Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/b1K15lSiNPTTgRutqRTUSf2SyRs.roa
File: b1K15lSiNPTTgRutqRTUSf2SyRs.roa (raw, json)
Hash identifier: BFMiydMzFo5YUtP2AL5Z2FlwpuFeXjE61B9Lxvbl99Y=
Subject key identifier: 6F:52:B5:E6:54:A2:34:F4:D3:81:1B:AD:A9:14:D4:49:FD:92:C9:1B
Certificate issuer: /CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895
Certificate serial: 0122F458
Authority key identifier: B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/b1K15lSiNPTTgRutqRTUSf2SyRs.roa
Signing time: Thu 26 May 2022 10:00:14 +0000
ROA not before: Thu 26 May 2022 10:00:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 133973
IP address blocks: 185.63.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19067992 (0x122f458)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895
Validity
Not Before: May 26 10:00:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f52b5e654a234f4d3811bada914d449fd92c91b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:33:88:f8:b5:d5:db:bc:06:d2:10:cd:04:8b:
eb:50:36:f7:08:c8:64:c2:ad:98:53:92:07:c2:71:
e2:cb:ae:fd:64:04:6a:12:25:26:0c:e2:5b:90:5d:
15:6c:99:6a:75:5a:97:c7:2b:33:59:78:f1:e0:ce:
74:32:66:b7:6b:39:40:9f:de:e3:17:f8:78:4b:f7:
3d:46:e0:77:c8:61:65:4e:5e:31:c2:49:98:1d:30:
c5:b4:ba:e8:ce:81:a1:d3:36:19:ef:7a:c0:54:ec:
e5:1c:59:dc:01:e6:ab:7d:46:cb:c9:b0:93:5b:e3:
56:77:be:37:1e:b7:8f:2b:5b:1d:43:e7:2a:7c:f4:
a7:92:a3:76:33:20:5b:81:84:8d:b0:62:90:ef:af:
68:24:3e:54:c3:5f:d9:0b:73:0d:d7:7f:1a:2e:5b:
d1:3a:23:2b:54:1a:4d:b1:7f:ce:28:08:6e:cd:8f:
1f:8e:02:9a:15:7a:3c:a1:c2:3a:a2:45:c0:3e:37:
5a:9d:48:3b:27:4f:f9:8a:ba:81:5d:dc:69:70:90:
2b:fc:8c:a6:ee:a0:2b:a0:28:a0:6e:5a:43:b7:11:
98:17:74:37:76:d1:87:e3:6a:65:62:6b:80:99:3e:
5f:b5:0a:66:d2:75:5b:91:ea:08:8c:9a:29:21:cb:
82:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:52:B5:E6:54:A2:34:F4:D3:81:1B:AD:A9:14:D4:49:FD:92:C9:1B
X509v3 Authority Key Identifier:
keyid:B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/b1K15lSiNPTTgRutqRTUSf2SyRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.34.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:6e:f9:62:d4:79:b9:ba:6b:5c:67:0c:ce:1a:e8:25:51:34:
33:cb:b4:c5:7b:c0:b6:6f:a7:ea:f3:4d:31:aa:1a:45:fb:96:
50:4a:69:75:e9:b1:e1:5f:20:cc:33:99:3d:9f:7b:91:22:a8:
ca:39:19:77:31:d9:70:51:45:65:12:02:47:fc:2e:bb:8c:03:
bb:ce:54:4b:50:cf:05:7f:18:f4:b8:7e:c4:ad:9c:07:d5:13:
a2:b6:d9:bb:81:2c:7b:2c:2d:51:50:3c:43:05:be:a0:33:98:
04:24:83:ac:39:c9:36:51:d7:b2:51:2f:02:ab:d4:eb:ea:f4:
9e:8a:c9:9b:2c:41:43:30:84:44:b0:45:90:0c:3f:5f:49:58:
c2:88:ff:63:9f:bc:72:9a:bf:b3:d1:58:be:f3:ba:eb:43:bb:
a8:c9:ce:ab:96:38:3d:84:34:be:43:eb:f1:66:8c:2b:a9:58:
68:2d:c5:c4:32:e2:d1:dc:37:86:9f:bf:e3:a2:7f:99:df:cf:
6c:6b:24:f9:57:f0:87:7f:e1:44:3a:7a:23:13:1b:75:c3:c3:
1b:fb:22:06:c6:d8:0b:0e:a4:b2:4d:fb:03:b0:74:97:d9:79:
06:bd:aa:d5:56:64:c9:c0:5a:17:04:ff:9c:0e:ac:4e:57:8e:
da:d0:29:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:24:59 2025 by rpki-client