Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/278f68-c16f-4a2f-80f7-4130fa48b559/1/apPW8kgxFPyK9XWwwji3zg5xRa0.roa
File: apPW8kgxFPyK9XWwwji3zg5xRa0.roa (raw, json)
Hash identifier: K2KgV6BHxrItwSJjVuH7gKJ0WzdIETxV5fMohvx3JiM=
Subject key identifier: 6A:93:D6:F2:48:31:14:FC:8A:F5:75:B0:C2:38:B7:CE:0E:71:45:AD
Certificate issuer: /CN=0a332f5adc0469533bbddcfce8957eaee58bfd60
Certificate serial: 0FC12BBD
Authority key identifier: 0A:33:2F:5A:DC:04:69:53:3B:BD:DC:FC:E8:95:7E:AE:E5:8B:FD:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CjMvWtwEaVM7vdz86JV-ruWL_WA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/278f68-c16f-4a2f-80f7-4130fa48b559/1/apPW8kgxFPyK9XWwwji3zg5xRa0.roa
Signing time: Sat 01 Jan 2022 08:58:20 +0000
ROA not before: Sat 01 Jan 2022 08:58:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20546
IP address blocks: 185.5.82.0/24 maxlen: 24
185.5.83.0/24 maxlen: 24
185.5.80.0/24 maxlen: 24
185.5.81.0/24 maxlen: 24
91.236.122.0/24 maxlen: 24
80.90.0.0/19 maxlen: 24
2a02:cb45:104::/48 maxlen: 48
2a02:cb42::/32 maxlen: 32
2a02:cb43::/32 maxlen: 48
2a02:cb46:0:205::/64 maxlen: 64
2a02:cb43:4007::/48 maxlen: 48
2a02:cb46:0:6::/64 maxlen: 64
2a02:cb41::/32 maxlen: 32
2a02:cb44::/32 maxlen: 32
2a02:cb46:0:3::/64 maxlen: 64
2a02:cb45:101::/48 maxlen: 48
2a02:cb40::/32 maxlen: 32
2a02:cb43:f::/48 maxlen: 48
2a02:cb46:0:204::/64 maxlen: 64
2a02:cb46::/32 maxlen: 32
2a02:cb46:0:5::/64 maxlen: 64
2a02:cb47::/32 maxlen: 32
2a02:cb45:103::/48 maxlen: 48
2a02:cb43:4009::/48 maxlen: 48
2a02:cb43:e::/48 maxlen: 48
2a02:cb46:0:2::/64 maxlen: 64
2a02:cb46:0:203::/64 maxlen: 64
2a02:cb45:102::/48 maxlen: 48
2a02:cb45::/32 maxlen: 32
2a02:cb45:105::/48 maxlen: 48
2a02:cb46:0:4::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 264317885 (0xfc12bbd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a332f5adc0469533bbddcfce8957eaee58bfd60
Validity
Not Before: Jan 1 08:58:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6a93d6f2483114fc8af575b0c238b7ce0e7145ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:8d:ed:35:71:c2:76:9e:1e:9c:6b:d6:06:51:
2d:f1:a8:24:95:9b:9a:ab:66:07:49:c9:e9:16:c5:
05:9f:c9:ce:9d:3b:5e:fc:83:f8:0b:04:46:70:22:
34:9e:c7:cb:79:ca:4f:f2:aa:70:76:5b:32:98:e6:
70:55:e5:f2:6c:da:4d:13:02:0a:cd:f9:6f:27:b1:
e7:5b:22:3e:e0:84:fa:c9:31:ea:c3:56:7e:d9:e1:
44:d8:d4:96:63:0c:ff:30:6b:e7:5e:0a:1d:1e:5f:
36:b2:9e:da:0f:df:b0:dc:6f:42:14:56:6e:70:13:
fb:8d:84:45:82:a8:2b:db:21:56:84:9f:63:bc:6e:
67:ad:bd:8d:98:7c:1f:d9:14:5d:d5:0a:7e:68:81:
7f:d9:18:2f:5e:85:a9:4d:7f:ae:8e:d3:3a:44:8e:
af:3a:9e:14:d1:ae:6a:e4:e6:2c:14:ac:97:17:3c:
44:79:0b:6e:fe:da:6c:45:2c:a2:66:a1:8f:85:77:
8e:fc:5a:c1:d8:2d:5d:9e:79:a7:54:5c:4d:94:8b:
bc:9f:94:37:a4:25:2d:87:83:90:6c:3d:95:c0:bf:
01:51:cd:50:71:ad:1e:a1:09:ef:ff:9e:2d:60:f0:
0d:b5:4a:7c:23:70:07:15:a3:c2:67:f7:88:41:e7:
3c:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:93:D6:F2:48:31:14:FC:8A:F5:75:B0:C2:38:B7:CE:0E:71:45:AD
X509v3 Authority Key Identifier:
keyid:0A:33:2F:5A:DC:04:69:53:3B:BD:DC:FC:E8:95:7E:AE:E5:8B:FD:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CjMvWtwEaVM7vdz86JV-ruWL_WA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/278f68-c16f-4a2f-80f7-4130fa48b559/1/apPW8kgxFPyK9XWwwji3zg5xRa0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/278f68-c16f-4a2f-80f7-4130fa48b559/1/CjMvWtwEaVM7vdz86JV-ruWL_WA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.90.0.0/19
91.236.122.0/24
185.5.80.0/22
IPv6:
2a02:cb40::/29
Signature Algorithm: sha256WithRSAEncryption
35:21:ca:db:33:63:9b:84:93:b1:18:7c:3e:38:df:b5:93:1a:
71:c6:12:13:f7:b8:b8:88:2c:7c:a7:30:b5:79:ce:f5:fa:5d:
12:a7:0f:15:af:7e:27:5e:2e:66:a9:59:59:38:71:83:ce:c8:
a9:2a:c5:a0:e8:2d:a8:ec:fb:c8:95:01:b8:fd:b3:3f:6b:94:
84:04:97:90:a0:ce:da:37:33:f5:07:51:8b:c4:37:c5:a1:59:
82:ef:98:40:db:6f:2d:76:1a:37:af:28:53:75:fa:c4:d6:c6:
28:ae:f8:9f:22:07:8f:81:02:2d:ec:16:ed:e9:29:fb:aa:87:
51:c9:88:65:8a:df:31:2a:b3:7a:06:72:e3:d2:48:ad:a4:d4:
7b:e3:cf:3b:ee:f0:84:7c:5c:ec:fc:c5:4d:29:d9:39:50:90:
fb:f2:54:63:78:6d:5f:9b:f9:cd:51:2b:1d:35:e4:2a:b5:09:
96:85:e4:85:66:03:2f:9b:3d:64:5c:d5:58:6e:16:e2:39:e3:
a2:c2:c6:e4:06:81:01:12:aa:ea:4d:71:5c:56:ff:98:ee:38:
f6:44:28:a7:dc:f7:24:4b:b0:6d:84:e7:45:27:48:4b:6a:7d:
e3:dd:61:df:8e:44:5d:18:e3:15:6c:67:f4:21:b1:00:6f:3f:
9b:7f:cc:ca
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Tue Apr 8 10:09:30 2025 by rpki-client