Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/1cd6ca-c052-4e3d-974d-d32e56d79b2a/1/RcslU4iQl4hTxSXq4ghzW07TSm0.roa
File: RcslU4iQl4hTxSXq4ghzW07TSm0.roa (raw, json)
Hash identifier: PN113R9zd6mnI7nH/d/bLKgZ6ahR73mosTchWl7qYs4=
Subject key identifier: 45:CB:25:53:88:90:97:88:53:C5:25:EA:E2:08:73:5B:4E:D3:4A:6D
Certificate issuer: /CN=852dc0d0998b8126babb9775ab40c162ef96fa2d
Certificate serial: 03854F83
Authority key identifier: 85:2D:C0:D0:99:8B:81:26:BA:BB:97:75:AB:40:C1:62:EF:96:FA:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hS3A0JmLgSa6u5d1q0DBYu-W-i0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/1cd6ca-c052-4e3d-974d-d32e56d79b2a/1/RcslU4iQl4hTxSXq4ghzW07TSm0.roa
Signing time: Sat 01 Jan 2022 12:03:09 +0000
ROA not before: Sat 01 Jan 2022 12:03:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59662
IP address blocks: 185.81.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59068291 (0x3854f83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=852dc0d0998b8126babb9775ab40c162ef96fa2d
Validity
Not Before: Jan 1 12:03:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=45cb25538890978853c525eae208735b4ed34a6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b2:f3:56:fa:12:67:3d:5f:45:21:3f:76:fe:
3b:d6:6e:5f:18:78:c6:46:35:58:b1:cc:d7:9f:8f:
38:d0:bb:df:28:37:02:e4:5c:99:e1:97:b4:65:a6:
9d:28:e6:51:c7:2b:94:c9:a0:6c:dc:d3:56:75:54:
a7:3a:7d:69:f1:38:ef:ae:56:d2:b9:4d:4a:6a:34:
5a:a4:98:49:06:a5:17:fa:64:b7:4e:cf:4f:f8:38:
26:0c:b6:30:af:4c:37:94:73:8d:8f:f4:a4:03:1c:
c4:9e:4c:5f:d3:e1:57:48:2a:fb:b0:91:49:f3:2e:
3f:ff:6e:7a:67:ae:6c:a4:21:c6:4d:cf:ea:e3:ea:
31:20:1c:9f:87:dc:48:02:69:74:e0:1e:2a:26:de:
af:9b:93:0c:d2:fd:72:08:f2:19:d8:d5:d5:3b:bb:
26:ce:13:6a:51:c6:13:5c:6f:b2:0f:d3:89:e2:4a:
b3:63:38:05:3c:c0:a6:11:56:1c:33:72:a6:f4:39:
45:ca:ac:0a:c0:a5:0b:1b:bb:86:7c:a9:d5:f2:2d:
92:48:ad:2e:64:c5:f3:f7:e3:35:bf:6a:c4:c7:0e:
42:5c:ac:c8:d4:88:5e:29:15:de:89:ab:20:34:69:
a1:97:f3:71:2f:7e:cc:05:bb:1e:c1:ed:3a:77:f7:
39:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:CB:25:53:88:90:97:88:53:C5:25:EA:E2:08:73:5B:4E:D3:4A:6D
X509v3 Authority Key Identifier:
keyid:85:2D:C0:D0:99:8B:81:26:BA:BB:97:75:AB:40:C1:62:EF:96:FA:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hS3A0JmLgSa6u5d1q0DBYu-W-i0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/1cd6ca-c052-4e3d-974d-d32e56d79b2a/1/RcslU4iQl4hTxSXq4ghzW07TSm0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/1cd6ca-c052-4e3d-974d-d32e56d79b2a/1/hS3A0JmLgSa6u5d1q0DBYu-W-i0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.103.0/24
Signature Algorithm: sha256WithRSAEncryption
03:c1:b9:0b:b4:f2:ee:cb:c0:80:b7:b0:bf:41:df:9d:e2:2c:
95:65:51:21:1b:e7:35:2e:2c:bf:85:31:de:f8:24:c8:25:75:
1a:48:87:16:f2:4f:9a:1e:81:69:f7:f3:2d:c5:07:92:81:cf:
3b:b8:46:cd:72:20:2b:33:9c:5c:81:61:5a:8b:8c:92:ce:f6:
a7:18:30:49:5f:26:ff:6a:8a:3a:19:ea:71:2f:fc:79:ea:5f:
1d:65:ca:76:4b:df:81:58:b8:f9:f4:05:b2:73:30:b1:b5:a1:
27:c9:cd:b3:75:f1:88:cd:bd:37:73:30:2e:49:9e:28:b9:e8:
32:7a:c6:c7:36:7f:e6:16:5f:1f:f0:ca:7d:93:d4:24:ab:37:
d0:79:f3:da:c5:2f:88:3b:2a:5c:a1:33:30:ff:07:ac:2a:7f:
1d:de:07:46:71:cd:8b:03:83:71:55:13:30:d0:87:9c:a2:02:
5c:f1:5c:52:4f:8c:68:7d:55:8c:69:07:b3:d6:aa:f1:25:65:
6c:41:49:15:a2:f2:35:45:8e:78:34:b2:d7:a0:3a:d7:33:5f:
52:12:55:9c:77:83:81:b1:04:15:66:bb:99:95:ee:1e:9b:dc:
b8:d7:36:99:01:4c:01:8c:4f:d0:86:3d:16:d9:a6:41:43:1c:
32:52:0a:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 01:00:10 2025 by rpki-client