Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/121447-d2c8-4ca8-96c7-81d10073dee4/1/1-K6o2uMWgmuFgNVCLJGYo4JUaCA.roa
File: 1-K6o2uMWgmuFgNVCLJGYo4JUaCA.roa (raw, json)
Hash identifier: z0XZW6OqmuloXLtJZZx4fFBW1+6j3bolTgwIpr8EHk8=
Subject key identifier: F8:AE:A8:DA:E3:16:82:6B:85:80:D5:42:2C:91:98:A3:82:54:68:20
Certificate issuer: /CN=64757185472f16d53eeb68a140e3513fa31c31d8
Certificate serial: 018571154769D0B95481179C8A45B6519A29
Authority key identifier: 64:75:71:85:47:2F:16:D5:3E:EB:68:A1:40:E3:51:3F:A3:1C:31:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZHVxhUcvFtU-62ihQONRP6McMdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/121447-d2c8-4ca8-96c7-81d10073dee4/1/1-K6o2uMWgmuFgNVCLJGYo4JUaCA.roa
Signing time: Mon 02 Jan 2023 06:04:58 +0000
ROA not before: Mon 02 Jan 2023 06:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39010
IP address blocks: 185.70.226.0/24 maxlen: 24
185.70.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:15:47:69:d0:b9:54:81:17:9c:8a:45:b6:51:9a:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64757185472f16d53eeb68a140e3513fa31c31d8
Validity
Not Before: Jan 2 06:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f8aea8dae316826b8580d5422c9198a382546820
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:8a:64:6a:91:33:20:fc:c3:bb:e0:ee:c4:fa:
4d:bd:80:76:cc:fc:de:38:5b:ad:21:88:96:0f:2b:
e0:86:ba:7a:04:ae:44:ee:2c:b0:de:af:6d:53:46:
4b:1d:42:0f:58:9b:db:5f:fe:08:d8:c7:3c:77:75:
2c:18:4a:44:05:c3:6d:17:9a:d5:5a:50:9b:28:34:
81:3f:f0:ef:69:54:d6:a4:d9:7a:46:1b:4d:1f:a9:
eb:2e:c6:06:a8:56:5e:67:ff:09:2f:1a:a6:44:92:
ef:8f:5d:e8:4d:3f:ba:0f:97:b7:35:3b:c1:9f:20:
07:b0:53:47:2c:72:71:6a:1e:d8:cd:27:a7:ba:22:
42:ad:cd:c0:83:4c:3c:5f:d3:b6:b7:83:8a:aa:62:
78:0d:95:78:6f:0a:30:46:24:e2:f8:2b:a2:e8:ac:
8f:52:2b:42:72:74:8f:54:70:90:b7:f3:3b:39:c4:
15:46:02:d3:5c:f9:27:f1:5d:00:72:48:ad:0c:22:
3b:30:4e:cb:d8:3c:76:d2:89:ac:36:eb:2a:0e:64:
a1:f2:01:b4:f0:49:8f:b8:be:6c:1e:57:f3:69:d2:
55:48:7f:94:ca:f0:d2:3f:db:01:29:0d:2c:8d:5e:
46:40:e9:fe:33:48:f2:a7:b9:76:5b:91:a4:b3:ed:
e3:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:AE:A8:DA:E3:16:82:6B:85:80:D5:42:2C:91:98:A3:82:54:68:20
X509v3 Authority Key Identifier:
keyid:64:75:71:85:47:2F:16:D5:3E:EB:68:A1:40:E3:51:3F:A3:1C:31:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZHVxhUcvFtU-62ihQONRP6McMdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/121447-d2c8-4ca8-96c7-81d10073dee4/1/1-K6o2uMWgmuFgNVCLJGYo4JUaCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/121447-d2c8-4ca8-96c7-81d10073dee4/1/ZHVxhUcvFtU-62ihQONRP6McMdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.70.225.0-185.70.226.255
Signature Algorithm: sha256WithRSAEncryption
12:c3:cf:35:cf:13:35:63:7a:73:b0:d5:7e:7d:14:5f:26:44:
ca:d4:69:1d:93:66:f2:92:3c:47:4c:bb:ad:f4:60:c7:f7:04:
9e:8d:00:57:45:f5:56:06:cf:72:8c:76:06:a1:ab:d4:9f:a1:
f4:7d:ca:17:4f:58:ad:3e:5b:b7:02:7c:fa:57:9d:48:43:2a:
d4:8b:35:6f:5d:1f:05:f4:97:f2:ec:cd:a6:07:56:46:04:2d:
21:3f:49:93:64:3a:02:e6:b4:90:8a:39:1d:7e:de:fe:6a:a8:
9a:3d:1b:69:00:ed:36:d0:e6:c3:32:7d:ec:8a:12:2e:f2:c6:
2c:ab:08:be:13:07:d8:5f:2b:11:bc:c1:7e:a7:83:bc:0e:6d:
cb:79:26:62:1e:08:6d:35:5c:a4:48:1f:6b:17:32:e1:ca:08:
6e:74:a4:b5:73:7d:92:0c:87:d2:90:04:64:d0:87:b7:36:48:
40:4e:f4:02:a8:ec:21:27:1e:a8:09:e8:93:51:c9:93:f7:f6:
44:1c:a6:fb:42:b3:f1:8c:2d:a7:c9:85:11:ae:95:70:8a:37:
cb:56:b5:06:3f:2f:8c:f2:c6:60:15:cb:19:63:97:03:a6:86:
a0:fa:ee:00:5e:57:0d:0f:da:68:d9:8d:c8:3a:73:3b:a4:aa:
f0:c3:37:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:20:40 2025 by rpki-client