Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/dj7JqaXFIPMN3y_qLTjsEQDr2w4.roa
File: dj7JqaXFIPMN3y_qLTjsEQDr2w4.roa (raw, json)
Hash identifier: UFkl9tA+iN4Th57Suwnr8J6Rz+NJ7msRyZHS40egGaE=
Subject key identifier: 76:3E:C9:A9:A5:C5:20:F3:0D:DF:2F:EA:2D:38:EC:11:00:EB:DB:0E
Certificate issuer: /CN=0a97c0c818868373c4014715053adaf61af1da1d
Certificate serial: 018570B07B169F69777A4F6C9C568C1CC557
Authority key identifier: 0A:97:C0:C8:18:86:83:73:C4:01:47:15:05:3A:DA:F6:1A:F1:DA:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CpfAyBiGg3PEAUcVBTra9hrx2h0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/dj7JqaXFIPMN3y_qLTjsEQDr2w4.roa
Signing time: Mon 02 Jan 2023 04:14:52 +0000
ROA not before: Mon 02 Jan 2023 04:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60068
IP address blocks: 185.180.14.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b0:7b:16:9f:69:77:7a:4f:6c:9c:56:8c:1c:c5:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a97c0c818868373c4014715053adaf61af1da1d
Validity
Not Before: Jan 2 04:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=763ec9a9a5c520f30ddf2fea2d38ec1100ebdb0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8b:cc:58:ca:c6:87:7d:9d:62:21:35:d4:6d:
be:9b:3b:ad:24:53:c9:c4:43:5b:ee:cb:73:da:6d:
5d:00:66:32:a3:fc:0f:21:db:e9:33:ca:6d:2f:a9:
54:c2:2e:2d:48:91:30:03:ef:b2:70:84:45:b5:d0:
88:45:75:4f:f1:c0:ff:3e:53:6d:d4:2a:4f:f7:ee:
6a:d5:1a:fe:b9:79:44:17:ce:46:13:98:40:78:4a:
4e:3f:2b:14:41:6c:c0:8a:97:49:49:5e:2a:0f:1b:
33:92:0f:42:85:c2:ff:a0:fe:a4:e5:7e:8e:29:87:
3c:10:b6:a6:53:af:62:3b:2f:ad:c2:e2:04:90:14:
3b:e8:ed:f3:64:e2:d4:f9:92:ea:09:7c:55:ad:e8:
67:13:af:47:65:7a:a9:59:8a:e0:63:ef:26:9c:05:
7a:76:f3:85:b5:60:85:29:b7:85:68:8f:bd:cd:8e:
92:7c:34:1a:68:12:5a:66:6d:dd:7e:90:66:50:71:
a9:10:14:45:13:6f:d3:05:ef:c7:4a:a9:ee:a7:75:
90:47:15:05:28:6e:90:27:63:b2:83:f0:c2:67:74:
66:3b:f0:be:35:fe:5d:de:2a:5a:77:01:ed:98:7c:
b1:96:b9:3d:71:d9:b5:22:1d:f0:87:f8:50:b0:ea:
5f:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:3E:C9:A9:A5:C5:20:F3:0D:DF:2F:EA:2D:38:EC:11:00:EB:DB:0E
X509v3 Authority Key Identifier:
keyid:0A:97:C0:C8:18:86:83:73:C4:01:47:15:05:3A:DA:F6:1A:F1:DA:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CpfAyBiGg3PEAUcVBTra9hrx2h0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/dj7JqaXFIPMN3y_qLTjsEQDr2w4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.180.14.0/23
Signature Algorithm: sha256WithRSAEncryption
14:fa:86:80:5f:69:d3:71:1f:da:57:27:9c:49:be:ae:1d:81:
c1:b4:d9:65:f5:29:4c:7f:b0:1c:86:82:d1:27:3b:e2:b9:89:
b3:5e:09:8b:f6:3b:4b:87:72:21:8e:d1:e4:28:ea:db:ed:5a:
4b:51:50:e7:43:33:11:61:45:dc:fb:44:c4:14:19:c1:15:e7:
a7:b2:6c:5f:24:e9:2f:24:8c:30:57:ec:2a:85:c8:32:f1:96:
a2:85:dd:6a:03:a6:84:4c:3e:49:5e:ef:dd:16:c1:a4:1a:6f:
34:23:e3:51:aa:5b:01:0f:09:d9:58:58:c1:99:87:38:ff:7e:
52:1b:13:12:14:ad:d8:4b:00:ab:49:d1:bc:76:98:4a:63:b4:
0f:62:44:df:cc:5b:45:6f:1c:70:1d:f0:2b:04:d7:95:5b:6e:
78:69:2f:8c:b6:d8:c2:e7:59:57:54:d3:03:a4:a0:42:af:c4:
80:de:ed:8e:82:70:bd:a6:d6:ae:4b:84:f5:2a:13:d8:4a:11:
4e:6b:e3:d3:e6:62:85:11:ab:95:44:44:8f:ea:6b:bd:29:fc:
4e:98:1a:fe:85:8e:16:ba:1e:ea:6d:99:0d:fe:d7:a1:90:78:
a2:96:dc:2a:45:d8:c8:b3:10:af:2c:22:b3:b0:d2:49:ad:eb:
0a:08:53:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 00:44:32 2025 by rpki-client