Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/59d808-154f-42ae-af8f-790244508df4/1/g6bHWz5VkG2zRhR3SI18tITlNnU.roa
File: g6bHWz5VkG2zRhR3SI18tITlNnU.roa (raw, json)
Hash identifier: TeQSdev227lzO8VtG6ADeixcIW66Dkq2a4U/PTt3BxE=
Subject key identifier: 83:A6:C7:5B:3E:55:90:6D:B3:46:14:77:48:8D:7C:B4:84:E5:36:75
Certificate issuer: /CN=27516d20ebefd12f072d413c4d2606bdb258691a
Certificate serial: 01856E01D23689C6922675A9008D384F2E77
Authority key identifier: 27:51:6D:20:EB:EF:D1:2F:07:2D:41:3C:4D:26:06:BD:B2:58:69:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J1FtIOvv0S8HLUE8TSYGvbJYaRo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/59d808-154f-42ae-af8f-790244508df4/1/g6bHWz5VkG2zRhR3SI18tITlNnU.roa
Signing time: Sun 01 Jan 2023 15:44:51 +0000
ROA not before: Sun 01 Jan 2023 15:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 185.190.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:01:d2:36:89:c6:92:26:75:a9:00:8d:38:4f:2e:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27516d20ebefd12f072d413c4d2606bdb258691a
Validity
Not Before: Jan 1 15:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=83a6c75b3e55906db3461477488d7cb484e53675
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:54:49:50:77:8c:4d:75:41:c5:bd:5e:d8:8b:
b6:94:5e:4d:16:94:8f:42:7f:c9:76:4c:af:fd:41:
a9:14:c2:69:c1:48:45:e2:38:e8:be:90:ec:31:68:
1a:5b:7e:5f:2c:f2:ad:f2:17:c0:30:40:c7:4a:00:
47:00:68:80:4b:02:03:87:ea:b7:ee:d9:8f:83:80:
af:06:f3:7a:1e:88:28:54:d0:bc:49:48:aa:aa:6a:
d8:2e:a9:b5:6c:93:8c:ef:7c:e4:ec:fb:b3:7b:e1:
71:e1:81:35:7c:31:7b:9b:a2:27:34:62:15:37:90:
80:c0:47:f3:3d:07:a6:a9:dd:ea:39:84:43:ec:1f:
7a:c8:5f:c5:85:fa:c1:26:09:2b:48:70:1f:b6:6a:
bd:eb:ad:a5:bc:5e:40:63:fd:0e:8b:3e:5d:97:c9:
03:7f:f8:5a:63:69:52:c4:b2:4c:d3:83:6b:3b:a1:
be:5b:30:78:75:be:cc:d6:28:b8:1c:55:a8:db:1b:
f8:3d:66:98:49:5d:ed:49:8f:e5:c1:31:57:eb:b7:
02:ad:16:ab:cb:1c:5e:76:01:ed:1a:b0:45:7a:88:
ab:85:32:18:81:8c:c0:10:ec:2f:b7:99:d6:0e:8d:
45:8e:2c:38:d0:72:a2:bd:2d:3c:d7:9a:6b:54:9d:
28:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:A6:C7:5B:3E:55:90:6D:B3:46:14:77:48:8D:7C:B4:84:E5:36:75
X509v3 Authority Key Identifier:
keyid:27:51:6D:20:EB:EF:D1:2F:07:2D:41:3C:4D:26:06:BD:B2:58:69:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J1FtIOvv0S8HLUE8TSYGvbJYaRo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/59d808-154f-42ae-af8f-790244508df4/1/g6bHWz5VkG2zRhR3SI18tITlNnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/59d808-154f-42ae-af8f-790244508df4/1/J1FtIOvv0S8HLUE8TSYGvbJYaRo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.190.44.0/24
Signature Algorithm: sha256WithRSAEncryption
59:34:42:fc:d6:a1:19:29:ab:26:e7:64:56:20:15:32:f7:60:
53:c6:b2:e9:75:6e:81:c7:f7:9d:e4:65:39:1d:61:3d:b9:b1:
90:36:82:85:a3:32:4d:4f:e4:73:cc:5d:fa:ef:ee:5d:69:aa:
f3:55:64:ed:68:ce:74:ce:1c:ba:8c:0c:1c:b0:c9:d0:c6:8c:
31:1f:fd:f5:c5:64:d1:ff:07:d5:fd:20:27:55:cf:c8:f9:10:
55:8e:87:cc:db:6f:74:08:c2:bf:3a:cb:3d:2b:26:c4:11:44:
78:c8:15:94:91:27:ed:a5:18:61:a4:15:05:aa:d5:7c:69:f4:
70:7b:b1:2e:d4:a7:52:0b:c1:14:0f:75:58:21:77:2a:d9:f9:
b2:1b:15:7c:d3:64:d0:27:73:c6:6e:60:c2:76:f1:27:20:3b:
75:b0:ec:54:0b:2f:6b:76:3a:6a:22:ae:c2:30:89:94:20:cf:
33:27:21:0b:e7:88:94:ff:a5:41:0b:8d:f1:9f:04:26:c3:d9:
59:cb:a0:ca:73:23:43:f3:33:9c:8e:00:cb:c6:b5:e6:b1:8c:
dc:e0:66:0e:bd:57:92:e6:e9:dc:d6:8f:1c:47:86:98:c9:13:
ca:08:e5:e6:ed:02:ba:ed:89:fd:7b:4d:42:e1:43:aa:ed:5a:
0b:42:c4:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:45:01 2025 by rpki-client