Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/4989ba-9af3-4e3d-845d-eb977164a7e4/1/6Flgci1Sv5Imn6qtDCfjbJcBZXo.roa
File: 6Flgci1Sv5Imn6qtDCfjbJcBZXo.roa (raw, json)
Hash identifier: HdRQ6bb+Zb5p+PYTyxFD7sjGqI65EhbBOXBVR9nHn/c=
Subject key identifier: E8:59:60:72:2D:52:BF:92:26:9F:AA:AD:0C:27:E3:6C:97:01:65:7A
Certificate issuer: /CN=0a77196340d2144b8ca7b0778984bb04bc1cb378
Certificate serial: 01856C25E957CFBFE2827A92933DA8FFAB41
Authority key identifier: 0A:77:19:63:40:D2:14:4B:8C:A7:B0:77:89:84:BB:04:BC:1C:B3:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CncZY0DSFEuMp7B3iYS7BLwcs3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/4989ba-9af3-4e3d-845d-eb977164a7e4/1/6Flgci1Sv5Imn6qtDCfjbJcBZXo.roa
Signing time: Sun 01 Jan 2023 07:05:01 +0000
ROA not before: Sun 01 Jan 2023 07:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9002
IP address blocks: 185.212.88.0/23 maxlen: 23
185.212.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:25:e9:57:cf:bf:e2:82:7a:92:93:3d:a8:ff:ab:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a77196340d2144b8ca7b0778984bb04bc1cb378
Validity
Not Before: Jan 1 07:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e85960722d52bf92269faaad0c27e36c9701657a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:b5:d6:d0:d5:d5:fa:28:67:4d:58:8c:5c:01:
53:37:96:38:1e:56:c6:db:67:f6:60:48:1e:73:ba:
51:b2:ca:46:75:49:b4:5d:04:4e:58:66:75:24:da:
b4:f5:b9:8c:23:a5:60:be:87:fc:1f:bc:d4:9f:fc:
50:fc:96:3d:d2:e9:fd:47:38:81:b2:f0:f9:17:69:
ed:66:be:27:54:d7:97:c8:48:f7:4d:b0:e4:21:c3:
bc:81:0c:47:03:1c:7b:6f:07:93:a3:dd:93:39:9e:
b0:cd:9c:b8:e8:07:e4:c3:04:d9:72:7e:19:d5:b7:
d4:b6:ac:97:bf:10:e4:1a:61:d6:45:e8:2c:d4:ae:
c9:49:c5:54:06:9b:4c:35:76:8f:39:55:49:58:48:
23:84:25:c4:5e:ea:35:58:5c:79:f2:78:24:69:59:
aa:51:66:0b:de:aa:19:41:08:4b:db:ac:84:a0:98:
b1:96:f8:1e:37:6f:09:4a:a5:31:c6:df:30:d7:69:
9a:c2:8b:69:f4:72:bb:71:9c:02:62:7c:3e:69:9e:
5e:57:1a:51:26:6f:80:11:50:2d:f2:91:33:e9:36:
2d:31:db:2b:26:85:18:e9:ea:1f:76:4a:84:b9:57:
3f:c2:34:d1:e4:67:cb:cf:5b:a5:6f:29:7f:de:1e:
bb:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:59:60:72:2D:52:BF:92:26:9F:AA:AD:0C:27:E3:6C:97:01:65:7A
X509v3 Authority Key Identifier:
keyid:0A:77:19:63:40:D2:14:4B:8C:A7:B0:77:89:84:BB:04:BC:1C:B3:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CncZY0DSFEuMp7B3iYS7BLwcs3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/4989ba-9af3-4e3d-845d-eb977164a7e4/1/6Flgci1Sv5Imn6qtDCfjbJcBZXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/4989ba-9af3-4e3d-845d-eb977164a7e4/1/CncZY0DSFEuMp7B3iYS7BLwcs3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.88.0-185.212.90.255
Signature Algorithm: sha256WithRSAEncryption
39:9d:7b:fb:c9:a5:c7:a6:84:74:04:04:28:41:7a:01:14:88:
67:dd:48:54:92:7d:db:5e:06:6e:0c:91:e2:ee:51:58:3f:b4:
7b:42:2e:d9:47:e6:f8:fb:6e:f0:7c:e6:e2:f2:17:c2:04:93:
69:81:92:33:ee:a5:c4:88:ca:10:af:a4:ef:36:12:8e:f9:55:
b1:93:02:35:07:52:13:25:ce:b4:02:95:fd:4b:8d:bd:13:25:
8c:32:1b:f9:b5:ff:9b:73:c4:50:e6:c0:1c:bd:fe:a4:39:6f:
25:6d:c8:79:52:fc:94:7e:f9:8d:98:f3:96:0f:b0:0a:20:49:
72:18:d4:40:61:ec:82:d3:c7:58:ea:32:00:3b:51:d2:4e:41:
24:77:dd:30:98:9e:b9:09:9f:95:f7:68:10:0e:6b:29:66:37:
aa:4d:79:39:81:41:9a:fd:09:5f:3d:df:04:a9:e2:3d:70:da:
6a:8a:21:0e:36:ed:39:86:d6:73:b0:30:79:19:98:a2:ce:ba:
4a:59:31:f0:99:f8:fe:d1:43:0e:de:29:78:02:77:6d:e9:63:
e8:34:f1:11:3e:1c:1b:c3:51:5c:35:42:e4:05:07:fb:bf:88:
b7:e3:01:0c:a7:dc:55:25:44:44:6b:c9:03:89:e5:d3:99:26:
34:7f:74:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:08:52 2025 by rpki-client