Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/L90ltckhla1TqfA-9I7Ghi9ka_I.roa
File: L90ltckhla1TqfA-9I7Ghi9ka_I.roa (raw, json)
Hash identifier: oHwDDOmxircZw3mS5D3QLm2mfB8EtRn0AZHzfawH6a4=
Subject key identifier: 2F:DD:25:B5:C9:21:95:AD:53:A9:F0:3E:F4:8E:C6:86:2F:64:6B:F2
Certificate issuer: /CN=c2d2ac1d7c9eccf5658b88f16f613d7b3e8e8c72
Certificate serial: 0140A6
Authority key identifier: C2:D2:AC:1D:7C:9E:CC:F5:65:8B:88:F1:6F:61:3D:7B:3E:8E:8C:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtKsHXyezPVli4jxb2E9ez6OjHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/L90ltckhla1TqfA-9I7Ghi9ka_I.roa
Signing time: Fri 06 May 2022 09:04:40 +0000
ROA not before: Fri 06 May 2022 09:04:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211804
IP address blocks: 185.250.240.0/24 maxlen: 24
185.250.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82086 (0x140a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d2ac1d7c9eccf5658b88f16f613d7b3e8e8c72
Validity
Not Before: May 6 09:04:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2fdd25b5c92195ad53a9f03ef48ec6862f646bf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c4:70:e3:61:bb:92:fa:75:ef:eb:20:97:71:
80:e7:dd:e8:5d:e0:42:aa:26:65:db:40:c0:fb:9a:
13:38:d6:3a:c2:06:35:9c:fb:d1:87:5a:31:4f:63:
b0:9a:1f:16:86:73:a0:d5:c1:1c:86:7a:82:e2:2b:
0d:c1:bf:7b:eb:26:dc:0b:64:48:fd:4d:e8:f8:be:
f0:6b:22:b9:c4:bd:b3:df:48:4f:0d:8f:07:54:8e:
74:e4:01:e1:b3:a2:8d:25:67:5b:c7:75:a5:bd:fd:
2f:7a:48:d6:ef:fa:39:f2:54:02:70:73:9a:00:e4:
8e:ae:8f:ba:f8:2d:91:da:fe:4c:71:dd:60:f0:5b:
90:54:b0:e1:91:d4:9d:b6:33:41:ec:32:56:d2:d9:
72:50:77:ea:9b:1e:b2:f6:7c:44:0e:c8:03:ba:51:
25:2d:2e:df:6e:b3:a8:1a:fc:cd:6f:6a:8c:a7:74:
ea:d8:11:40:54:07:dd:4f:0e:ea:ba:a5:8e:23:3f:
ad:6f:2c:ea:43:86:52:63:6a:67:d8:a4:33:14:fb:
87:37:f9:31:a3:3d:41:55:ee:31:10:b7:83:76:f3:
0d:65:f2:bc:f4:e2:af:88:bb:5e:df:86:21:94:c8:
5d:93:b6:bc:16:23:c7:7f:72:09:cf:3e:cc:44:fa:
09:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:DD:25:B5:C9:21:95:AD:53:A9:F0:3E:F4:8E:C6:86:2F:64:6B:F2
X509v3 Authority Key Identifier:
keyid:C2:D2:AC:1D:7C:9E:CC:F5:65:8B:88:F1:6F:61:3D:7B:3E:8E:8C:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtKsHXyezPVli4jxb2E9ez6OjHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/L90ltckhla1TqfA-9I7Ghi9ka_I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/wtKsHXyezPVli4jxb2E9ez6OjHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.240.0/24
185.250.243.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:6b:db:ca:06:0c:33:57:cf:8a:0a:68:cf:72:f6:f1:05:3b:
24:93:21:71:57:7b:b5:e2:7f:99:ec:b2:e3:d9:75:14:dc:1e:
59:b0:c7:3f:d2:6b:4a:9d:62:05:dc:f8:3a:28:68:b3:ee:2f:
74:7d:0f:38:18:10:ff:a5:3b:f5:0a:a3:9c:d5:11:b3:b8:e0:
c4:66:64:28:d4:25:88:be:60:79:a4:c6:7d:a8:89:e9:eb:2a:
5b:2a:f1:6b:f0:a6:29:87:20:0f:ef:7a:a4:29:22:03:e0:f3:
c1:73:68:b9:a8:7f:2d:8c:7d:03:11:f7:89:f0:50:03:72:1f:
0d:40:a3:7f:49:67:7f:c7:cc:f5:46:7e:26:c9:74:e6:0e:2c:
9c:d4:4f:37:90:6d:06:4c:8a:46:68:db:7e:bb:55:da:79:44:
25:35:0d:aa:a2:1a:17:da:cc:f1:29:cd:c9:10:7e:c7:ef:48:
6a:0c:f7:0b:85:59:90:50:1f:ef:ea:40:d6:c0:b1:84:71:92:
ac:10:3e:c2:15:31:1b:20:4b:e6:71:9c:dd:05:37:c8:b3:36:
73:90:88:84:75:eb:a3:dc:1f:fa:9c:49:74:60:6c:6e:f6:75:
55:29:93:2b:44:75:71:b8:71:d8:92:fd:54:61:6b:74:f2:df:
04:28:d9:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:30 2025 by rpki-client