Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/d6ec3b-e717-4c3d-b0ae-5e60f6da2b09/1/5plaMWXlv0ii5auOcqGV1whvob0.roa
File: 5plaMWXlv0ii5auOcqGV1whvob0.roa (raw, json)
Hash identifier: WhH4K+wR+QCylcnkicVoUxZdlkJ1sFK9DyrM5iJw19o=
Subject key identifier: E6:99:5A:31:65:E5:BF:48:A2:E5:AB:8E:72:A1:95:D7:08:6F:A1:BD
Certificate issuer: /CN=83609f2b9d2486f36e8cd29dfa2a756a48de7c51
Certificate serial: 09FA07D5
Authority key identifier: 83:60:9F:2B:9D:24:86:F3:6E:8C:D2:9D:FA:2A:75:6A:48:DE:7C:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g2CfK50khvNujNKd-ip1akjefFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/d6ec3b-e717-4c3d-b0ae-5e60f6da2b09/1/5plaMWXlv0ii5auOcqGV1whvob0.roa
Signing time: Sat 01 Jan 2022 01:57:30 +0000
ROA not before: Sat 01 Jan 2022 01:57:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57724
IP address blocks: 185.226.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167380949 (0x9fa07d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83609f2b9d2486f36e8cd29dfa2a756a48de7c51
Validity
Not Before: Jan 1 01:57:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6995a3165e5bf48a2e5ab8e72a195d7086fa1bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f4:d3:2b:3b:c3:eb:53:c4:a4:88:b8:84:60:
44:76:bb:a1:2e:54:bf:94:54:dc:5e:0a:ad:c2:36:
c2:09:56:ba:dc:c8:f9:35:fd:01:7e:d8:4b:23:7c:
fa:99:a3:50:2c:bf:78:37:c4:97:94:85:54:47:84:
90:56:60:16:33:4a:6b:2a:3d:59:3d:d8:2c:2f:0d:
5d:7a:82:77:b4:3a:5b:e0:3e:f1:57:ba:fb:85:c6:
10:d9:36:15:c0:57:ad:da:4b:92:ad:8c:ff:9b:94:
e6:2e:3c:da:7c:52:01:bb:4c:1e:c6:95:20:f8:48:
89:50:49:47:5d:21:05:46:3c:40:d6:0d:73:fe:07:
77:49:b5:6c:e6:6b:52:db:d0:fe:0d:0e:5f:39:41:
5b:00:2b:3b:9b:08:6d:e7:8d:71:6c:53:00:cf:35:
f7:12:11:48:08:39:4d:e2:c4:fe:8d:5c:f7:43:6b:
0e:b4:27:de:46:0d:ae:dc:d5:43:6d:4c:49:22:02:
87:5e:33:70:46:9a:af:fa:11:e5:98:a9:74:e7:3f:
49:d7:29:6f:f3:08:e9:25:61:05:2b:cc:91:ac:c2:
cd:06:f8:8e:fa:75:88:95:d0:f5:aa:fb:48:ab:24:
25:68:fc:8b:25:75:69:7e:68:86:fc:f5:43:56:9e:
69:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:99:5A:31:65:E5:BF:48:A2:E5:AB:8E:72:A1:95:D7:08:6F:A1:BD
X509v3 Authority Key Identifier:
keyid:83:60:9F:2B:9D:24:86:F3:6E:8C:D2:9D:FA:2A:75:6A:48:DE:7C:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g2CfK50khvNujNKd-ip1akjefFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/d6ec3b-e717-4c3d-b0ae-5e60f6da2b09/1/5plaMWXlv0ii5auOcqGV1whvob0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/d6ec3b-e717-4c3d-b0ae-5e60f6da2b09/1/g2CfK50khvNujNKd-ip1akjefFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.163.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:34:7a:13:dc:80:28:48:c9:9c:34:d1:35:67:6b:78:6e:66:
7c:f0:9a:b9:10:7f:76:7f:f6:71:e9:91:02:8d:59:6d:48:c8:
12:a4:28:0f:b2:c3:94:6a:60:f0:59:d1:52:7e:b8:72:c5:0a:
f0:ac:ae:45:65:9d:b3:5d:ba:20:83:e9:3e:5c:a8:d9:5c:18:
ac:4b:fc:22:7c:34:05:15:7b:1d:4f:02:ec:31:17:8b:69:1b:
a5:41:56:c2:8e:c4:3d:93:3c:b1:53:41:81:4f:7e:74:3c:e1:
25:01:aa:1f:95:11:d8:8c:1c:9f:6b:96:40:58:ed:2d:ec:d2:
c2:62:71:f4:84:77:f6:97:c0:2f:5b:69:75:1d:2a:16:a6:dd:
ef:ce:3a:94:a4:fd:8d:99:f0:06:b8:8c:de:13:be:44:8f:4c:
a5:93:61:17:95:be:1f:ce:68:5d:de:51:d6:e1:d1:a1:f9:c4:
df:0a:a6:f6:9c:ec:aa:58:d5:42:60:da:42:85:60:6d:78:fe:
82:07:a7:4f:02:d2:b7:ee:22:b9:58:94:dc:9a:21:2f:08:e7:
f8:27:99:ed:da:45:ac:fe:1e:7c:9a:be:05:c3:6c:4b:01:ef:
05:c6:4a:22:a5:ec:2a:d7:51:13:eb:e5:b8:0e:de:a0:bb:11:
51:ac:11:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:29:56 2025 by rpki-client