Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/ede4a3-8f20-400a-b876-f78c2206575a/1/s4vfq4gEj992zJKu0Fy2DWJe_Gc.roa
File: s4vfq4gEj992zJKu0Fy2DWJe_Gc.roa (raw, json)
Hash identifier: 8JQog2ujBD5OQhVBmIXYwmHwxFaPbk+3OIrPW3c7HcM=
Subject key identifier: B3:8B:DF:AB:88:04:8F:DF:76:CC:92:AE:D0:5C:B6:0D:62:5E:FC:67
Certificate issuer: /CN=8ce735129f777a25bf84727206bf978d9a1db200
Certificate serial: 0183CDB10EF2DFAEDB39EE1879B7A5E4EFFE
Authority key identifier: 8C:E7:35:12:9F:77:7A:25:BF:84:72:72:06:BF:97:8D:9A:1D:B2:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jOc1Ep93eiW_hHJyBr-XjZodsgA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/ede4a3-8f20-400a-b876-f78c2206575a/1/s4vfq4gEj992zJKu0Fy2DWJe_Gc.roa
Signing time: Wed 12 Oct 2022 19:34:36 +0000
ROA not before: Wed 12 Oct 2022 19:34:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201786
IP address blocks: 185.63.196.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:cd:b1:0e:f2:df:ae:db:39:ee:18:79:b7:a5:e4:ef:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ce735129f777a25bf84727206bf978d9a1db200
Validity
Not Before: Oct 12 19:34:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b38bdfab88048fdf76cc92aed05cb60d625efc67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:83:91:66:ea:60:5d:83:0e:0c:c9:81:56:c7:
5d:f0:3c:e3:e5:81:ec:d8:21:ea:b2:49:44:84:6f:
64:3f:ed:8a:92:e0:13:97:54:7f:14:84:29:06:58:
18:98:be:f5:19:f3:4c:b6:a0:a4:db:94:43:9b:4c:
53:ba:3b:b1:b0:7a:ce:48:62:df:2c:4e:39:ae:f9:
27:3f:5c:ef:c7:a0:c5:e6:f3:1b:2f:92:f3:fe:71:
42:ce:74:b4:e5:f6:6e:bc:24:04:ff:43:30:81:d3:
a7:d5:ad:a5:75:36:bb:00:14:27:79:75:ef:5d:f2:
d7:f0:0d:ab:d0:7f:3a:4d:f5:e7:62:a3:d0:8b:e2:
11:a3:f0:2f:5b:31:56:37:44:08:93:1f:2a:58:c2:
0f:0c:fc:30:a8:5d:83:81:07:4f:15:dd:d7:b9:17:
d4:e7:97:3f:a3:3c:c5:1f:83:b5:29:ac:fc:a8:d6:
5d:c5:6a:a5:fc:02:f0:2e:ce:32:95:0c:a7:7f:64:
7d:86:fc:fe:99:5b:59:92:cc:90:c8:c9:2c:b5:de:
10:d0:b7:39:36:dc:61:09:71:4c:63:08:c8:8f:69:
6c:85:63:75:97:68:95:3c:68:23:5d:04:bb:db:c8:
ce:0b:fe:be:df:06:b9:ee:49:88:1b:1e:c7:ab:94:
c9:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:8B:DF:AB:88:04:8F:DF:76:CC:92:AE:D0:5C:B6:0D:62:5E:FC:67
X509v3 Authority Key Identifier:
keyid:8C:E7:35:12:9F:77:7A:25:BF:84:72:72:06:BF:97:8D:9A:1D:B2:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jOc1Ep93eiW_hHJyBr-XjZodsgA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/ede4a3-8f20-400a-b876-f78c2206575a/1/s4vfq4gEj992zJKu0Fy2DWJe_Gc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/ede4a3-8f20-400a-b876-f78c2206575a/1/jOc1Ep93eiW_hHJyBr-XjZodsgA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.196.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:25:02:62:62:a1:3c:c0:2d:0f:f3:8a:ec:c6:82:71:41:57:
1d:c7:33:aa:9b:79:e4:80:22:28:a7:ae:1a:b9:9f:02:d2:fe:
3e:ff:71:9b:75:3f:3d:6f:e4:a2:05:62:aa:47:97:1b:87:35:
30:48:c1:e1:9e:9c:b3:f4:fb:ff:da:75:af:66:49:72:10:f6:
a4:e4:7b:b4:50:9f:14:3c:fb:83:e1:15:74:61:1b:8d:50:33:
71:0e:7f:e5:34:1c:d0:f4:ad:b4:ef:6b:e7:aa:fe:0a:2f:3a:
40:dc:01:98:da:7a:93:07:d0:2f:64:f7:44:9b:9c:38:01:4f:
ff:94:e1:48:84:34:d1:53:06:60:6c:64:a1:8f:52:13:06:9c:
b7:de:2f:b0:28:2e:a3:ff:fa:33:14:1a:f3:ca:56:73:80:f0:
2b:00:46:bb:c3:73:ad:0a:7c:fe:b9:83:69:de:8f:ff:74:30:
0a:52:3d:f9:da:ae:6b:9e:01:87:fd:91:74:d5:af:17:b8:fe:
70:d7:7a:fa:10:a8:c3:7e:77:b5:91:44:49:43:42:32:b0:9b:
75:93:08:ac:ea:14:13:8b:52:6b:41:67:74:3d:1a:24:57:c8:
70:db:a6:76:75:b5:dc:ea:1b:3e:fe:0c:31:f7:d7:3e:d5:62:
93:7b:33:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 12 12:54:24 2025 by rpki-client