Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/121447-d2c8-4ca8-96c7-81d10073dee4/1/l-IR0xhUD5UMDR4p2dCadJQaoEk.roa
File: l-IR0xhUD5UMDR4p2dCadJQaoEk.roa (raw, json)
Hash identifier: UVxje2Tp/tudlfVxVuW6GE/3IwhmvItbHAXx/OcXt9I=
Subject key identifier: 97:E2:11:D3:18:54:0F:95:0C:0D:1E:29:D9:D0:9A:74:94:1A:A0:49
Certificate issuer: /CN=64757185472f16d53eeb68a140e3513fa31c31d8
Certificate serial: 7B31F8
Authority key identifier: 64:75:71:85:47:2F:16:D5:3E:EB:68:A1:40:E3:51:3F:A3:1C:31:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZHVxhUcvFtU-62ihQONRP6McMdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/121447-d2c8-4ca8-96c7-81d10073dee4/1/l-IR0xhUD5UMDR4p2dCadJQaoEk.roa
Signing time: Sat 01 Jan 2022 02:58:59 +0000
ROA not before: Sat 01 Jan 2022 02:58:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208923
IP address blocks: 185.70.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8073720 (0x7b31f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64757185472f16d53eeb68a140e3513fa31c31d8
Validity
Not Before: Jan 1 02:58:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97e211d318540f950c0d1e29d9d09a74941aa049
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d1:37:ff:5b:68:9e:fd:ba:a5:a8:8a:3b:52:
55:9f:17:c0:d5:a7:f4:ea:32:0a:e5:98:14:65:02:
d0:24:b9:95:29:4a:e0:9c:f9:97:aa:c0:62:15:11:
4f:4f:3c:e5:86:1f:f9:87:4b:ac:6d:1a:a4:a9:c4:
2a:86:3d:4c:e7:bd:73:08:8a:3d:cf:31:74:1b:0e:
77:5a:9b:74:f4:82:42:f2:d4:e0:95:9d:13:32:e4:
92:0a:c5:b3:ff:6d:43:af:1e:77:d5:fa:56:16:3e:
8e:f8:ae:cb:00:52:0f:da:a9:61:ea:c9:ba:43:0c:
05:7a:bc:8b:49:58:9d:2f:4d:66:a5:ff:38:ad:fd:
6b:51:f3:4e:b9:9f:84:c1:6f:be:d5:fd:c9:64:57:
72:0d:f1:87:cb:43:39:7a:01:ed:27:8a:35:4e:5f:
45:4f:bc:8f:b9:b1:0d:4e:dc:59:d4:23:a4:66:f5:
e7:0b:1c:fa:5d:2e:72:d6:61:89:85:bf:0a:f3:2a:
b3:1d:80:df:13:9c:2a:4e:2e:ec:d1:50:0c:34:13:
eb:dd:77:27:41:0a:9e:46:33:2e:c3:7e:1e:11:12:
ea:0d:7f:a8:56:7e:f2:9e:c8:7a:2e:f8:5c:27:56:
55:e8:96:74:b3:a9:ac:34:9c:23:c6:4d:7e:7f:5e:
28:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:E2:11:D3:18:54:0F:95:0C:0D:1E:29:D9:D0:9A:74:94:1A:A0:49
X509v3 Authority Key Identifier:
keyid:64:75:71:85:47:2F:16:D5:3E:EB:68:A1:40:E3:51:3F:A3:1C:31:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZHVxhUcvFtU-62ihQONRP6McMdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/121447-d2c8-4ca8-96c7-81d10073dee4/1/l-IR0xhUD5UMDR4p2dCadJQaoEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/121447-d2c8-4ca8-96c7-81d10073dee4/1/ZHVxhUcvFtU-62ihQONRP6McMdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.70.227.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:37:20:90:ba:da:49:5c:7a:f1:63:ea:b7:a1:2b:8b:41:e5:
40:f3:4a:aa:f9:f8:7f:64:17:2a:03:78:20:25:80:4f:83:3f:
d0:2a:0c:5c:66:57:c5:8e:ae:53:34:bb:24:e2:aa:5b:84:1c:
b1:6a:42:9b:a2:70:b7:f8:6e:5a:00:98:e1:fd:63:2e:02:07:
9d:d5:80:93:07:a7:ed:d8:0b:bc:60:c0:ef:7e:11:fe:8f:2b:
00:98:62:ec:61:48:cb:0a:4e:f7:a9:f8:68:8b:9c:5a:65:40:
55:fe:f4:7b:76:da:69:88:24:3d:aa:6e:a3:45:ad:05:3a:89:
c9:7a:07:97:e0:df:5b:a8:8f:f5:e1:52:85:40:a4:df:e9:11:
1c:19:5d:f4:99:66:8a:bf:e8:5b:ad:d7:7d:aa:0c:02:bf:3c:
f1:83:c0:3d:c9:b4:d4:84:d1:cc:06:9c:33:ba:67:29:be:2f:
c5:11:cf:1c:61:31:15:2a:f9:fa:36:bd:38:b8:26:8e:56:cc:
e5:9c:a2:a1:6e:7d:8c:be:4b:f8:38:6c:eb:6f:71:c4:b0:02:
91:5a:b4:1a:0d:15:90:ec:22:6b:cf:6d:b4:9c:f7:7e:83:6e:
91:6f:66:d2:a0:b3:ce:85:74:66:24:e5:a7:14:7d:cf:b8:a5:
23:f8:2a:8f
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDezH4MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDY0
NzU3MTg1NDcyZjE2ZDUzZWViNjhhMTQwZTM1MTNmYTMxYzMxZDgwHhcNMjIwMTAx
MDI1ODU5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg5N2UyMTFkMzE4NTQw
Zjk1MGMwZDFlMjlkOWQwOWE3NDk0MWFhMDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAwNE3/1tonv26paiKO1JVnxfA1af06jIK5ZgUZQLQJLmVKUrg
nPmXqsBiFRFPTzzlhh/5h0usbRqkqcQqhj1M571zCIo9zzF0Gw53Wpt09IJC8tTg
lZ0TMuSSCsWz/21Drx531fpWFj6O+K7LAFIP2qlh6sm6QwwFeryLSVidL01mpf84
rf1rUfNOuZ+EwW++1f3JZFdyDfGHy0M5egHtJ4o1Tl9FT7yPubENTtxZ1COkZvXn
Cxz6XS5y1mGJhb8K8yqzHYDfE5wqTi7s0VAMNBPr3XcnQQqeRjMuw34eERLqDX+o
Vn7ynsh6LvhcJ1ZV6JZ0s6msNJwjxk1+f14opwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFJfiEdMYVA+VDA0eKdnQmnSUGqBJMB8GA1UdIwQYMBaAFGR1cYVHLxbVPuto
oUDjUT+jHDHYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
WkhWeGhVY3ZGdFUtNjJpaFFPTlJQNk1jTWRnLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8yYi8xMjE0NDctZDJjOC00Y2E4LTk2YzctODFkMTAwNzNkZWU0LzEv
bC1JUjB4aFVENVVNRFI0cDJkQ2FkSlFhb0VrLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8x
MjE0NDctZDJjOC00Y2E4LTk2YzctODFkMTAwNzNkZWU0LzEvWkhWeGhVY3ZGdFUt
NjJpaFFPTlJQNk1jTWRnLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuUbjMA0GCSqGSIb3DQEBCwUAA4IB
AQBcNyCQutpJXHrxY+q3oSuLQeVA80qq+fh/ZBcqA3ggJYBPgz/QKgxcZlfFjq5T
NLsk4qpbhByxakKbonC3+G5aAJjh/WMuAged1YCTB6ft2Au8YMDvfhH+jysAmGLs
YUjLCk73qfhoi5xaZUBV/vR7dtppiCQ9qm6jRa0FOonJegeX4N9bqI/14VKFQKTf
6REcGV30mWaKv+hbrdd9qgwCvzzxg8A9ybTUhNHMBpwzumcpvi/FEc8cYTEVKvn6
Nr04uCaOVszlnKKhbn2Mvkv4OGzrb3HEsAKRWrQaDRWQ7CJrz220nPd+g26Rb2bS
oLPOhXRmJOWnFH3PuKUj+CqP
-----END CERTIFICATE-----
Generated at Sun Apr 20 13:15:28 2025 by rpki-client