![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/09c3b1-72eb-433a-96cb-48777aa961e9/1/Ifl9Qa6Z02AKK1Eu-Tzz6X9G-Wg.roa
File: Ifl9Qa6Z02AKK1Eu-Tzz6X9G-Wg.roa (raw, json)
Hash identifier: Ag6vfn6ZewSCDFPYBGmXODE3Iz8iGQ5iChBkJdtWrJg=
Subject key identifier: 21:F9:7D:41:AE:99:D3:60:0A:2B:51:2E:F9:3C:F3:E9:7F:46:F9:68
Certificate issuer: /CN=83e6403cf73221c117ea49bc9234fe6f4a11d780
Certificate serial: 021311A6
Authority key identifier: 83:E6:40:3C:F7:32:21:C1:17:EA:49:BC:92:34:FE:6F:4A:11:D7:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g-ZAPPcyIcEX6km8kjT-b0oR14A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/09c3b1-72eb-433a-96cb-48777aa961e9/1/Ifl9Qa6Z02AKK1Eu-Tzz6X9G-Wg.roa
Signing time: Sat 01 Jan 2022 15:07:03 +0000
ROA not before: Sat 01 Jan 2022 15:07:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42687
IP address blocks: 185.203.176.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34804134 (0x21311a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83e6403cf73221c117ea49bc9234fe6f4a11d780
Validity
Not Before: Jan 1 15:07:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=21f97d41ae99d3600a2b512ef93cf3e97f46f968
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:b8:db:ef:07:82:35:ad:62:50:e5:a7:de:3a:
8f:02:94:af:84:11:89:58:c5:1c:fd:37:9c:4b:1f:
d9:d0:a5:8c:a0:b0:0f:3b:83:9b:b8:28:39:76:d3:
28:87:55:10:d2:02:e8:83:28:d3:a1:1b:04:47:99:
17:24:6b:5b:a7:8b:32:7c:0b:2d:37:db:c5:db:68:
ba:e9:a0:18:25:e2:f4:86:4b:92:23:b1:c2:a1:a1:
cf:eb:61:b0:69:26:52:02:d1:59:c9:3e:2e:77:dd:
ec:61:ff:26:05:e3:5d:89:96:3c:34:e8:9d:d6:2c:
b9:69:00:0f:0d:15:c9:d3:9e:c5:4b:5d:72:2c:8d:
9e:ea:c1:5a:79:75:0b:bc:39:77:87:27:46:f9:81:
3e:25:25:b3:3a:ee:a9:39:ff:67:48:ab:9b:62:46:
0c:0c:f8:d2:c7:62:54:67:bb:c3:96:f9:24:1c:f7:
7d:83:8c:74:5c:4a:31:d4:e6:4d:e1:49:a4:b9:49:
6f:ae:eb:b8:c4:40:65:bc:42:f6:99:43:fd:8a:69:
cc:2f:9f:94:56:5c:8a:f2:3d:cf:a4:ec:90:91:fe:
93:ac:c9:a7:b8:17:5c:36:35:29:c1:ff:03:90:3c:
83:4b:8b:e7:34:30:23:99:14:2d:03:81:ad:3d:ed:
bd:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:F9:7D:41:AE:99:D3:60:0A:2B:51:2E:F9:3C:F3:E9:7F:46:F9:68
X509v3 Authority Key Identifier:
keyid:83:E6:40:3C:F7:32:21:C1:17:EA:49:BC:92:34:FE:6F:4A:11:D7:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g-ZAPPcyIcEX6km8kjT-b0oR14A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/09c3b1-72eb-433a-96cb-48777aa961e9/1/Ifl9Qa6Z02AKK1Eu-Tzz6X9G-Wg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/09c3b1-72eb-433a-96cb-48777aa961e9/1/g-ZAPPcyIcEX6km8kjT-b0oR14A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.203.176.0/22
Signature Algorithm: sha256WithRSAEncryption
22:6f:0e:cf:aa:33:70:2f:41:ee:b6:2d:ba:31:cb:09:bb:62:
52:57:7d:5f:a4:c5:ac:16:3f:81:17:29:ea:66:f1:d0:8c:50:
d9:99:07:08:43:19:03:b4:49:14:e1:ff:f8:b8:58:bb:ef:16:
7c:f6:cd:0a:da:b1:83:3b:23:32:f0:1d:5f:18:3e:62:cf:05:
1b:d1:dc:ed:33:79:c2:81:56:85:3e:8a:77:16:01:24:f3:32:
4f:7c:98:ed:7b:b4:d0:ed:15:fe:26:2c:32:94:e9:fb:47:c6:
9f:4f:03:a9:66:57:b9:19:8f:0c:c6:e8:85:15:8a:f5:90:b7:
8d:25:76:24:4d:ea:58:c1:8e:f9:12:12:b1:4a:09:6c:61:40:
3b:6e:6d:b0:e5:e2:80:cd:85:05:21:de:27:ed:ef:54:b0:1b:
6e:dd:7b:e3:7d:db:14:21:2f:b0:02:bd:38:6d:52:4f:95:8e:
7c:33:08:7d:c3:c0:b6:d8:ed:76:ee:80:63:36:01:ec:eb:aa:
24:12:bd:e0:8f:21:97:ad:72:06:ba:37:a0:b1:20:ea:88:2f:
59:ce:b8:e1:39:60:72:c1:7b:e1:91:39:5d:94:8d:27:68:80:
73:e7:cb:25:a6:50:0c:30:e1:24:7a:72:f4:6b:d3:72:57:e8:
33:9f:24:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:04:41 2025 by rpki-client