Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/dc3246-c85a-46df-8c30-48cee26c55bb/1/FEmwOGFCDqfm7HNLKvJLl0BUiTI.roa
File: FEmwOGFCDqfm7HNLKvJLl0BUiTI.roa (raw, json)
Hash identifier: qUWXX41VP7hSZPwysleUsiMKgJN6RlPGS185p7TC67s=
Subject key identifier: 14:49:B0:38:61:42:0E:A7:E6:EC:73:4B:2A:F2:4B:97:40:54:89:32
Certificate issuer: /CN=70bb5e54f2748ecb5d8698d379339cc15f32b893
Certificate serial: 0188F2ECA420C636565CA28FD46EFC5FA748
Authority key identifier: 70:BB:5E:54:F2:74:8E:CB:5D:86:98:D3:79:33:9C:C1:5F:32:B8:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cLteVPJ0jstdhpjTeTOcwV8yuJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/dc3246-c85a-46df-8c30-48cee26c55bb/1/FEmwOGFCDqfm7HNLKvJLl0BUiTI.roa
Signing time: Sun 25 Jun 2023 14:19:34 +0000
ROA not before: Sun 25 Jun 2023 14:19:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210182
IP address blocks: 185.250.112.0/24 maxlen: 24
185.250.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:f2:ec:a4:20:c6:36:56:5c:a2:8f:d4:6e:fc:5f:a7:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70bb5e54f2748ecb5d8698d379339cc15f32b893
Validity
Not Before: Jun 25 14:19:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1449b03861420ea7e6ec734b2af24b9740548932
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:84:a5:7c:27:01:22:12:53:78:76:68:00:07:
17:3e:66:48:60:c7:c7:8c:bf:a8:47:08:e8:67:4b:
57:6a:98:14:95:1a:71:e8:f2:87:75:ec:8f:04:42:
db:5d:98:f7:96:65:ae:af:1e:96:d6:04:9c:83:ae:
3a:d9:61:3d:2e:35:6a:ad:aa:db:fe:1b:a3:4a:b9:
29:6a:a7:0b:c5:b6:01:48:bc:2b:4f:59:01:4a:e8:
f0:e7:8e:99:d1:cf:eb:1a:bc:84:d8:73:eb:50:44:
4e:76:12:44:13:30:b9:52:fc:48:7f:7d:31:2a:34:
b1:e6:49:13:b9:a5:4c:82:34:fe:3d:47:e7:a7:5e:
33:f3:45:43:78:4c:65:99:c4:5c:76:d8:2e:17:64:
09:40:a4:58:6c:db:2d:4b:13:bd:81:c3:31:70:60:
38:92:a2:32:fa:cb:d0:7b:67:0e:f3:45:1f:9b:06:
91:d5:22:59:f4:52:94:99:ec:0b:54:b9:88:46:de:
bb:5b:74:95:90:a4:df:b0:7a:cc:2e:07:5e:98:29:
13:51:fa:7a:3e:0f:64:02:02:4a:ec:c1:3f:cd:36:
00:f7:cd:c9:70:19:3a:1b:d9:98:61:0f:67:31:b3:
c7:f9:d4:95:3f:2e:ee:25:0b:80:ac:a4:cd:ef:47:
fe:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:49:B0:38:61:42:0E:A7:E6:EC:73:4B:2A:F2:4B:97:40:54:89:32
X509v3 Authority Key Identifier:
keyid:70:BB:5E:54:F2:74:8E:CB:5D:86:98:D3:79:33:9C:C1:5F:32:B8:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cLteVPJ0jstdhpjTeTOcwV8yuJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/dc3246-c85a-46df-8c30-48cee26c55bb/1/FEmwOGFCDqfm7HNLKvJLl0BUiTI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/dc3246-c85a-46df-8c30-48cee26c55bb/1/cLteVPJ0jstdhpjTeTOcwV8yuJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.112.0/23
Signature Algorithm: sha256WithRSAEncryption
69:48:a7:48:1a:bd:55:7b:18:d9:4d:ec:e4:87:ff:19:d0:9d:
9a:db:1c:c3:34:a8:06:2c:0d:8d:db:44:e9:0b:3e:f2:ba:6f:
9b:c4:d9:ba:14:e9:b8:8f:91:2e:28:36:5a:f4:84:c2:f4:ba:
90:5e:e7:6f:ea:cb:00:f4:39:9d:70:2f:8d:bb:5e:ba:aa:6f:
70:ae:a5:52:d5:53:0b:a0:a8:c8:0b:44:6e:b0:9e:9c:ab:a9:
5a:5e:10:fd:37:d0:90:c5:e3:b9:5b:ee:08:3e:33:09:5b:ec:
d0:f4:84:7a:a8:26:9f:5c:9a:de:df:23:18:c2:29:be:b1:ec:
86:56:20:35:74:f8:31:c3:47:2c:3e:0d:13:32:be:c4:88:74:
ae:f8:e3:77:09:b8:68:00:f5:87:ef:41:79:c3:6c:60:7d:10:
42:2d:18:ef:1e:7d:31:de:e6:1a:b2:25:c7:a7:47:5b:a6:13:
67:6f:3b:ad:ad:56:93:60:ff:2a:d0:4b:f7:8e:e0:ea:92:f7:
c2:b0:74:12:96:af:63:90:55:ec:aa:0a:30:fe:9e:a4:62:33:
85:22:62:b8:85:d5:41:e4:2f:ad:00:ae:38:aa:3f:53:e9:59:
e4:39:4f:4c:bc:7d:17:a4:e2:9c:dd:86:40:1e:2d:e1:83:8f:
06:df:d0:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:41:30 2025 by rpki-client