Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/6e457e-366d-440b-af2c-5cadbdcf2215/1/cHJEcEKFz28huCxXqJfLF2a7rSE.roa
File: cHJEcEKFz28huCxXqJfLF2a7rSE.roa (raw, json)
Hash identifier: OelJU8zUUvQZfv/Eirpdob4YXDBdftI4emyfIEaX2cM=
Subject key identifier: 70:72:44:70:42:85:CF:6F:21:B8:2C:57:A8:97:CB:17:66:BB:AD:21
Certificate issuer: /CN=e49dbf3c44468e52411d4861856bf0bdc79063e4
Certificate serial: 023058
Authority key identifier: E4:9D:BF:3C:44:46:8E:52:41:1D:48:61:85:6B:F0:BD:C7:90:63:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5J2_PERGjlJBHUhhhWvwvceQY-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/6e457e-366d-440b-af2c-5cadbdcf2215/1/cHJEcEKFz28huCxXqJfLF2a7rSE.roa
Signing time: Tue 08 Feb 2022 14:56:05 +0000
ROA not before: Tue 08 Feb 2022 14:56:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56694
IP address blocks: 185.108.223.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143448 (0x23058)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e49dbf3c44468e52411d4861856bf0bdc79063e4
Validity
Not Before: Feb 8 14:56:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=707244704285cf6f21b82c57a897cb1766bbad21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:20:c1:94:c7:1a:8a:e2:0d:61:f2:61:90:34:
fc:fc:d3:65:30:cd:18:aa:ad:66:99:a6:82:a7:2e:
a1:ba:8a:96:ac:c9:88:61:7a:0c:3c:f7:1f:ce:c5:
de:9e:4b:04:eb:2b:e2:ef:7d:c0:1f:db:33:08:53:
70:7e:ad:b2:d5:44:07:45:60:ec:fe:8b:3b:ad:2e:
03:2e:e4:16:ba:e5:ae:58:83:e5:80:3b:0d:12:d1:
67:c4:b9:98:5a:6e:91:d3:93:87:f4:69:0c:2c:62:
f0:7f:3f:cf:5e:a0:21:9a:e4:e9:92:a6:e7:96:4d:
33:99:f0:12:94:de:e5:db:4f:64:a1:c9:f9:78:2b:
09:b0:b1:48:ad:52:23:23:c8:89:99:a4:0d:47:cd:
18:a1:15:38:57:c6:3d:cc:59:2a:f8:2e:0d:54:fd:
47:3e:b1:65:56:46:3b:15:fc:b0:98:4d:4e:0e:97:
44:79:01:02:a0:36:ae:7a:70:8a:74:33:d4:73:3e:
75:4a:ee:15:b9:20:9e:6b:29:34:6e:21:8d:cd:f4:
57:5c:72:32:aa:2b:b8:01:82:e5:c0:56:e8:e7:ed:
c7:4b:63:c7:f0:c5:d9:37:a6:53:92:d3:b5:a2:d8:
f6:d2:6c:05:62:37:17:b7:2a:95:aa:44:ed:b6:9f:
f8:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:72:44:70:42:85:CF:6F:21:B8:2C:57:A8:97:CB:17:66:BB:AD:21
X509v3 Authority Key Identifier:
keyid:E4:9D:BF:3C:44:46:8E:52:41:1D:48:61:85:6B:F0:BD:C7:90:63:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5J2_PERGjlJBHUhhhWvwvceQY-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/6e457e-366d-440b-af2c-5cadbdcf2215/1/cHJEcEKFz28huCxXqJfLF2a7rSE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/6e457e-366d-440b-af2c-5cadbdcf2215/1/5J2_PERGjlJBHUhhhWvwvceQY-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.108.223.0/24
Signature Algorithm: sha256WithRSAEncryption
30:81:83:a7:a1:f5:e0:d6:e0:94:05:83:db:e9:12:63:1d:c0:
10:49:5c:83:94:07:a6:88:54:c9:9d:37:0c:28:5c:e3:3f:3c:
4b:1a:47:a0:e5:a0:15:27:ec:74:6a:e2:cc:ce:50:76:5e:78:
fb:e3:80:b5:e1:65:ce:69:58:2d:c0:6c:49:86:0c:b8:0c:c5:
20:40:81:25:ef:5f:49:1c:bf:9c:ad:52:0a:b3:ad:3e:05:b7:
34:26:60:6a:84:b5:d6:e3:da:6d:22:06:5b:ee:42:9f:34:56:
c7:20:e9:a9:9c:bd:87:26:8e:c0:e4:0d:38:bb:99:2d:48:9e:
53:48:60:ed:3a:e8:c2:d1:c6:fe:20:e4:0f:ac:5c:87:23:13:
60:b9:19:a8:16:04:c5:e2:6b:52:c6:53:a7:e8:b4:c5:a6:55:
4b:cf:90:5c:45:ba:0f:14:06:ef:a4:87:14:d4:4b:05:ce:05:
55:20:1a:91:c0:2c:69:83:99:9b:10:c4:40:a9:ac:e7:a4:6b:
f1:34:20:43:1d:64:ca:a4:bc:fa:03:d2:1f:74:9e:71:91:9f:
9d:54:35:2d:d1:99:be:16:9e:ee:74:8d:78:94:83:e4:db:7d:
64:38:23:09:0e:7e:2e:ae:4c:e0:db:77:50:cb:4d:bc:a2:8f:
ca:1a:93:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 09:21:51 2025 by rpki-client