Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/a5gLAdKP6zBUMQteknG6xqaJ7aY.roa
File: a5gLAdKP6zBUMQteknG6xqaJ7aY.roa (raw, json)
Hash identifier: 24oVl99V830uOTAsNNnW9/dceJk7tlobIAneNLF9zfQ=
Subject key identifier: 6B:98:0B:01:D2:8F:EB:30:54:31:0B:5E:92:71:BA:C6:A6:89:ED:A6
Certificate issuer: /CN=b14aba8b60749393478e83c360e6cbd75d156f89
Certificate serial: 018C14C8511520564EC48EBE66B8B7890176
Authority key identifier: B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/a5gLAdKP6zBUMQteknG6xqaJ7aY.roa
Signing time: Tue 28 Nov 2023 07:15:21 +0000
ROA not before: Tue 28 Nov 2023 07:15:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205953
IP address blocks: 185.93.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:14:c8:51:15:20:56:4e:c4:8e:be:66:b8:b7:89:01:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b14aba8b60749393478e83c360e6cbd75d156f89
Validity
Not Before: Nov 28 07:15:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6b980b01d28feb3054310b5e9271bac6a689eda6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:9e:16:6a:23:4d:3f:5a:f2:c9:eb:04:71:2e:
65:91:b5:cf:4f:18:19:8e:d9:26:5d:7b:41:ec:38:
74:73:42:b9:49:a0:aa:d7:77:24:91:f8:bd:41:92:
ff:c3:b0:a4:2c:75:c5:b7:a8:86:79:47:85:dc:08:
e0:d1:56:1b:23:63:d3:5d:77:b1:1e:12:80:4c:7a:
89:18:b1:3b:84:a4:d1:b9:5b:26:49:59:8c:f7:55:
c6:75:a1:97:ef:3c:2d:41:df:92:7d:8d:9f:ff:06:
7f:57:06:2d:a3:1c:54:66:92:4f:a7:1f:e1:d9:fa:
91:4b:69:45:7b:ea:9a:5b:c9:d4:20:2c:d0:8d:e1:
94:58:e9:3e:3d:a1:b7:06:97:99:b3:08:83:57:f4:
ad:7c:52:eb:8b:2f:bb:a4:ac:50:0b:5f:c8:ee:1b:
5c:b7:23:44:e3:25:72:e6:06:b8:e8:27:96:bb:c0:
f4:56:6c:ec:8e:e9:2c:1b:63:48:8e:2e:ff:d7:61:
b8:8e:be:bb:77:81:3f:0f:0a:12:6c:2c:f6:2b:11:
2c:31:7d:ab:f4:63:f9:46:a5:cd:37:9a:8d:e7:be:
7d:af:cc:51:23:73:a7:a3:fd:ec:fb:23:85:c6:a3:
30:75:71:b1:86:80:93:50:ec:c8:0a:9c:62:3b:8c:
b1:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:98:0B:01:D2:8F:EB:30:54:31:0B:5E:92:71:BA:C6:A6:89:ED:A6
X509v3 Authority Key Identifier:
keyid:B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/a5gLAdKP6zBUMQteknG6xqaJ7aY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.248.0/24
Signature Algorithm: sha256WithRSAEncryption
23:c4:ea:e3:cb:87:d8:77:8d:21:5c:cf:51:d5:3c:2b:19:76:
7a:65:bc:96:ee:20:d4:cb:e7:2f:70:56:6d:f9:c6:c3:10:ae:
98:41:d2:65:cb:09:de:4a:12:38:6a:c9:93:42:9f:eb:a1:67:
a5:30:a7:84:e7:3f:0c:f6:f8:ea:fc:db:78:bf:ed:89:50:ef:
60:05:a6:e5:2b:a9:bd:71:84:15:cc:bb:93:f5:f6:7d:66:e1:
d2:17:1b:d7:18:4f:a6:ba:04:9d:86:55:4f:b8:82:5c:89:8c:
43:fc:15:55:19:46:35:ee:88:3f:34:2c:82:4b:78:df:4a:93:
f7:2e:b5:19:a1:cd:9c:f9:6a:9d:cb:85:41:7b:5d:d0:d6:9e:
a5:98:00:1b:fc:ff:35:c6:c6:29:5f:8c:d8:06:29:ce:4d:b1:
5b:d1:f3:80:50:64:e5:7b:ce:0e:45:47:10:da:e8:1e:ca:b4:
19:d8:43:99:73:d3:72:b2:c6:67:d4:ff:f5:8b:92:66:b7:89:
44:c2:1f:d5:e1:8c:34:32:50:d9:84:f0:82:36:02:f7:78:cf:
c8:42:78:16:86:73:8c:86:05:68:d5:ea:10:09:5b:8f:90:0c:
f5:95:40:5a:cf:17:b2:85:7b:36:c9:a3:cd:b2:ff:52:30:d4:
37:04:7d:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 03:41:43 2025 by rpki-client