Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/e22fea-84d0-406a-8a6f-46f5fa2c9303/1/vRkk6kXy4rrfUL66AsSwAj4PDa8.roa
File: vRkk6kXy4rrfUL66AsSwAj4PDa8.roa (raw, json)
Hash identifier: 4ih7q+LhMtwT7e+pucvl1gYJVVNWpNYMmL1T6G5JFx4=
Subject key identifier: BD:19:24:EA:45:F2:E2:BA:DF:50:BE:BA:02:C4:B0:02:3E:0F:0D:AF
Certificate issuer: /CN=f0c49c2178e82fdc1f419f5a7c51721df53d7a48
Certificate serial: 064A9E9F
Authority key identifier: F0:C4:9C:21:78:E8:2F:DC:1F:41:9F:5A:7C:51:72:1D:F5:3D:7A:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8MScIXjoL9wfQZ9afFFyHfU9ekg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/e22fea-84d0-406a-8a6f-46f5fa2c9303/1/vRkk6kXy4rrfUL66AsSwAj4PDa8.roa
Signing time: Fri 29 Apr 2022 12:52:05 +0000
ROA not before: Fri 29 Apr 2022 12:52:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20559
IP address blocks: 185.52.60.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105553567 (0x64a9e9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0c49c2178e82fdc1f419f5a7c51721df53d7a48
Validity
Not Before: Apr 29 12:52:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd1924ea45f2e2badf50beba02c4b0023e0f0daf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:0a:f6:ad:db:3a:36:f1:3a:46:ba:f0:b6:4d:
70:f0:2e:1e:f5:d3:77:b5:f8:ed:d1:95:08:33:55:
60:b6:78:a4:92:49:e0:35:16:b9:fe:9e:05:3f:fa:
81:68:8e:89:2a:51:2d:c1:f8:5a:d4:ee:48:01:63:
1e:62:bf:62:69:58:f3:91:5a:97:b5:b6:41:5d:8f:
59:4a:4a:d5:c5:94:2f:e4:9d:9f:42:94:12:ee:99:
35:0f:aa:c3:c3:7d:ae:0a:6d:42:18:8d:9d:b9:62:
f0:23:e5:89:e1:a6:fa:bb:16:58:c5:99:e2:fa:22:
4a:df:ca:a3:39:68:32:12:ae:f9:76:9e:0f:c3:31:
1e:91:92:99:a0:58:a7:5b:9c:17:29:8d:66:93:62:
e8:f1:36:36:bb:58:83:15:44:ff:bd:04:df:48:4c:
0d:65:fd:48:3f:b2:f0:4e:d3:2a:df:00:2f:00:ec:
90:df:91:b6:64:c5:aa:6b:b4:03:2b:b6:27:94:2b:
20:a4:6d:9c:8b:42:03:54:fd:51:af:fa:d6:c4:23:
b9:eb:2f:98:e0:10:eb:89:a6:5f:3d:c6:25:21:ea:
f0:dd:eb:92:4a:59:15:2c:2c:07:e7:92:93:8d:5e:
95:7a:66:84:a4:10:fa:93:a4:06:13:52:0c:80:ec:
29:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:19:24:EA:45:F2:E2:BA:DF:50:BE:BA:02:C4:B0:02:3E:0F:0D:AF
X509v3 Authority Key Identifier:
keyid:F0:C4:9C:21:78:E8:2F:DC:1F:41:9F:5A:7C:51:72:1D:F5:3D:7A:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8MScIXjoL9wfQZ9afFFyHfU9ekg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/e22fea-84d0-406a-8a6f-46f5fa2c9303/1/vRkk6kXy4rrfUL66AsSwAj4PDa8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/e22fea-84d0-406a-8a6f-46f5fa2c9303/1/8MScIXjoL9wfQZ9afFFyHfU9ekg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.52.60.0/22
Signature Algorithm: sha256WithRSAEncryption
b6:c4:c2:6a:46:e0:87:63:cc:3f:c7:23:9c:fc:51:c9:58:dd:
32:f4:70:66:9c:24:63:07:c6:27:4c:ac:67:27:b7:01:95:61:
a2:8c:71:8c:05:7b:27:43:1e:1f:ab:78:b1:ef:28:96:af:01:
35:73:89:58:85:8b:9b:2c:79:21:38:e5:65:80:26:a1:75:ba:
c4:6a:62:91:49:30:96:2c:af:09:41:55:a8:76:c9:d4:e2:3d:
4c:73:a7:3b:b3:e5:e8:d1:02:2d:56:4b:8c:c5:78:8d:33:e2:
b1:78:61:fd:55:39:8d:e7:30:89:b2:4a:40:80:d8:1e:e3:5e:
a0:a5:c4:bf:ad:f2:01:f6:c0:68:a6:20:2f:2f:39:d1:9f:23:
0b:e9:cf:5e:60:a6:09:94:59:0d:8a:42:67:42:a5:31:10:16:
a8:6c:bd:1f:89:f1:ab:e4:80:dd:de:ac:bc:c3:91:1c:ad:d6:
ad:bb:50:c9:75:d4:a8:de:6e:c8:08:34:c3:71:e3:d0:25:f8:
6d:b0:ea:20:bb:2d:de:8b:21:ec:73:b9:68:84:61:86:09:b7:
9d:b9:5d:5b:f3:93:6d:18:b7:41:d1:bc:b0:66:d5:bf:48:44:
b1:4a:5f:df:ac:a9:db:87:04:4b:b5:32:1a:ce:27:54:f3:b4:
b3:83:f4:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:39:25 2025 by rpki-client