Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/3bb1a5-941e-4a61-943e-faae4baebeff/1/dK1xnKOsHPOmIXbgFLmwspqu6Pk.roa
File: dK1xnKOsHPOmIXbgFLmwspqu6Pk.roa (raw, json)
Hash identifier: nVW6xDMiRF50RASuviuGsyCANGcOGaWj44WzCCmBwoY=
Subject key identifier: 74:AD:71:9C:A3:AC:1C:F3:A6:21:76:E0:14:B9:B0:B2:9A:AE:E8:F9
Certificate issuer: /CN=454f9d2dbed974538405a79f6ec7e86c4aedd3d1
Certificate serial: 0371B0DB
Authority key identifier: 45:4F:9D:2D:BE:D9:74:53:84:05:A7:9F:6E:C7:E8:6C:4A:ED:D3:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RU-dLb7ZdFOEBaefbsfobErt09E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/3bb1a5-941e-4a61-943e-faae4baebeff/1/dK1xnKOsHPOmIXbgFLmwspqu6Pk.roa
Signing time: Thu 19 May 2022 17:09:30 +0000
ROA not before: Thu 19 May 2022 17:09:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 185.68.80.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57782491 (0x371b0db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=454f9d2dbed974538405a79f6ec7e86c4aedd3d1
Validity
Not Before: May 19 17:09:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=74ad719ca3ac1cf3a62176e014b9b0b29aaee8f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:df:7d:aa:3b:81:9c:15:05:4a:ca:b4:de:3f:
73:4f:a3:f2:a6:cb:d6:c3:72:f6:45:e6:4b:82:eb:
7c:40:dc:c5:93:ab:b5:5a:2e:78:41:a7:1b:2c:12:
02:cc:ae:89:90:b3:f4:c3:91:18:b7:59:66:8c:cb:
43:f3:4b:91:5f:1b:7a:e1:f5:34:4a:b3:3b:58:ca:
46:7f:b0:fb:e3:32:43:09:8a:8e:0a:bb:95:6a:4d:
45:2a:ed:33:54:93:46:7b:c3:97:47:43:92:87:7f:
d2:c9:88:d4:6f:6d:f4:1a:4f:29:9e:70:c1:85:05:
11:6a:61:20:1f:68:d6:c2:dd:d1:85:16:1b:37:e4:
64:5f:4b:70:e4:07:1f:d4:41:c0:40:8b:c9:ab:11:
9b:f8:25:9f:17:49:55:cc:fc:0c:45:93:07:68:62:
45:7c:85:3f:96:36:e3:76:7b:d5:73:37:40:1e:41:
17:8f:3d:80:0a:01:b2:81:50:9b:9d:ed:46:f8:8b:
1e:79:38:b2:35:03:94:70:8f:31:f4:6a:76:d6:cd:
84:96:3a:34:09:34:4d:76:37:e3:49:a4:59:99:0f:
7f:3f:93:09:a9:ee:22:e8:01:fc:39:fe:fd:ad:5d:
57:eb:55:8b:c3:e0:20:43:f8:41:a7:30:63:25:41:
2a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:AD:71:9C:A3:AC:1C:F3:A6:21:76:E0:14:B9:B0:B2:9A:AE:E8:F9
X509v3 Authority Key Identifier:
keyid:45:4F:9D:2D:BE:D9:74:53:84:05:A7:9F:6E:C7:E8:6C:4A:ED:D3:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RU-dLb7ZdFOEBaefbsfobErt09E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/3bb1a5-941e-4a61-943e-faae4baebeff/1/dK1xnKOsHPOmIXbgFLmwspqu6Pk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/3bb1a5-941e-4a61-943e-faae4baebeff/1/RU-dLb7ZdFOEBaefbsfobErt09E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.68.80.0/22
Signature Algorithm: sha256WithRSAEncryption
86:6e:55:a8:7f:c8:c0:ca:07:9a:24:2b:a4:68:ce:0d:8b:b2:
c5:85:e3:b5:f6:54:54:88:a5:27:d3:7e:06:ee:32:2c:7c:5b:
63:a0:c1:9f:40:dd:3e:06:6b:8a:93:62:72:9f:57:39:62:f7:
b2:f9:1b:49:e3:e0:8e:7f:62:2c:9f:28:cc:e2:3a:ff:6e:91:
13:50:6a:62:9f:91:c5:cc:43:1f:b6:22:64:cd:d1:ca:14:f7:
1d:18:b3:7b:38:c1:1f:90:aa:7c:ff:a1:2a:ef:4b:78:2c:c6:
48:1c:86:07:a1:a1:be:5d:ae:95:22:b3:f5:e2:cb:d8:c3:d5:
90:da:b8:d9:3e:b2:75:58:39:97:b9:24:9c:2d:1a:ce:2f:9e:
49:60:48:e5:e9:82:46:85:ab:4e:38:97:28:52:84:8a:38:88:
c7:a2:57:f4:6d:ea:fa:30:9c:57:1e:22:36:4d:d2:af:21:31:
36:39:75:93:67:91:28:9b:7d:9b:f2:34:9c:06:35:61:35:73:
a5:e3:c8:a9:d9:3b:d5:6a:e0:16:45:d4:80:8e:d1:7d:b6:3d:
2b:63:90:fa:47:c8:41:e2:5d:e5:d1:47:bc:5b:98:ff:fe:3e:
f6:3a:d1:0a:32:c2:0b:78:89:35:1d:57:99:2e:7b:6c:7d:0f:
9a:a9:99:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:27:28 2025 by rpki-client