Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/f5ea13-827a-4acd-a207-b9f3c6351225/1/vNkv0XJtolpM9mVLJ9Z5qOWWU6Q.roa
File: vNkv0XJtolpM9mVLJ9Z5qOWWU6Q.roa (raw, json)
Hash identifier: OroT8WcpdmfwKjyPov6uAQpfMohjphZ/WgGStM6yB7g=
Subject key identifier: BC:D9:2F:D1:72:6D:A2:5A:4C:F6:65:4B:27:D6:79:A8:E5:96:53:A4
Certificate issuer: /CN=6c3a63c531cee41b3bed87300e459e45fb9e8978
Certificate serial: 01856D81BE5C93FCF3D3BE434F3262203831
Authority key identifier: 6C:3A:63:C5:31:CE:E4:1B:3B:ED:87:30:0E:45:9E:45:FB:9E:89:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bDpjxTHO5Bs77YcwDkWeRfueiXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/f5ea13-827a-4acd-a207-b9f3c6351225/1/vNkv0XJtolpM9mVLJ9Z5qOWWU6Q.roa
Signing time: Sun 01 Jan 2023 13:24:57 +0000
ROA not before: Sun 01 Jan 2023 13:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30848
IP address blocks: 185.158.204.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:be:5c:93:fc:f3:d3:be:43:4f:32:62:20:38:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c3a63c531cee41b3bed87300e459e45fb9e8978
Validity
Not Before: Jan 1 13:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bcd92fd1726da25a4cf6654b27d679a8e59653a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:d3:f4:91:22:df:e6:91:39:e2:6b:50:3c:a7:
05:a5:e6:e2:72:2d:af:c7:9a:27:7b:16:78:29:42:
d4:51:5d:c5:64:37:46:89:22:91:79:f0:43:e0:6d:
c1:0e:d9:60:69:84:71:66:18:5c:d2:eb:58:ec:ae:
41:8b:11:c2:d8:04:e2:80:c7:76:db:ce:e3:06:1e:
bc:e5:c4:c1:b1:d1:00:55:2f:b2:b3:35:08:08:42:
a0:54:4a:ac:a7:62:0e:19:95:a8:03:46:78:12:83:
36:40:0a:de:a6:3a:6a:75:83:bc:ad:4e:03:5a:fb:
9b:82:fc:b6:43:58:de:b1:24:33:cb:8a:c3:65:d6:
70:41:99:2b:1a:29:a5:5c:e3:f0:cd:0d:a5:2b:51:
2a:b4:56:df:bb:63:0d:e5:a1:3d:a3:67:e2:4f:34:
9e:2f:f4:8a:de:0a:1b:f3:95:37:a2:86:7c:79:7c:
08:b9:ea:db:b9:a6:a8:d7:42:e9:a4:de:a3:d8:3c:
32:56:bc:7d:f1:ae:7f:9b:5b:09:a8:0f:9a:ca:aa:
a4:cd:5d:15:c5:a2:55:55:6c:c8:e6:a4:9f:f3:4b:
9f:82:88:f7:70:57:a9:61:da:68:f6:87:ce:d7:c8:
ad:47:13:50:55:b5:b2:07:8f:a3:8c:b5:71:46:8c:
05:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:D9:2F:D1:72:6D:A2:5A:4C:F6:65:4B:27:D6:79:A8:E5:96:53:A4
X509v3 Authority Key Identifier:
keyid:6C:3A:63:C5:31:CE:E4:1B:3B:ED:87:30:0E:45:9E:45:FB:9E:89:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bDpjxTHO5Bs77YcwDkWeRfueiXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/f5ea13-827a-4acd-a207-b9f3c6351225/1/vNkv0XJtolpM9mVLJ9Z5qOWWU6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/f5ea13-827a-4acd-a207-b9f3c6351225/1/bDpjxTHO5Bs77YcwDkWeRfueiXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.158.204.0/24
Signature Algorithm: sha256WithRSAEncryption
56:9b:08:1c:5c:ee:d8:f5:19:b1:52:d4:c1:ae:be:2e:67:75:
7e:9a:85:42:4c:76:c9:df:5e:b3:46:76:86:cd:b5:5f:de:f7:
78:fb:de:52:1e:b6:3e:76:12:fd:0d:01:22:56:a6:76:26:07:
e7:e7:22:88:54:64:fd:ae:87:33:70:d7:8e:9e:d4:2e:9f:c1:
62:6a:b5:1e:77:85:72:c5:9f:15:d9:7e:1e:28:1c:44:43:40:
8b:14:27:15:ff:d3:d7:db:bc:a9:5c:99:24:8c:b2:3c:92:57:
f2:3a:dd:13:7d:1f:14:da:4f:63:db:a5:51:58:81:bd:10:29:
89:bf:28:4c:99:fc:d1:6f:b7:d0:12:b9:d8:54:74:7d:c6:80:
f1:43:58:42:e3:7e:5d:33:28:9c:ab:1d:aa:eb:e3:0c:90:4c:
ec:ee:69:02:a9:d4:89:c2:73:f5:a2:37:12:ed:9c:31:bb:64:
40:f5:e2:33:f0:89:2c:26:35:fb:a1:68:ff:64:63:63:8c:28:
bd:42:73:12:f5:85:e1:7c:9e:ab:f7:47:ff:d9:f6:be:74:d4:
a9:af:d9:b1:36:f5:d8:34:cf:87:3f:16:70:34:33:5c:92:56:
94:1e:ec:fa:82:ce:58:e4:8a:03:d9:7e:b1:8f:fe:64:6f:65:
29:84:e2:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:49:29 2025 by rpki-client