Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/9aea8c-2199-4d46-91ed-ea66844149ee/1/2GDwx9uSEiJMV7dzkiNN-zmgPbg.roa
File: 2GDwx9uSEiJMV7dzkiNN-zmgPbg.roa (raw, json)
Hash identifier: u0ZeeXk1gIKApk8cWfyd4Z94LA8P1jE2m5imek1vNrw=
Subject key identifier: D8:60:F0:C7:DB:92:12:22:4C:57:B7:73:92:23:4D:FB:39:A0:3D:B8
Certificate issuer: /CN=ab1c29c95d248cbffa744ab34e47eacca73550d1
Certificate serial: 0185A08DB2C68F5420F12023A783912C9F0A
Authority key identifier: AB:1C:29:C9:5D:24:8C:BF:FA:74:4A:B3:4E:47:EA:CC:A7:35:50:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qxwpyV0kjL_6dEqzTkfqzKc1UNE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/9aea8c-2199-4d46-91ed-ea66844149ee/1/2GDwx9uSEiJMV7dzkiNN-zmgPbg.roa
Signing time: Wed 11 Jan 2023 11:18:38 +0000
ROA not before: Wed 11 Jan 2023 11:18:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212605
IP address blocks: 185.184.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a0:8d:b2:c6:8f:54:20:f1:20:23:a7:83:91:2c:9f:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab1c29c95d248cbffa744ab34e47eacca73550d1
Validity
Not Before: Jan 11 11:18:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d860f0c7db9212224c57b77392234dfb39a03db8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:2a:45:97:c7:06:d9:2f:f5:26:80:16:60:6a:
1a:0b:00:6e:c8:20:4c:1a:43:4c:14:34:cc:e0:03:
ab:bf:3b:2e:5e:11:76:44:60:c2:f8:99:c2:93:bd:
57:45:4b:63:65:e6:9c:1c:11:0c:0d:a7:ab:a1:4f:
12:e0:41:da:5b:01:aa:19:1a:de:6e:54:ee:4d:7f:
c3:fb:8b:fa:19:fd:15:62:30:94:a7:30:fe:27:57:
65:1c:b7:13:45:a6:cb:e7:47:9e:e4:a8:b6:77:31:
af:f1:c2:de:fc:00:ea:4a:9b:ad:70:72:8b:fe:c0:
a3:5a:04:2b:8f:a4:f0:53:f3:c9:a3:0d:29:82:4f:
66:56:5b:5b:ea:50:44:35:6d:58:c5:8f:6b:58:d8:
ee:d3:80:60:8e:a7:4d:76:68:44:0c:a7:74:77:1a:
03:7f:8c:f6:6f:57:69:10:78:7b:4d:ff:3c:8c:63:
ac:eb:3a:d8:0a:f8:19:c4:57:0e:c6:51:cb:d3:56:
cb:25:14:4f:ac:14:2e:88:d9:37:62:e6:da:9e:fc:
fa:ba:92:65:f3:7d:c7:10:7b:3b:8a:a5:f4:de:3d:
29:2c:ce:1d:09:8f:b3:e8:c9:1b:3e:1e:6c:9f:7b:
d6:8b:68:b7:db:40:62:a2:d9:34:d1:a8:55:65:82:
57:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:60:F0:C7:DB:92:12:22:4C:57:B7:73:92:23:4D:FB:39:A0:3D:B8
X509v3 Authority Key Identifier:
keyid:AB:1C:29:C9:5D:24:8C:BF:FA:74:4A:B3:4E:47:EA:CC:A7:35:50:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qxwpyV0kjL_6dEqzTkfqzKc1UNE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/9aea8c-2199-4d46-91ed-ea66844149ee/1/2GDwx9uSEiJMV7dzkiNN-zmgPbg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/9aea8c-2199-4d46-91ed-ea66844149ee/1/qxwpyV0kjL_6dEqzTkfqzKc1UNE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.184.230.0/24
Signature Algorithm: sha256WithRSAEncryption
69:d1:87:b4:ae:82:f6:99:06:28:11:a7:33:0f:11:f6:d3:aa:
08:4d:17:24:00:84:f5:29:08:12:b4:02:80:d0:ea:c3:27:b3:
27:0d:5b:b9:b8:30:22:36:ff:6d:ca:1b:28:c5:5d:6c:a5:65:
32:34:24:9e:98:fa:b6:58:75:3e:48:13:2c:d8:7e:27:c8:50:
9a:d0:45:49:8e:e6:74:8c:95:7c:2b:cf:4e:40:ae:df:2f:da:
ce:4e:b2:58:6b:2b:23:d8:07:10:b6:c8:b3:49:31:4b:5c:9d:
10:ec:9c:77:73:81:2e:c9:98:62:24:e4:40:f2:f6:12:be:3b:
c4:60:0e:92:e9:c4:d8:5e:0a:d5:46:4c:86:dc:de:ab:50:7e:
5b:19:aa:28:02:ea:d5:e8:5d:8d:2f:2c:82:8d:13:ad:39:61:
32:55:fe:c5:e8:d1:73:48:c6:e2:04:4c:16:23:c1:eb:4a:86:
31:e8:c7:14:ce:c4:ad:37:ba:e4:76:50:a2:d5:d0:44:5f:67:
1f:5f:23:9c:af:d8:7a:0b:a9:38:2f:d2:b2:5a:c6:6c:3a:34:
6a:b1:22:6d:b6:8b:70:33:aa:dc:40:be:d8:b4:a5:bc:30:61:
a9:76:75:9a:fd:54:b6:a9:6b:72:2b:e9:6b:fc:e4:2b:27:04:
87:1f:66:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 02:11:11 2025 by rpki-client