Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/f028e8-f041-4880-8a9d-f27aa9c6eb6b/1/taffdl0mpacWMVl4jn2x0W78M3M.roa
File: taffdl0mpacWMVl4jn2x0W78M3M.roa (raw, json)
Hash identifier: Cy0AJXJB6vmbMTHiTWI8AQNeLDGTlKLJA512tdO26Ao=
Subject key identifier: B5:A7:DF:76:5D:26:A5:A7:16:31:59:78:8E:7D:B1:D1:6E:FC:33:73
Certificate issuer: /CN=f7858b91a6627f2358eaadcd26ba5c2c5c46ea03
Certificate serial: 849B0A
Authority key identifier: F7:85:8B:91:A6:62:7F:23:58:EA:AD:CD:26:BA:5C:2C:5C:46:EA:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/94WLkaZifyNY6q3NJrpcLFxG6gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/f028e8-f041-4880-8a9d-f27aa9c6eb6b/1/taffdl0mpacWMVl4jn2x0W78M3M.roa
Signing time: Sat 01 Jan 2022 00:57:35 +0000
ROA not before: Sat 01 Jan 2022 00:57:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42183
IP address blocks: 185.82.96.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8690442 (0x849b0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7858b91a6627f2358eaadcd26ba5c2c5c46ea03
Validity
Not Before: Jan 1 00:57:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5a7df765d26a5a7163159788e7db1d16efc3373
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:f5:fc:26:b6:e4:8b:b1:21:3f:8a:8b:84:42:
de:d3:59:39:85:0f:37:e0:4f:4a:37:66:f5:55:2d:
e6:f4:a6:3f:30:80:08:04:34:1b:63:58:a9:ff:1e:
9f:a1:70:f8:a7:c4:e7:2b:96:10:db:3b:d6:f1:1b:
cc:18:b9:10:a8:43:f5:3c:95:10:6b:87:fd:12:2d:
f8:57:f1:31:7f:af:02:4c:01:de:3f:92:db:7f:bc:
1c:13:b7:08:20:28:0b:11:64:ce:0f:8f:e4:ef:6a:
7c:1f:67:98:67:6b:82:f9:2c:c0:46:b2:ac:0a:d8:
2d:05:e5:41:a6:00:f4:a5:59:a4:2e:84:19:a9:d9:
b1:3d:bc:cc:f8:f3:08:f8:8e:0e:c7:f8:7d:2d:f5:
d2:d6:f6:dd:d0:b5:11:fb:89:4c:89:6b:46:18:a1:
bb:1f:53:f9:f4:dc:c2:90:d0:2e:60:32:92:37:d6:
59:cf:ab:f4:ba:cc:e7:b7:ec:fc:61:3f:a6:67:d1:
e4:5f:c1:5a:d9:06:43:0c:16:13:a5:ab:a4:10:d9:
62:fe:57:f6:a5:18:b3:fb:dc:a0:e0:c2:71:eb:34:
98:45:91:7c:46:f8:a4:db:1a:aa:29:19:b0:d1:8e:
3d:6b:66:ac:d1:6d:d9:e3:55:00:ab:b8:8a:be:d2:
56:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:A7:DF:76:5D:26:A5:A7:16:31:59:78:8E:7D:B1:D1:6E:FC:33:73
X509v3 Authority Key Identifier:
keyid:F7:85:8B:91:A6:62:7F:23:58:EA:AD:CD:26:BA:5C:2C:5C:46:EA:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/94WLkaZifyNY6q3NJrpcLFxG6gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/f028e8-f041-4880-8a9d-f27aa9c6eb6b/1/taffdl0mpacWMVl4jn2x0W78M3M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/f028e8-f041-4880-8a9d-f27aa9c6eb6b/1/94WLkaZifyNY6q3NJrpcLFxG6gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.82.96.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:e1:2c:6e:ca:c0:25:b1:93:83:ef:e4:15:3d:16:b4:27:96:
48:cf:a3:57:d6:3c:55:cb:df:ac:ef:96:9d:c8:ce:1e:19:3f:
a2:86:87:67:d1:bd:b9:8c:85:0f:82:2c:0b:6f:45:72:78:82:
4e:67:57:58:ab:53:46:bc:1e:58:5c:05:25:0c:3c:5d:40:d8:
2d:43:a2:8b:2a:54:1a:b1:46:2e:d0:e2:85:77:42:29:bf:84:
90:68:f7:35:a1:21:91:94:f1:5d:53:aa:d1:c9:7d:4d:b7:4d:
30:e6:37:d4:45:de:cb:bc:c6:2a:0f:08:5d:9a:62:df:f7:8d:
5a:04:aa:dd:77:77:81:a7:89:43:10:15:c0:ca:49:3e:b4:16:
7b:15:55:cb:e7:dd:ef:f0:cc:27:f1:5a:4d:fa:88:94:a3:9f:
63:6a:05:47:a9:40:ff:e7:d9:ec:3d:36:1f:c4:50:8b:b6:45:
fe:ce:5d:b2:98:f4:95:be:f1:ba:64:b5:56:85:75:bd:52:61:
75:f0:3b:ac:f7:5a:1a:28:e5:0f:16:4e:dd:5b:48:4b:6e:11:
ba:a7:4b:ad:2b:f1:52:19:2c:bd:de:2a:8d:90:e3:d2:d8:49:
b8:a3:01:62:82:a6:02:cc:e2:48:8d:e0:e3:23:67:84:0c:be:
9c:2c:01:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 13:40:00 2025 by rpki-client