:84:cf:9a:17:e4:fa:83:fb:e1:d3:ea:32:bb:
91:aa:54:e1:b8:74:89:db:32:01:dc:2d:60:46:de:e1:f3:b3:
16:29:be:58:25:71:19:72:3c:7c:91:68:0a:0d:a8:c9:24:7e:
a7:a7:c0:57:e3:62:35:dd:94:d5:33:69:b9:d5:c6:6a:75:4b:
28:56:7b:e8:42:fa:b9:a7:f2:f3:bf:c0:f1:ef:2c:3f:c2:de:
70:d4:47:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 10:20:42 2025 by rpki-client