Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/d6461f-17e3-4986-a5f6-72a4b3a9bb44/1/kID8lV3KXI57pB05Y-W7uCl62aU.roa
File: kID8lV3KXI57pB05Y-W7uCl62aU.roa (raw, json)
Hash identifier: bIRVD/8bCvs5FqtwHelqRt6tlBFkmwkBi22ZGlioNns=
Subject key identifier: 90:80:FC:95:5D:CA:5C:8E:7B:A4:1D:39:63:E5:BB:B8:29:7A:D9:A5
Certificate issuer: /CN=b9df156ee18b6958d4306b6311b4a086763eff62
Certificate serial: 03078E94
Authority key identifier: B9:DF:15:6E:E1:8B:69:58:D4:30:6B:63:11:B4:A0:86:76:3E:FF:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ud8VbuGLaVjUMGtjEbSghnY-_2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/d6461f-17e3-4986-a5f6-72a4b3a9bb44/1/kID8lV3KXI57pB05Y-W7uCl62aU.roa
Signing time: Sat 01 Jan 2022 13:05:54 +0000
ROA not before: Sat 01 Jan 2022 13:05:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60798
IP address blocks: 185.116.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50826900 (0x3078e94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9df156ee18b6958d4306b6311b4a086763eff62
Validity
Not Before: Jan 1 13:05:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9080fc955dca5c8e7ba41d3963e5bbb8297ad9a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:bb:50:91:7f:af:5b:f5:c1:32:e7:51:8e:ce:
45:f9:9d:28:87:fd:64:73:f2:5b:e7:a2:c0:01:ff:
96:ec:f8:83:db:9e:a4:c3:de:0f:c9:e1:e9:3d:63:
cc:8f:cf:90:84:46:91:90:57:8a:40:7b:95:83:cd:
ca:a1:3f:53:a4:dd:89:47:ef:e2:8f:4e:31:26:98:
8f:b1:d0:1b:80:1a:95:c7:e6:36:62:a9:d4:53:24:
d3:5f:ad:4a:5d:de:e7:cd:46:e3:ad:6a:21:84:f8:
64:40:5f:7f:c9:e8:5f:de:cf:4c:77:bf:d5:01:42:
ac:f3:2e:6a:7e:65:c4:1e:62:1d:a5:87:2d:9a:fb:
62:99:be:5c:d3:9e:e0:74:c0:5d:48:71:7b:9a:bd:
95:54:4b:73:d6:18:19:63:eb:ff:46:0b:c6:84:03:
1a:3e:7a:50:a4:71:83:5c:eb:01:a4:ec:0f:1c:aa:
9a:0f:b9:a9:a5:c8:7e:39:62:29:ef:a7:ee:06:3d:
d3:bc:30:21:e3:2d:9a:cb:42:07:37:bb:92:3d:8a:
6c:44:fb:d7:cd:ca:c5:36:27:a9:d4:f1:c7:37:6a:
32:86:fc:b0:9d:4e:73:de:d8:9a:b4:ae:38:9a:bd:
3f:50:cb:f1:fe:a8:79:09:9b:38:0c:09:18:16:8a:
70:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:80:FC:95:5D:CA:5C:8E:7B:A4:1D:39:63:E5:BB:B8:29:7A:D9:A5
X509v3 Authority Key Identifier:
keyid:B9:DF:15:6E:E1:8B:69:58:D4:30:6B:63:11:B4:A0:86:76:3E:FF:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ud8VbuGLaVjUMGtjEbSghnY-_2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/d6461f-17e3-4986-a5f6-72a4b3a9bb44/1/kID8lV3KXI57pB05Y-W7uCl62aU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/d6461f-17e3-4986-a5f6-72a4b3a9bb44/1/ud8VbuGLaVjUMGtjEbSghnY-_2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.116.60.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:fb:86:36:d6:0b:9b:97:8e:38:97:a0:77:d2:52:70:fa:98:
32:b3:a2:68:8a:ff:bb:42:98:da:3c:79:67:0f:ef:70:1f:8e:
13:e6:d0:ed:1b:03:94:bc:94:e3:a7:96:d0:16:56:b6:06:5c:
27:c0:19:80:3f:f3:be:2b:d6:10:59:0e:36:a9:da:16:f9:24:
0a:9d:48:7c:65:db:d7:6e:78:60:a5:d4:eb:18:d3:ba:42:ea:
71:a4:c4:10:9b:79:4d:72:34:73:bd:90:07:9f:f0:db:17:8a:
4f:f3:43:d5:38:f4:22:68:c8:c9:3a:1d:46:00:68:fa:77:d9:
38:34:76:c0:3d:0b:87:be:7a:d6:be:30:92:b0:6f:55:b1:2e:
3a:0c:04:4c:9a:ca:95:50:d2:b4:8e:bc:0b:7e:10:05:b7:cc:
3f:ac:e7:04:bf:71:4f:83:27:28:56:d4:0d:f1:b6:8d:70:9f:
83:ec:94:2d:90:e6:ef:5a:77:55:bd:6e:b0:d5:38:5b:b2:0a:
6e:19:39:a0:29:30:c4:dc:29:8f:b2:30:a1:c6:5c:a2:23:ad:
00:0a:9e:17:00:80:36:59:8d:06:3b:6e:d5:46:51:4d:96:2a:
26:8b:09:2b:cd:69:4d:59:3f:ff:81:ac:70:f9:84:75:cd:40:
b2:15:09:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:43:37 2025 by rpki-client