Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/L_EamAMs1sc_8dIDxEtaveDZO3Q.roa
File: L_EamAMs1sc_8dIDxEtaveDZO3Q.roa (raw, json)
Hash identifier: /6hfq+X5ceRY5tXLjc9SWM4jAY0xv+U1hKxHn8CEw/k=
Subject key identifier: 2F:F1:1A:98:03:2C:D6:C7:3F:F1:D2:03:C4:4B:5A:BD:E0:D9:3B:74
Certificate issuer: /CN=d98247d3f81472dbba06dbea9bd19c785d18babe
Certificate serial: 018B2E88726D7DB49541E4962CA27FBC5B10
Authority key identifier: D9:82:47:D3:F8:14:72:DB:BA:06:DB:EA:9B:D1:9C:78:5D:18:BA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YJH0_gUctu6Btvqm9GceF0Yur4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/L_EamAMs1sc_8dIDxEtaveDZO3Q.roa
Signing time: Sat 14 Oct 2023 14:12:55 +0000
ROA not before: Sat 14 Oct 2023 14:12:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51295
IP address blocks: 185.165.184.0/22 maxlen: 22
185.179.156.0/22 maxlen: 22
185.248.196.0/22 maxlen: 22
194.165.26.0/24 maxlen: 24
45.153.91.0/24 maxlen: 24
45.153.88.0/24 maxlen: 24
2a0a:8880:1::/48 maxlen: 48
2a0a:8880:2::/48 maxlen: 48
2a0a:8880:aaaa::/48 maxlen: 48
2a0f:4440:aaaa::/48 maxlen: 48
2a0f:4440:abcd::/48 maxlen: 48
2a0a:8880::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:2e:88:72:6d:7d:b4:95:41:e4:96:2c:a2:7f:bc:5b:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d98247d3f81472dbba06dbea9bd19c785d18babe
Validity
Not Before: Oct 14 14:12:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2ff11a98032cd6c73ff1d203c44b5abde0d93b74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:58:9a:bd:be:16:cc:c0:89:0b:15:b2:b9:b9:
8b:fe:6d:6a:c6:02:5c:b2:5f:9c:d8:6a:8f:d1:6a:
ae:ca:99:20:3a:20:29:cb:78:e5:2a:b3:7c:0c:9f:
c5:e0:c3:49:21:93:ec:dc:82:da:ad:e6:3d:77:d0:
37:b9:d9:61:b3:f8:89:3c:06:26:40:f6:49:97:9f:
87:ec:80:5a:d8:18:5c:0f:fa:38:b9:88:d3:b0:af:
c1:79:d3:f4:f8:d5:f3:41:f0:e2:56:36:2b:53:68:
05:8d:30:01:9c:6b:7a:b6:de:0b:71:01:af:63:21:
95:7f:e8:3f:78:e9:b8:a1:43:07:ff:94:bb:e6:93:
a1:bf:1c:f6:92:11:94:ee:3a:00:c0:fb:6a:4a:bd:
dc:b5:d3:e5:13:97:d7:ab:ba:29:de:29:e8:94:d4:
8b:1d:c1:bc:e0:a6:6b:02:93:75:34:47:16:6c:af:
d9:94:08:c5:52:9f:2a:a7:f8:54:3a:0d:bb:7f:2f:
65:22:96:3b:d8:d0:ec:ea:fb:9e:1c:85:2a:2e:58:
46:77:01:6a:a1:f2:22:c1:39:7c:52:08:3d:b6:2a:
ea:33:64:a1:55:e8:29:40:84:f4:84:3f:17:99:f9:
d3:bc:41:f6:ea:75:02:b5:9b:a3:a8:3b:b3:68:29:
99:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:F1:1A:98:03:2C:D6:C7:3F:F1:D2:03:C4:4B:5A:BD:E0:D9:3B:74
X509v3 Authority Key Identifier:
keyid:D9:82:47:D3:F8:14:72:DB:BA:06:DB:EA:9B:D1:9C:78:5D:18:BA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YJH0_gUctu6Btvqm9GceF0Yur4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/L_EamAMs1sc_8dIDxEtaveDZO3Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/2YJH0_gUctu6Btvqm9GceF0Yur4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.88.0/24
45.153.91.0/24
185.165.184.0/22
185.179.156.0/22
185.248.196.0/22
194.165.26.0/24
IPv6:
2a0a:8880::-2a0a:8880:2:ffff:ffff:ffff:ffff:ffff
2a0a:8880:aaaa::/48
2a0f:4440:aaaa::/48
2a0f:4440:abcd::/48
Signature Algorithm: sha256WithRSAEncryption
7b:11:6d:f3:e8:3e:4f:48:29:d0:96:11:16:33:9d:ea:ee:8d:
a1:cb:cd:51:ee:c5:82:aa:69:24:a1:1f:35:b2:30:52:b0:cf:
72:c9:28:44:5b:b4:bb:94:af:24:1e:27:4c:02:3c:5e:65:b7:
82:2a:bc:03:cc:2e:65:8f:b8:57:72:93:1c:15:db:75:9e:bd:
67:71:35:ab:67:f2:3f:4f:19:09:e9:c4:5e:5f:a3:a9:9e:60:
e8:a7:04:b7:2a:38:de:b2:27:43:95:84:3b:8e:65:5a:56:69:
e5:c1:0c:9e:4c:3d:aa:9a:72:e7:fc:13:4d:42:80:85:3a:a7:
79:80:97:4a:99:e5:7b:ee:cc:d3:a4:11:60:7c:5c:ec:2d:dc:
6d:8b:fd:05:df:ae:9a:cf:eb:70:e7:26:f4:ef:73:7c:a4:fc:
f7:b8:5d:7e:d0:77:62:d5:b4:bd:f3:1f:bb:38:ec:0a:c0:dd:
aa:05:e0:ed:82:ee:85:2e:51:3c:11:e1:e1:4a:46:3e:a1:df:
95:1a:92:d5:f6:a9:d3:05:de:24:24:29:9b:b4:d8:26:a7:50:
c6:01:de:61:a1:29:45:5a:5d:25:ba:4c:8c:92:1f:32:db:76:
13:d5:75:91:4c:16:69:df:6d:94:58:46:e7:f4:97:e9:c6:46:
f1:35:a0:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:13:40 2025 by rpki-client