Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/ff3b6c-6db3-4821-9a40-e3c7d4e6598f/1/v0ilkRyPBOBCWBg2p-NNfqKwhoU.roa
File: v0ilkRyPBOBCWBg2p-NNfqKwhoU.roa (raw, json)
Hash identifier: 18+klXyVfXERW7irF3+mwZIobDmNehQdieqVMtJbu14=
Subject key identifier: BF:48:A5:91:1C:8F:04:E0:42:58:18:36:A7:E3:4D:7E:A2:B0:86:85
Certificate issuer: /CN=25e1b659862d15a51cb5ff34de7223c69e48126a
Certificate serial: 0185723A0662A463E3ADAD83DB0DE4B7B67C
Authority key identifier: 25:E1:B6:59:86:2D:15:A5:1C:B5:FF:34:DE:72:23:C6:9E:48:12:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JeG2WYYtFaUctf803nIjxp5IEmo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/ff3b6c-6db3-4821-9a40-e3c7d4e6598f/1/v0ilkRyPBOBCWBg2p-NNfqKwhoU.roa
Signing time: Mon 02 Jan 2023 11:24:43 +0000
ROA not before: Mon 02 Jan 2023 11:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3225
IP address blocks: 185.75.56.0/24 maxlen: 24
185.75.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:3a:06:62:a4:63:e3:ad:ad:83:db:0d:e4:b7:b6:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25e1b659862d15a51cb5ff34de7223c69e48126a
Validity
Not Before: Jan 2 11:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf48a5911c8f04e042581836a7e34d7ea2b08685
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:10:a7:b5:3e:a0:c7:f4:0e:3f:33:4b:f6:c8:
81:e9:7c:81:68:f7:b6:4b:cb:51:a2:59:75:19:f2:
b5:a9:f6:32:7b:ea:71:4f:23:44:27:f0:f1:ca:4d:
ca:cd:aa:29:fc:05:f5:9e:4f:94:6c:06:a2:97:79:
61:42:5a:68:ab:b7:09:ec:f4:55:8e:ca:8f:48:27:
5d:09:31:19:4e:83:59:5d:d9:68:73:92:27:1b:ab:
d1:61:37:ca:d5:39:83:7c:93:05:93:b6:9f:b5:d3:
86:39:4e:bb:cf:72:e6:25:ca:e4:d7:ac:7c:7f:5f:
53:54:bb:3c:4e:17:ec:18:af:15:69:43:ca:0b:81:
6e:98:f8:db:c8:d4:64:20:47:20:aa:ec:74:20:08:
b0:43:38:0c:47:0b:3d:9e:8e:fa:0e:da:12:53:09:
8c:ea:2c:da:35:2a:15:32:78:fc:de:c6:4b:88:09:
2e:cd:0e:e7:c8:99:5f:33:86:2c:ba:b3:da:a8:cd:
32:07:50:99:64:83:41:f6:2e:4d:46:6d:c2:b4:50:
93:3d:61:64:7a:2f:24:3d:6f:57:6d:b0:cd:2a:06:
5c:aa:35:63:77:40:d9:f0:25:5e:c8:fe:2d:08:aa:
d3:0c:39:4b:15:71:fe:f3:a0:8b:80:3b:94:c0:68:
22:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:48:A5:91:1C:8F:04:E0:42:58:18:36:A7:E3:4D:7E:A2:B0:86:85
X509v3 Authority Key Identifier:
keyid:25:E1:B6:59:86:2D:15:A5:1C:B5:FF:34:DE:72:23:C6:9E:48:12:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JeG2WYYtFaUctf803nIjxp5IEmo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/ff3b6c-6db3-4821-9a40-e3c7d4e6598f/1/v0ilkRyPBOBCWBg2p-NNfqKwhoU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/ff3b6c-6db3-4821-9a40-e3c7d4e6598f/1/JeG2WYYtFaUctf803nIjxp5IEmo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.75.56.0/24
185.75.59.0/24
Signature Algorithm: sha256WithRSAEncryption
83:5e:08:4a:38:67:9e:60:d0:eb:e8:8e:f8:f0:70:75:05:46:
47:81:4a:3a:02:16:97:c3:f3:e9:8b:b0:ed:1b:46:e6:89:a4:
4f:e3:d0:80:9c:d8:0f:80:e0:75:fc:b1:27:c1:81:1e:2e:cb:
be:55:7e:49:d9:a5:13:ab:e8:82:2c:5b:4f:4d:14:8b:67:bf:
8a:90:5b:30:b9:80:cf:39:b2:65:b6:8b:b0:28:b6:43:d4:bf:
7a:e5:6e:f7:41:d8:91:d4:28:19:fd:f3:89:94:d5:f4:b4:7b:
3a:fc:49:46:27:f4:d7:c3:ad:30:57:9e:39:f4:a5:09:df:3a:
03:da:76:eb:66:76:24:94:32:79:b3:f1:01:f7:b9:86:8d:f7:
49:9e:9d:fe:9e:a0:b3:77:7f:3a:43:08:3b:e2:ac:5d:e2:f9:
92:22:e4:24:49:07:2a:71:da:e3:10:9e:9a:40:ac:11:91:d4:
71:38:7d:db:c0:3c:2f:96:a5:cd:2e:54:85:fa:bc:f9:7b:ce:
78:2f:03:fe:4c:d5:c0:c4:1f:d6:7d:bd:e1:cf:4d:d9:7d:e5:
96:9f:51:1b:99:9b:df:1a:55:95:ff:b6:93:45:de:e8:83:c5:
fb:c7:55:a3:af:54:fb:0d:95:1c:aa:35:70:07:a6:72:7a:15:
f3:db:c0:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:13:49 2025 by rpki-client