Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/CwVGWngBxSuqiQdHQdWNm5QMN4Q.roa
File: CwVGWngBxSuqiQdHQdWNm5QMN4Q.roa (raw, json)
Hash identifier: //uCBWzJYt2RrQ+dnF3ToptSiWECW+Thzq2wuj3b138=
Subject key identifier: 0B:05:46:5A:78:01:C5:2B:AA:89:07:47:41:D5:8D:9B:94:0C:37:84
Certificate issuer: /CN=2b967e772cc7298305a11ffa65dd185f6a58910b
Certificate serial: 0186F5B380983F85ED4C178FB0F0D6C18F58
Authority key identifier: 2B:96:7E:77:2C:C7:29:83:05:A1:1F:FA:65:DD:18:5F:6A:58:91:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/CwVGWngBxSuqiQdHQdWNm5QMN4Q.roa
Signing time: Sat 18 Mar 2023 17:10:27 +0000
ROA not before: Sat 18 Mar 2023 17:10:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34465
IP address blocks: 185.188.28.0/24 maxlen: 24
2a12:8fc6:cd02::/48 maxlen: 48
2a12:8fc6:ace2::/48 maxlen: 48
2a12:8fc6:efdf::/48 maxlen: 48
2a12:8fc6:cd04::/48 maxlen: 48
2a12:8fc6:bab0::/48 maxlen: 48
2a12:8fc6:be01::/48 maxlen: 48
2a12:8fc6:ee01::/48 maxlen: 48
2a12:8fc6:ace1::/48 maxlen: 48
2a12:8fc6:cd01::/48 maxlen: 48
2a12:8fc6:cae1::/48 maxlen: 48
2a12:8fc6:ace3::/48 maxlen: 48
2a12:8fc6:dbaa::/48 maxlen: 48
2a12:8fc6:eaca::/48 maxlen: 48
2a12:8fc6::/32 maxlen: 32
2a12:8fc6:dae0::/48 maxlen: 48
2a12:8fc6:fae0::/48 maxlen: 48
2a12:8fc6:faa0::/48 maxlen: 48
2a12:8fc6:cd00::/48 maxlen: 48
2a12:8fc6:aa00::/48 maxlen: 48
2a12:8fc6:ce00::/48 maxlen: 48
2a12:8fc6:caa0::/48 maxlen: 48
2a12:8fc6:daa0::/48 maxlen: 48
2a12:8fc6:ca00::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:f5:b3:80:98:3f:85:ed:4c:17:8f:b0:f0:d6:c1:8f:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b967e772cc7298305a11ffa65dd185f6a58910b
Validity
Not Before: Mar 18 17:10:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0b05465a7801c52baa89074741d58d9b940c3784
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:c6:be:c8:e1:c7:15:a4:da:4d:88:7e:15:d4:
51:f5:2c:d0:db:89:f9:95:2e:fb:c2:03:75:a3:49:
29:ad:fa:04:3f:a9:3c:72:d1:92:1f:ac:28:59:65:
22:b8:02:1e:40:d9:32:8b:fe:e5:05:66:51:64:f4:
2c:ae:9b:01:0a:19:87:18:e7:a8:21:fa:82:32:bd:
02:6d:c0:2d:ab:2d:6d:1f:c4:ea:7a:49:9f:ed:f1:
d3:98:02:03:42:84:0e:19:7b:3a:56:7b:cc:b5:09:
0b:60:4c:e8:67:fd:19:b6:84:9c:f9:bc:f1:4d:c7:
53:b1:5f:6a:cc:25:4d:54:87:a1:24:2d:c2:27:2f:
fb:95:f0:05:af:48:ad:0d:3b:f9:be:37:a7:72:7e:
26:a5:65:3b:b7:b8:51:e2:8c:61:1b:a9:f0:19:e1:
b6:d7:8b:f5:56:fe:d6:20:77:90:18:84:6e:96:d3:
e2:5f:28:16:23:99:52:93:ef:ac:d1:07:2b:7b:e0:
4a:7b:80:ad:61:08:69:6d:ad:b9:6a:8f:04:42:8d:
88:54:3f:50:ce:cb:97:b1:fd:f3:83:42:19:0b:87:
24:a0:c7:a4:ba:67:3f:1a:7c:78:4c:d0:3f:38:63:
69:3d:51:31:9c:49:d4:79:80:8b:fa:42:28:15:9e:
17:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:05:46:5A:78:01:C5:2B:AA:89:07:47:41:D5:8D:9B:94:0C:37:84
X509v3 Authority Key Identifier:
keyid:2B:96:7E:77:2C:C7:29:83:05:A1:1F:FA:65:DD:18:5F:6A:58:91:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/CwVGWngBxSuqiQdHQdWNm5QMN4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.28.0/24
IPv6:
2a12:8fc6::/32
Signature Algorithm: sha256WithRSAEncryption
9d:5c:34:2a:95:7d:77:4b:33:d5:0c:10:50:ee:3a:7d:b1:ed:
08:a8:39:92:31:cb:2f:a7:5e:29:f1:d2:83:fe:77:4a:5b:87:
11:47:18:02:8c:b4:6e:64:ab:f8:cd:bd:f5:5c:0f:a1:12:b4:
fa:80:bc:36:b3:a2:d7:5e:86:70:44:4f:f8:c5:d7:a9:ad:22:
38:4a:ae:0a:5a:ae:04:96:2a:b2:7f:32:2c:fc:66:ff:12:63:
15:85:de:18:45:8f:c2:88:3f:b2:14:09:fb:4e:6e:49:f0:2c:
42:97:c6:9e:0d:5f:a7:e8:80:d0:e2:84:aa:1a:30:2a:8b:8a:
d6:62:94:5d:d7:47:f7:4c:2a:df:64:8b:fb:f7:3a:e5:10:bf:
90:1b:e8:7d:98:8a:a4:2e:6c:33:97:ed:63:bd:07:15:f8:db:
00:9e:9b:ac:b9:63:17:09:c7:a0:ad:55:64:61:e2:8c:ae:fd:
8d:69:d5:2f:52:52:03:2c:dc:c5:25:c6:f2:47:80:a4:40:8d:
7a:b3:ff:a7:b4:55:a9:e2:1b:93:38:b5:5c:6d:5e:4c:94:3c:
46:79:24:ae:33:cc:8a:fc:df:8b:60:8b:4a:f9:c5:6b:d2:6f:
d8:36:5c:5a:f8:8f:11:c5:33:a7:f2:c1:15:83:e6:f2:8b:69:
74:2d:f7:0f
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYb1s4CYP4XtTBePsPDWwY9YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiOTY3ZTc3MmNjNzI5ODMwNWExMWZmYTY1ZGQxODVmNmE1
ODkxMGIwHhcNMjMwMzE4MTcxMDI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYjA1NDY1YTc4MDFjNTJiYWE4OTA3NDc0MWQ1OGQ5Yjk0MGMzNzg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlca+yOHHFaTaTYh+FdRR9SzQ24n5
lS77wgN1o0kprfoEP6k8ctGSH6woWWUiuAIeQNkyi/7lBWZRZPQsrpsBChmHGOeo
IfqCMr0CbcAtqy1tH8Tqekmf7fHTmAIDQoQOGXs6VnvMtQkLYEzoZ/0ZtoSc+bzx
TcdTsV9qzCVNVIehJC3CJy/7lfAFr0itDTv5vjencn4mpWU7t7hR4oxhG6nwGeG2
14v1Vv7WIHeQGIRultPiXygWI5lSk++s0Qcre+BKe4CtYQhpba25ao8EQo2IVD9Q
zsuXsf3zg0IZC4ckoMekumc/Gnx4TNA/OGNpPVExnEnUeYCL+kIoFZ4X7wIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFAsFRlp4AcUrqokHR0HVjZuUDDeEMB8GA1UdIwQY
MBaAFCuWfncsxymDBaEf+mXdGF9qWJELMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSzVaLWR5ekhLWU1Gb1JfNlpkMFlYMnBZa1FzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS82NjBlNzQtYTNiYy00NDRiLTljNmEt
NThjOTZkNjZmMGExLzEvQ3dWR1duZ0J4U3VxaVFkSFFkV05tNVFNTjRRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS82NjBlNzQtYTNiYy00NDRiLTljNmEtNThjOTZkNjZmMGEx
LzEvSzVaLWR5ekhLWU1Gb1JfNlpkMFlYMnBZa1FzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAubwcMA0E
AgACMAcDBQAqEo/GMA0GCSqGSIb3DQEBCwUAA4IBAQCdXDQqlX13SzPVDBBQ7jp9
se0IqDmSMcsvp14p8dKD/ndKW4cRRxgCjLRuZKv4zb31XA+hErT6gLw2s6LXXoZw
RE/4xdeprSI4Sq4KWq4EliqyfzIs/Gb/EmMVhd4YRY/CiD+yFAn7Tm5J8CxCl8ae
DV+n6IDQ4oSqGjAqi4rWYpRd10f3TCrfZIv79zrlEL+QG+h9mIqkLmwzl+1jvQcV
+NsAnpusuWMXCcegrVVkYeKMrv2NadUvUlIDLNzFJcbyR4CkQI16s/+ntFWp4huT
OLVcbV5MlDxGeSSuM8yK/N+LYItK+cVr0m/YNlxa+I8RxTOn8sEVg+byi2l0LfcP
-----END CERTIFICATE-----
Generated at Sat Jun 7 23:28:13 2025 by rpki-client