Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/4u_n82_zjbLIohYlEmDAXSCJ85g.roa
File: 4u_n82_zjbLIohYlEmDAXSCJ85g.roa (raw, json)
Hash identifier: ZNIgks7spJBvKCXMw1im87+nzk7jOjAOMC4Ocs4xJNQ=
Subject key identifier: E2:EF:E7:F3:6F:F3:8D:B2:C8:A2:16:25:12:60:C0:5D:20:89:F3:98
Certificate issuer: /CN=84284d67c9abaf6fa8fea6142a5b2558c9cbcf74
Certificate serial: 0194EDF6
Authority key identifier: 84:28:4D:67:C9:AB:AF:6F:A8:FE:A6:14:2A:5B:25:58:C9:CB:CF:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/4u_n82_zjbLIohYlEmDAXSCJ85g.roa
Signing time: Sat 01 Jan 2022 08:55:38 +0000
ROA not before: Sat 01 Jan 2022 08:55:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211136
IP address blocks: 185.15.138.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26537462 (0x194edf6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84284d67c9abaf6fa8fea6142a5b2558c9cbcf74
Validity
Not Before: Jan 1 08:55:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e2efe7f36ff38db2c8a216251260c05d2089f398
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:45:d8:05:bd:75:f8:ac:86:6a:c3:12:11:0e:
b9:f1:df:7d:50:8d:81:8b:ea:e6:34:e3:3a:3c:16:
7f:46:b2:ef:0f:0c:f7:e4:da:7d:9e:b4:b1:83:fc:
f6:c5:65:6c:be:00:41:e1:e8:60:e6:a1:54:9b:ab:
e0:a4:67:07:86:26:18:42:ee:61:9b:42:d2:27:55:
59:0f:35:0d:af:3c:25:b3:05:e6:1d:0c:b8:04:ac:
a0:8d:89:88:68:26:ca:46:f5:72:fd:6f:5e:d3:15:
a2:d2:80:5d:21:25:10:70:ad:d2:a3:32:e4:ba:39:
08:70:aa:56:02:cb:77:d9:48:3e:ec:d4:50:ab:69:
a7:eb:cd:e1:f0:69:92:83:d1:d8:c8:2c:77:7a:a4:
bc:98:21:a9:50:10:c2:ba:67:84:04:b1:fe:e9:b3:
35:97:87:91:1a:72:e1:05:7a:16:8e:fd:51:25:38:
71:d2:d9:c6:fe:71:38:5f:52:3a:bc:48:54:b2:e5:
ab:fc:ae:c4:7f:54:c7:74:2b:51:b3:8f:81:0e:ee:
7b:2e:ad:e5:01:2d:c8:87:c6:24:69:06:83:15:84:
c6:27:4f:f2:30:52:7f:e4:32:70:26:7d:98:d8:88:
79:e4:fb:d8:17:58:69:a3:0e:f3:b0:c6:50:15:eb:
9e:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:EF:E7:F3:6F:F3:8D:B2:C8:A2:16:25:12:60:C0:5D:20:89:F3:98
X509v3 Authority Key Identifier:
keyid:84:28:4D:67:C9:AB:AF:6F:A8:FE:A6:14:2A:5B:25:58:C9:CB:CF:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/4u_n82_zjbLIohYlEmDAXSCJ85g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.15.138.0/24
Signature Algorithm: sha256WithRSAEncryption
67:92:69:0c:1a:b6:24:27:32:18:ea:8a:69:cb:48:9b:20:19:
f2:59:72:d0:dd:0d:56:dc:2b:e1:de:53:87:fe:85:60:fa:58:
c0:ef:17:87:3c:75:63:82:fd:3c:ec:5f:fd:05:d6:e2:a7:77:
e6:2b:01:7f:29:6d:b5:d5:f8:4d:54:81:7a:78:ff:65:f6:d7:
90:2e:bb:0c:54:06:8d:76:0d:81:14:56:db:19:44:45:c9:5b:
ad:5b:ef:4d:70:7f:d0:c9:f1:b9:73:97:2a:5f:8f:05:4d:a9:
4b:9c:c3:ea:12:37:20:a3:db:ba:ea:3e:e6:1a:bb:3f:20:03:
9b:7d:a2:7a:49:f3:e4:37:02:ac:26:5e:71:0e:42:ef:d6:d5:
3d:f0:c0:ca:f0:dd:f2:29:54:d1:4c:7f:7b:26:57:3e:f1:5c:
1b:27:c2:c9:fc:b0:26:aa:83:b9:ff:0b:c4:17:dc:e3:7a:7c:
28:8f:dc:59:0e:d1:f2:b0:f4:3f:6f:dd:26:e0:ef:59:2a:ab:
86:3e:dc:33:ac:e0:96:35:2f:37:92:07:f7:f0:37:b9:8b:48:
24:3a:5a:e3:8c:20:16:c6:cc:e9:3f:2a:35:09:f1:df:0f:77:
47:be:5a:b0:47:f0:c9:5c:4a:22:a0:d5:f5:41:d6:c9:20:db:
11:48:15:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 16:37:32 2025 by rpki-client