Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/X0ppqXaac-fq_alQf2XMaDOJkRo.roa
File: X0ppqXaac-fq_alQf2XMaDOJkRo.roa (raw, json)
Hash identifier: 6sX+9TBDnOQomkXyi8jLjzv75e44vU+H7bj5YENBjI8=
Subject key identifier: 5F:4A:69:A9:76:9A:73:E7:EA:FD:A9:50:7F:65:CC:68:33:89:91:1A
Certificate issuer: /CN=dac4cb51150802a4018cc256ad29f54720675ed5
Certificate serial: 02216D90
Authority key identifier: DA:C4:CB:51:15:08:02:A4:01:8C:C2:56:AD:29:F5:47:20:67:5E:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2sTLURUIAqQBjMJWrSn1RyBnXtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/X0ppqXaac-fq_alQf2XMaDOJkRo.roa
Signing time: Sat 01 Jan 2022 04:56:19 +0000
ROA not before: Sat 01 Jan 2022 04:56:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211457
IP address blocks: 185.218.105.0/24 maxlen: 24
2a10:d3c0::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35745168 (0x2216d90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dac4cb51150802a4018cc256ad29f54720675ed5
Validity
Not Before: Jan 1 04:56:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f4a69a9769a73e7eafda9507f65cc683389911a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:5d:72:66:6b:0a:09:c8:33:9e:65:20:b5:98:
de:cf:85:d2:fa:96:21:1e:48:73:f3:c5:6a:83:66:
26:6a:12:ef:64:71:b4:24:da:c2:d7:ef:8c:44:e7:
82:e3:84:82:16:de:d2:5e:b2:67:1e:2b:42:d9:65:
1b:f1:df:dc:8c:1e:c4:c4:ce:13:ca:34:98:bc:0a:
7a:1a:a9:d2:f8:72:ac:66:18:fc:a0:d6:c1:0b:7b:
6e:11:a0:85:b0:3d:d3:38:56:b2:ca:4f:47:40:ba:
75:c3:ee:e0:39:d7:52:db:9e:05:4e:c3:19:73:df:
48:fe:7e:37:ce:b3:39:fc:02:03:41:0f:63:cb:17:
21:5a:b7:41:94:e7:5c:49:c2:bc:02:97:84:ed:41:
e0:2a:a0:55:9b:f8:7b:e2:e3:98:0f:50:2e:da:ee:
b7:52:43:4a:e4:1f:8d:03:6c:63:d1:37:63:19:0f:
cd:d2:5c:77:40:24:66:8f:5f:f5:19:f4:bd:cf:6e:
d4:ba:4a:53:7e:01:9b:08:64:b4:b5:2f:f3:47:62:
09:75:da:65:c4:d5:63:0d:af:29:a7:c0:0f:ef:d3:
a1:a0:f7:30:12:d4:3e:82:be:6a:11:65:66:de:15:
d5:54:33:a3:a7:e9:fc:31:2c:36:1a:d3:60:eb:22:
dc:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:4A:69:A9:76:9A:73:E7:EA:FD:A9:50:7F:65:CC:68:33:89:91:1A
X509v3 Authority Key Identifier:
keyid:DA:C4:CB:51:15:08:02:A4:01:8C:C2:56:AD:29:F5:47:20:67:5E:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2sTLURUIAqQBjMJWrSn1RyBnXtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/X0ppqXaac-fq_alQf2XMaDOJkRo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.105.0/24
IPv6:
2a10:d3c0::/29
Signature Algorithm: sha256WithRSAEncryption
1a:0f:ed:0b:a3:20:e1:f2:99:34:68:40:75:b6:28:91:fd:8c:
b5:62:ef:c8:b8:79:b3:b0:d2:3b:51:34:f3:e6:8b:c4:18:4a:
59:8a:bb:24:11:f3:e1:e1:5b:ba:39:79:2d:09:c9:3d:1d:7a:
d4:23:ca:81:c4:fd:ac:4a:b0:d5:03:5f:b6:70:c1:61:d8:74:
06:30:25:32:24:92:f8:e4:08:43:90:e6:3c:c2:bb:0e:4e:93:
5e:b7:ac:6b:c0:41:a1:48:0e:ff:b0:fc:c5:0e:a6:70:18:dc:
04:3a:e3:fc:26:e3:9d:be:69:22:01:56:10:ac:0b:11:46:2f:
0f:f5:08:5b:90:4c:fd:04:75:4b:c5:90:a9:d0:eb:fe:de:37:
b0:1e:33:71:44:9b:11:ff:d9:1c:03:75:5e:4e:d7:bd:08:42:
52:1f:bd:77:7f:93:98:7f:7b:ea:23:e7:a4:0c:22:ab:0f:f9:
4d:42:6a:f3:e0:5b:cb:08:a3:e3:30:50:d1:51:56:22:2b:88:
75:77:7a:e6:0e:54:c3:63:88:41:5a:0c:25:65:68:4c:a0:eb:
59:47:77:88:8a:79:89:80:a3:35:af:d7:a9:60:43:21:cc:6b:
87:58:51:79:f9:37:d6:db:10:11:61:a4:95:d3:0f:d4:2c:b9:
7c:03:8c:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:47:15 2025 by rpki-client