Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/SNFvCHYey2zoCgPPTuB5Sz-ULa0.roa
File: SNFvCHYey2zoCgPPTuB5Sz-ULa0.roa (raw, json)
Hash identifier: VLRw7V3NVnvu9mo58OF9ONPsXrYldGkIfNNznCVdpdI=
Subject key identifier: 48:D1:6F:08:76:1E:CB:6C:E8:0A:03:CF:4E:E0:79:4B:3F:94:2D:AD
Certificate issuer: /CN=cb645bc0fdb8626bce2c0425c4087b54e150d386
Certificate serial: 02B72A0E
Authority key identifier: CB:64:5B:C0:FD:B8:62:6B:CE:2C:04:25:C4:08:7B:54:E1:50:D3:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/SNFvCHYey2zoCgPPTuB5Sz-ULa0.roa
Signing time: Sat 01 Jan 2022 06:54:25 +0000
ROA not before: Sat 01 Jan 2022 06:54:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2856
IP address blocks: 185.210.157.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45558286 (0x2b72a0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb645bc0fdb8626bce2c0425c4087b54e150d386
Validity
Not Before: Jan 1 06:54:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=48d16f08761ecb6ce80a03cf4ee0794b3f942dad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f5:0e:15:f0:a2:4f:6d:bb:fa:37:e0:11:23:
57:5b:60:89:58:b2:9f:b0:9a:76:af:4d:93:1f:de:
09:f4:4d:1c:ec:4e:1f:ad:a3:0f:16:cc:52:73:d1:
2e:5f:c3:ed:c2:6a:54:b1:cb:b3:13:4e:ae:c9:0f:
be:dd:e1:84:70:0c:77:d5:f1:33:bb:0d:76:b2:39:
5b:64:5f:cd:f5:c8:8a:56:68:f3:27:6d:3f:21:3d:
60:ee:df:9e:4a:e4:88:b7:8b:f6:73:e9:72:69:6c:
34:ee:5e:97:7b:2f:86:fb:12:de:b9:f5:36:1b:e8:
f8:60:34:aa:96:b6:b1:c4:f8:46:6b:67:3e:29:22:
75:ea:c4:82:76:ec:88:af:be:a1:64:42:d9:fd:ae:
02:48:ba:c2:a9:04:8d:f7:d0:ab:91:70:1d:23:ae:
13:32:e0:93:44:37:64:5d:ce:0d:75:5c:b8:a8:36:
43:34:19:e4:1c:44:39:52:94:4b:66:3b:78:64:42:
7d:63:39:54:71:77:b6:9d:05:fd:09:51:7e:33:68:
a1:50:af:b7:29:2f:d7:be:51:7d:1b:5a:94:84:9e:
49:5f:17:c3:a9:83:6e:09:06:b2:44:64:5f:dd:65:
55:ac:1b:23:bf:9c:7c:75:9b:de:c3:f2:c2:ac:89:
03:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:D1:6F:08:76:1E:CB:6C:E8:0A:03:CF:4E:E0:79:4B:3F:94:2D:AD
X509v3 Authority Key Identifier:
keyid:CB:64:5B:C0:FD:B8:62:6B:CE:2C:04:25:C4:08:7B:54:E1:50:D3:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/SNFvCHYey2zoCgPPTuB5Sz-ULa0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.157.0/24
Signature Algorithm: sha256WithRSAEncryption
86:52:02:53:ab:73:37:33:e6:2e:6b:86:d6:5d:95:90:1f:b1:
6d:08:53:d0:0f:66:a0:af:14:7b:0e:5b:35:36:81:c4:f0:29:
2b:f8:74:e8:1b:76:f6:d1:46:58:b3:8f:dd:49:f6:92:c8:7e:
dd:6f:fc:76:5e:fb:77:76:aa:51:a8:6f:a3:38:97:d4:38:d3:
51:f9:78:ab:3a:8a:e0:ae:39:8c:7b:b8:95:7c:66:97:59:d4:
e9:74:9e:28:ae:9e:cd:f1:c9:91:a1:8c:3d:48:db:ad:0b:8d:
4e:b3:cd:4c:f3:72:73:43:82:a2:ad:02:a5:18:e3:d4:88:b5:
3c:c4:af:ea:55:f2:8c:2f:b9:62:68:1d:0b:c7:cb:c5:80:52:
2b:03:7a:07:96:a9:1c:ab:5d:7f:d2:e0:bb:41:c1:87:57:a4:
e1:7e:7e:c1:2e:75:2c:f7:37:fd:f0:a6:55:c4:58:fc:1b:d9:
b5:6e:dc:9b:33:d4:3b:13:8b:16:b7:4c:96:e5:82:2e:7c:69:
bd:93:6a:2e:23:9e:06:38:97:5e:3a:ce:43:73:0a:3b:9c:03:
09:01:6c:21:a1:d6:0e:5a:49:c9:e9:19:87:59:c2:fd:35:c8:
6f:f3:02:f7:17:ce:90:00:94:b9:be:13:2c:63:c4:70:d1:68:
f8:d1:f8:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 11:16:17 2025 by rpki-client