Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/d71ef8-4b98-400a-89ee-c61bf7749df5/1/O9YMEoA9QgvTx-YYQRap-jv_FoY.roa
File: O9YMEoA9QgvTx-YYQRap-jv_FoY.roa (raw, json)
Hash identifier: +yQNE5pkIsuiYs99rZRgSDtyfBxVwTJ1vwcQb0Q+GYk=
Subject key identifier: 3B:D6:0C:12:80:3D:42:0B:D3:C7:E6:18:41:16:A9:FA:3B:FF:16:86
Certificate issuer: /CN=5c45ceb18b14a737282b75af0ba16cffd7a6abae
Certificate serial: 017350
Authority key identifier: 5C:45:CE:B1:8B:14:A7:37:28:2B:75:AF:0B:A1:6C:FF:D7:A6:AB:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XEXOsYsUpzcoK3WvC6Fs_9emq64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/d71ef8-4b98-400a-89ee-c61bf7749df5/1/O9YMEoA9QgvTx-YYQRap-jv_FoY.roa
Signing time: Wed 25 May 2022 11:50:13 +0000
ROA not before: Wed 25 May 2022 11:50:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62173
IP address blocks: 185.75.196.0/24 maxlen: 24
185.75.196.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95056 (0x17350)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c45ceb18b14a737282b75af0ba16cffd7a6abae
Validity
Not Before: May 25 11:50:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3bd60c12803d420bd3c7e6184116a9fa3bff1686
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:21:f8:e4:6e:ff:82:83:ff:d9:3d:93:db:25:
33:9a:05:a0:b8:82:9f:3d:31:a2:9e:47:61:d7:ce:
ca:8c:e6:18:bd:01:14:05:d6:4e:ab:3d:e8:aa:df:
2e:d8:a4:d6:ef:ae:a7:34:05:b5:15:0b:40:8c:8c:
2d:fb:f8:63:cb:89:42:e6:41:06:97:41:52:38:ca:
0a:c6:ed:ce:2d:d2:1f:e6:2c:cc:c6:3f:07:11:3e:
d4:c8:34:5d:69:96:ed:a4:8c:4a:6a:45:7b:0d:a4:
6a:7f:f4:35:f4:ba:26:9c:36:96:bb:3a:c8:70:4b:
9e:a9:7c:74:b5:5a:30:a2:21:6a:61:b8:eb:73:f5:
cf:72:9d:ae:bc:b5:a4:c9:d5:17:35:54:d6:3e:46:
b5:d4:19:80:3c:a6:b7:34:23:d3:62:85:97:ee:25:
e2:28:85:60:82:76:83:1c:ab:ed:d3:af:3b:d9:7c:
d0:3f:2e:5c:3f:b5:93:3a:96:8c:2b:a5:43:20:4d:
57:32:b9:c3:eb:8a:52:0a:c8:41:d7:5d:09:01:d0:
9c:6f:1f:e9:c8:62:e5:0f:40:10:d5:94:29:1c:43:
17:4e:1e:38:ad:44:89:c6:47:c6:4e:4a:f7:2d:d9:
eb:1c:34:bc:dd:f7:a1:a7:b6:83:c5:88:f3:b0:09:
e7:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:D6:0C:12:80:3D:42:0B:D3:C7:E6:18:41:16:A9:FA:3B:FF:16:86
X509v3 Authority Key Identifier:
keyid:5C:45:CE:B1:8B:14:A7:37:28:2B:75:AF:0B:A1:6C:FF:D7:A6:AB:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XEXOsYsUpzcoK3WvC6Fs_9emq64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/d71ef8-4b98-400a-89ee-c61bf7749df5/1/O9YMEoA9QgvTx-YYQRap-jv_FoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/d71ef8-4b98-400a-89ee-c61bf7749df5/1/XEXOsYsUpzcoK3WvC6Fs_9emq64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.75.196.0/23
Signature Algorithm: sha256WithRSAEncryption
6a:84:7c:37:3e:dc:9b:2d:63:2d:9c:45:58:d5:0a:25:0e:4b:
9d:d1:a0:2f:83:83:7d:d4:4b:6a:d5:91:ed:cf:4a:72:9f:9d:
bf:41:d9:37:85:33:d4:bc:53:97:16:5e:08:cf:71:c3:37:5b:
e7:5e:31:cf:17:f1:1e:1d:01:ec:2b:41:81:0b:1a:55:aa:28:
64:16:1c:d6:bf:88:83:0e:b3:40:e8:c9:a3:8a:14:fe:82:c8:
eb:b6:ba:bd:35:9c:17:f1:d1:c7:85:6e:c8:16:a6:d8:18:b0:
69:ad:11:b3:8f:01:cd:d8:97:2d:1c:53:ab:82:a6:c2:43:97:
76:e9:fb:e5:80:29:36:d4:22:f5:09:dd:99:e1:59:14:d3:c4:
9f:1d:76:8d:48:36:e6:77:c4:94:c4:53:30:c8:80:e1:d2:5f:
3a:79:62:fb:45:04:4e:b9:d8:30:e1:37:99:6c:09:ff:e8:d7:
6f:a4:c4:39:f0:7b:52:40:f3:61:a8:2c:56:4b:aa:95:e4:c0:
6b:c4:3b:95:22:84:1f:ec:cd:3a:76:54:69:9f:83:e3:2a:92:
f2:08:f1:df:28:4d:7b:f7:07:fa:54:1f:23:b7:b7:7c:12:4a:
44:bc:46:f2:a0:3f:1e:80:b5:2b:4b:da:de:af:8a:af:a8:59:
81:68:0d:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 19:36:57 2025 by rpki-client