Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/be68b9-9b62-4b3e-a6a4-865031fa0bf7/1/ajymDLwBz_mbNoOkmszRW4kRRl8.roa
File: ajymDLwBz_mbNoOkmszRW4kRRl8.roa (raw, json)
Hash identifier: Me6S9mqV1WUsGsvnaeu1s8Dui5yPcnjN3NjMiV9k3Tc=
Subject key identifier: 6A:3C:A6:0C:BC:01:CF:F9:9B:36:83:A4:9A:CC:D1:5B:89:11:46:5F
Certificate issuer: /CN=7a362d783284659dc04eedaf8b8a6fe6e930bd27
Certificate serial: 0189E5161CA061190230AF7D10ADD238B876
Authority key identifier: 7A:36:2D:78:32:84:65:9D:C0:4E:ED:AF:8B:8A:6F:E6:E9:30:BD:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ejYteDKEZZ3ATu2vi4pv5ukwvSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/be68b9-9b62-4b3e-a6a4-865031fa0bf7/1/ajymDLwBz_mbNoOkmszRW4kRRl8.roa
Signing time: Fri 11 Aug 2023 14:52:58 +0000
ROA not before: Fri 11 Aug 2023 14:52:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203067
IP address blocks: 185.145.49.0/24 maxlen: 24
185.145.50.0/24 maxlen: 24
185.145.48.0/24 maxlen: 24
185.145.51.0/24 maxlen: 24
46.175.50.0/24 maxlen: 24
46.175.51.0/24 maxlen: 24
46.175.48.0/22 maxlen: 22
46.175.48.0/24 maxlen: 24
46.175.49.0/24 maxlen: 24
46.175.54.0/24 maxlen: 24
46.175.52.0/24 maxlen: 24
46.175.53.0/24 maxlen: 24
46.175.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:e5:16:1c:a0:61:19:02:30:af:7d:10:ad:d2:38:b8:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a362d783284659dc04eedaf8b8a6fe6e930bd27
Validity
Not Before: Aug 11 14:52:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a3ca60cbc01cff99b3683a49accd15b8911465f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:89:9a:11:0e:be:e7:61:1f:d3:e1:5a:72:57:
a6:b1:d3:04:8c:83:84:46:b3:f0:e5:e2:d0:e1:ae:
57:0c:8d:f8:52:b7:f6:b2:4e:77:8c:19:35:41:20:
f6:f6:96:59:9d:27:ac:2a:8d:bd:a6:e0:9c:16:c6:
68:c5:d9:1e:72:59:16:4d:f3:7f:1d:58:24:3b:bd:
f8:99:8c:da:e5:b7:81:40:8f:45:19:85:41:f5:8e:
83:47:0f:9a:a7:92:f6:66:ac:32:1a:54:6d:8f:74:
bf:18:89:0b:85:3e:45:7a:8b:5d:ee:f9:3a:36:e4:
82:28:a6:da:b2:e3:36:bc:31:cf:d7:79:21:71:56:
22:34:8e:aa:64:a8:b6:16:c2:8b:d5:6e:a8:a7:1f:
30:f9:db:f0:53:10:3e:32:c1:7a:26:5d:9c:91:67:
1f:f5:86:50:ea:41:9c:60:6a:90:55:30:5f:3f:ea:
aa:38:0d:b7:24:e8:c7:a8:00:c5:57:66:d8:9b:98:
ca:81:6f:6c:c7:01:72:cb:25:f8:1e:0c:06:b7:9b:
b4:e2:fe:af:3e:e3:0b:cc:21:93:4c:9d:67:c9:ea:
6f:4d:a2:41:c5:04:22:cc:4a:48:8e:19:0a:1c:d3:
e3:fc:23:a9:ad:78:f2:07:a1:e4:bb:f1:ee:a4:6b:
6a:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:3C:A6:0C:BC:01:CF:F9:9B:36:83:A4:9A:CC:D1:5B:89:11:46:5F
X509v3 Authority Key Identifier:
keyid:7A:36:2D:78:32:84:65:9D:C0:4E:ED:AF:8B:8A:6F:E6:E9:30:BD:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ejYteDKEZZ3ATu2vi4pv5ukwvSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/be68b9-9b62-4b3e-a6a4-865031fa0bf7/1/ajymDLwBz_mbNoOkmszRW4kRRl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/be68b9-9b62-4b3e-a6a4-865031fa0bf7/1/ejYteDKEZZ3ATu2vi4pv5ukwvSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.175.48.0/21
185.145.48.0/22
Signature Algorithm: sha256WithRSAEncryption
45:b1:c9:ad:b5:50:33:47:79:d1:83:c0:35:91:14:77:88:5b:
89:35:87:3a:dd:e6:67:a6:f6:d5:c0:d8:3b:41:69:17:aa:4a:
4e:fe:94:30:5c:e8:65:e7:7c:26:82:fa:df:b0:11:cb:ac:7a:
84:fc:76:e2:c2:7c:1b:e0:31:4c:52:78:b8:50:68:05:6e:64:
40:48:7d:13:13:0c:3f:5c:88:eb:7f:fd:3d:1b:ac:2a:2b:68:
98:6f:64:a1:d8:4b:8a:71:0a:4b:72:9a:1f:61:36:45:0e:b6:
20:92:fb:a3:b3:c6:9b:50:7d:06:cf:8b:4a:6e:13:c9:a9:06:
3f:d4:85:fe:84:1a:3a:28:51:f5:2f:70:97:00:93:b9:94:99:
ec:49:b8:2f:1d:ff:f0:78:07:c2:7e:4f:84:3b:55:e4:c0:32:
97:31:79:61:c7:db:13:1c:d5:fc:f3:08:a4:1b:35:c0:2f:30:
af:ae:6c:4f:69:1c:c8:7c:3b:9f:a4:c3:c4:37:0c:b4:0b:f0:
65:18:93:24:43:11:73:f5:35:bc:5e:35:41:6c:7e:62:0b:01:
06:93:45:9a:30:ff:a8:4f:b6:06:5e:5b:59:a7:e5:23:89:70:
8e:d7:55:08:63:c1:4c:d3:c6:90:80:4e:88:89:91:30:a5:b6:
a9:2b:28:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 19:23:58 2025 by rpki-client