Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/dded95-cb8c-4335-aed0-64838df3977a/1/Mld37RRs7reGbsc2JlPTspduBc8.roa
File: Mld37RRs7reGbsc2JlPTspduBc8.roa (raw, json)
Hash identifier: gfPUOcBrl1EuyOHpSDlwcgcdUWbvcIC5gBcSbDsy5tQ=
Subject key identifier: 32:57:77:ED:14:6C:EE:B7:86:6E:C7:36:26:53:D3:B2:97:6E:05:CF
Certificate issuer: /CN=0195727f07b758f9868476c13cf977654bf380ee
Certificate serial: 018721A3FE3CA16EAD37EFC9471A7A68BF7C
Authority key identifier: 01:95:72:7F:07:B7:58:F9:86:84:76:C1:3C:F9:77:65:4B:F3:80:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AZVyfwe3WPmGhHbBPPl3ZUvzgO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/dded95-cb8c-4335-aed0-64838df3977a/1/Mld37RRs7reGbsc2JlPTspduBc8.roa
Signing time: Mon 27 Mar 2023 05:56:48 +0000
ROA not before: Mon 27 Mar 2023 05:56:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44267
IP address blocks: 46.254.246.0/23 maxlen: 23
185.14.68.0/24 maxlen: 24
185.14.69.0/24 maxlen: 24
185.14.70.0/24 maxlen: 24
77.243.112.0/24 maxlen: 24
77.243.118.0/24 maxlen: 24
77.243.116.0/24 maxlen: 24
77.243.117.0/24 maxlen: 24
77.243.115.0/24 maxlen: 24
77.243.113.0/24 maxlen: 24
77.243.114.0/24 maxlen: 24
2a02:f560::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:21:a3:fe:3c:a1:6e:ad:37:ef:c9:47:1a:7a:68:bf:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0195727f07b758f9868476c13cf977654bf380ee
Validity
Not Before: Mar 27 05:56:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=325777ed146ceeb7866ec7362653d3b2976e05cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:02:7c:66:78:24:a9:c0:4b:2f:d9:8c:cc:7f:
16:15:c9:b7:d5:b1:8d:e0:ec:58:a7:7b:fc:4d:c7:
df:16:3d:5f:45:a7:49:62:ee:3f:ba:1d:84:03:8a:
4a:30:93:44:b6:12:b4:2c:34:28:cc:28:35:04:aa:
d5:cc:24:8b:df:10:f6:89:8c:aa:6c:57:0d:93:ff:
ee:3c:d0:96:bd:5d:95:df:8b:4e:47:f9:3b:39:cf:
3d:bf:45:68:87:6b:50:e5:24:3d:f3:ac:3b:40:ee:
28:5c:47:e2:4a:bf:53:8b:87:fd:ad:38:45:bf:a2:
c2:92:a9:00:09:52:b8:35:7d:fb:c3:fa:58:73:5f:
f2:61:8c:01:96:19:1f:01:4c:a6:08:9b:25:a6:c3:
f8:f0:2a:2c:52:e3:22:23:cd:05:af:3c:39:32:06:
e6:ca:4c:4f:2c:e3:b6:92:85:b4:a4:21:ba:ed:ec:
87:10:6d:30:8e:07:73:16:fc:c6:02:4c:ea:d8:d5:
d9:5b:26:c6:02:17:a4:ce:c2:f3:54:72:8f:43:78:
00:7f:21:d0:df:0a:a8:b1:bc:8c:90:61:5a:a8:ad:
f7:ca:11:e8:a9:41:bd:b3:87:8e:43:ee:b5:17:0d:
c6:6e:22:08:7f:24:0f:23:61:ef:c5:94:e8:f5:3a:
cc:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:57:77:ED:14:6C:EE:B7:86:6E:C7:36:26:53:D3:B2:97:6E:05:CF
X509v3 Authority Key Identifier:
keyid:01:95:72:7F:07:B7:58:F9:86:84:76:C1:3C:F9:77:65:4B:F3:80:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AZVyfwe3WPmGhHbBPPl3ZUvzgO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/dded95-cb8c-4335-aed0-64838df3977a/1/Mld37RRs7reGbsc2JlPTspduBc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/dded95-cb8c-4335-aed0-64838df3977a/1/AZVyfwe3WPmGhHbBPPl3ZUvzgO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.254.246.0/23
77.243.112.0-77.243.118.255
185.14.68.0-185.14.70.255
IPv6:
2a02:f560::/40
Signature Algorithm: sha256WithRSAEncryption
14:6a:ec:32:91:e5:20:4a:48:d3:e5:1d:e2:86:44:5c:9f:65:
73:c5:12:4a:d4:de:38:a3:dd:11:75:b0:34:11:68:4d:f9:cc:
b9:68:59:46:1c:96:42:44:94:6c:13:5f:d2:28:64:13:24:a2:
0c:b6:7d:31:f5:9e:13:85:88:0d:d2:bd:f6:b1:0d:dd:e3:cc:
3c:b5:eb:0a:39:89:a4:03:49:42:8f:b0:f4:57:e8:30:a0:00:
d9:0a:bf:9a:78:b2:39:bc:44:9d:32:62:44:f6:7e:1f:e5:8a:
4d:fb:fc:72:8a:7e:cb:ad:cb:bc:d4:e1:3b:57:35:58:99:3f:
99:25:20:ab:e0:c7:4b:7a:13:0b:2c:bc:80:5d:63:11:94:22:
d7:e6:26:77:90:94:7c:82:52:8b:cf:fe:85:81:89:49:9a:4b:
39:8a:4b:a8:b4:65:ba:f9:cf:25:5e:81:34:fe:10:40:f9:ac:
dc:00:1b:20:28:af:e3:45:01:9d:81:5c:d1:59:51:6c:55:60:
90:e1:40:d9:8e:1b:0e:99:1d:5d:7c:74:33:c3:de:a6:ad:40:
06:d2:b3:85:18:e9:38:8f:c8:c9:ba:62:7c:a2:dd:f4:21:64:
a2:15:e6:41:e0:22:51:f9:8d:ce:1d:1b:04:12:6e:ba:94:95:
67:31:04:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:28:15 2025 by rpki-client