Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/fbcbf7-ffc0-4392-8203-9c0a9e8b78e1/1/plwSnlaXycOxjnpz6WCUCf6URU4.roa
File: plwSnlaXycOxjnpz6WCUCf6URU4.roa (raw, json)
Hash identifier: HA5yPVHv+21b7+q3XCsFviRHusIX8wvwFUQpZ8ryGzc=
Subject key identifier: A6:5C:12:9E:56:97:C9:C3:B1:8E:7A:73:E9:60:94:09:FE:94:45:4E
Certificate issuer: /CN=24ecd13ae027f37f03862749347044a262028eb0
Certificate serial: 1D78A604
Authority key identifier: 24:EC:D1:3A:E0:27:F3:7F:03:86:27:49:34:70:44:A2:62:02:8E:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOzROuAn838DhidJNHBEomICjrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/fbcbf7-ffc0-4392-8203-9c0a9e8b78e1/1/plwSnlaXycOxjnpz6WCUCf6URU4.roa
Signing time: Thu 02 Jun 2022 07:02:20 +0000
ROA not before: Thu 02 Jun 2022 07:02:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199370
IP address blocks: 185.16.164.0/24 maxlen: 24
185.16.164.0/22 maxlen: 24
185.16.165.0/24 maxlen: 24
185.16.166.0/24 maxlen: 24
185.16.167.0/24 maxlen: 24
2a03:d6c0::/32 maxlen: 32
2a03:d6c0::/34 maxlen: 34
2a03:d6c0:4000::/34 maxlen: 34
2a03:d6c0:8000::/34 maxlen: 34
2a03:d6c0:c000::/34 maxlen: 34
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 494446084 (0x1d78a604)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24ecd13ae027f37f03862749347044a262028eb0
Validity
Not Before: Jun 2 07:02:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a65c129e5697c9c3b18e7a73e9609409fe94454e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:21:29:93:f0:55:d1:3d:2c:52:5a:2c:5a:ca:
05:ea:14:46:a5:19:e1:2c:ba:95:0c:1a:58:54:bb:
d7:83:c2:99:01:e2:77:dc:bd:5d:e5:19:2f:0c:d0:
7a:70:c6:67:7c:7a:b3:14:7e:b2:f1:cb:d8:cd:5c:
0b:7b:54:0c:fc:ae:b7:e0:fc:af:76:28:82:ba:37:
44:eb:d5:1e:0d:2b:47:dd:5d:da:c7:33:bb:a6:32:
4e:6b:96:56:fc:bf:ea:30:6a:28:96:db:1c:31:93:
2a:b0:95:f7:c8:cd:02:72:d0:65:13:7c:52:8d:e1:
6d:78:25:57:f8:f6:8d:94:df:b6:87:3b:c7:a2:6e:
a3:31:13:be:6e:af:a8:f3:af:b3:27:96:3e:96:ca:
80:fc:11:b8:28:2b:51:43:9d:87:b5:44:1b:81:d7:
94:ff:a6:09:00:4d:ac:80:91:62:e5:6e:de:bc:1a:
fe:ae:da:85:3e:c5:be:03:2f:4e:e1:d2:21:2e:e7:
66:7c:7b:59:c8:88:8f:0e:19:c3:2c:c6:a3:1f:09:
1b:9b:aa:e7:96:d1:3b:6d:d1:c4:09:2f:43:3e:2d:
bf:fa:ff:e6:c1:4e:75:a7:0e:a7:68:0d:52:9b:0c:
35:69:8c:26:73:e7:fd:db:76:ee:5f:35:4c:a7:dd:
63:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:5C:12:9E:56:97:C9:C3:B1:8E:7A:73:E9:60:94:09:FE:94:45:4E
X509v3 Authority Key Identifier:
keyid:24:EC:D1:3A:E0:27:F3:7F:03:86:27:49:34:70:44:A2:62:02:8E:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOzROuAn838DhidJNHBEomICjrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/fbcbf7-ffc0-4392-8203-9c0a9e8b78e1/1/plwSnlaXycOxjnpz6WCUCf6URU4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/fbcbf7-ffc0-4392-8203-9c0a9e8b78e1/1/JOzROuAn838DhidJNHBEomICjrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.16.164.0/22
IPv6:
2a03:d6c0::/32
Signature Algorithm: sha256WithRSAEncryption
04:c0:33:07:ab:bc:d0:af:c4:60:fb:27:9d:9f:4c:44:08:14:
6a:24:1d:fc:75:7a:5c:bb:d9:7a:da:23:4c:9b:df:f5:5e:38:
ab:77:ca:19:85:ab:6c:fb:14:6e:8a:88:ee:00:9d:8a:75:df:
71:db:35:28:c3:5d:d0:6c:a1:61:9d:5b:68:31:21:68:8e:14:
34:9c:4d:3b:38:1a:be:5e:77:da:93:75:72:ad:98:10:83:03:
34:4c:46:ef:4f:99:c0:58:12:c8:68:4d:3e:5f:0c:13:39:4c:
88:ea:1b:b3:fd:e7:fb:dd:52:f8:dd:92:c5:50:7b:ba:1d:e0:
0f:50:81:90:4d:3d:31:ff:f9:27:f4:76:59:a8:49:65:5d:a2:
d1:77:85:fc:48:cb:37:44:5d:26:43:d7:0d:a1:e5:68:82:15:
07:c0:84:6c:60:a1:46:f0:f4:be:79:a6:92:fb:6a:37:70:56:
4d:55:a0:8d:45:f7:55:35:92:0a:3c:da:6c:18:89:71:fe:5f:
b7:ae:4d:1d:c1:3c:f9:d1:40:06:37:0b:49:ee:a8:fd:bd:b8:
e6:8a:63:d1:e6:2c:a7:1f:47:4a:fe:1c:9b:cb:3a:c8:af:31:
7b:72:47:6e:43:ec:bc:ef:8d:66:9b:40:5a:22:ba:48:96:27:
3f:bb:9d:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:41:26 2025 by rpki-client