![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/f536cd-943f-4554-9f17-344cc502f1bd/1/neOACVzZFtzHCXdD5W0pQxtcUus.roa
File: neOACVzZFtzHCXdD5W0pQxtcUus.roa (raw, json)
Hash identifier: n08IXBL6l8lFhYq8efP98sbU+/KP2hU1teB9Pldm0jI=
Subject key identifier: 9D:E3:80:09:5C:D9:16:DC:C7:09:77:43:E5:6D:29:43:1B:5C:52:EB
Certificate issuer: /CN=304e59a223f4bcb823492fb1096c3a82310c03da
Certificate serial: 08BCDEA1
Authority key identifier: 30:4E:59:A2:23:F4:BC:B8:23:49:2F:B1:09:6C:3A:82:31:0C:03:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ME5ZoiP0vLgjSS-xCWw6gjEMA9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/f536cd-943f-4554-9f17-344cc502f1bd/1/neOACVzZFtzHCXdD5W0pQxtcUus.roa
Signing time: Sat 01 Jan 2022 01:02:09 +0000
ROA not before: Sat 01 Jan 2022 01:02:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57166
IP address blocks: 185.119.106.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146595489 (0x8bcdea1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=304e59a223f4bcb823492fb1096c3a82310c03da
Validity
Not Before: Jan 1 01:02:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9de380095cd916dcc7097743e56d29431b5c52eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b2:a8:68:1a:42:77:cc:07:10:7f:71:77:0d:
ae:c9:2b:bb:80:10:a2:75:dd:a2:3a:f3:02:18:cf:
0c:8e:85:f4:04:f3:0b:5b:3c:e8:eb:97:d0:bc:37:
a8:88:ba:10:da:b5:87:88:d2:cc:b8:5f:70:ac:37:
74:77:af:75:51:d3:b9:27:bd:dc:cf:5c:fa:5a:3a:
d0:c4:40:fb:5a:74:ad:45:aa:4f:17:9f:15:0a:8b:
41:81:89:18:9a:c1:41:85:3f:c0:34:ad:7e:e8:9e:
cc:3c:b6:69:cd:5d:90:ee:51:e2:ea:86:dd:c3:29:
c4:5b:b5:81:5a:22:6b:31:d5:d2:0a:2c:75:a5:e0:
8c:63:14:c0:f5:af:12:5f:7c:8a:55:4f:6c:96:86:
0b:39:3c:48:0e:b2:34:dd:ec:d7:48:90:42:2c:32:
62:ef:20:25:75:a1:80:ad:c0:8d:8a:8b:d9:5b:47:
26:9a:60:c3:26:28:82:c6:94:7a:5e:30:75:7b:6c:
e4:a5:e3:30:e8:92:8b:75:52:9e:64:63:98:b2:3b:
e4:fc:f4:0b:59:bc:2a:6d:8f:4e:14:10:b0:05:3e:
2d:ee:f2:b6:72:67:97:44:c4:b5:30:6e:63:63:7e:
56:a8:58:7b:59:7c:79:32:0d:33:8c:c3:0d:2a:57:
8d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:E3:80:09:5C:D9:16:DC:C7:09:77:43:E5:6D:29:43:1B:5C:52:EB
X509v3 Authority Key Identifier:
keyid:30:4E:59:A2:23:F4:BC:B8:23:49:2F:B1:09:6C:3A:82:31:0C:03:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ME5ZoiP0vLgjSS-xCWw6gjEMA9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/f536cd-943f-4554-9f17-344cc502f1bd/1/neOACVzZFtzHCXdD5W0pQxtcUus.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/f536cd-943f-4554-9f17-344cc502f1bd/1/ME5ZoiP0vLgjSS-xCWw6gjEMA9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.119.106.0/24
Signature Algorithm: sha256WithRSAEncryption
10:41:36:6b:70:f8:05:93:0f:0b:9a:7b:c8:b2:f7:af:99:ba:
d8:c9:9d:1f:f1:ab:5b:d7:4f:ea:3a:3c:75:f7:8d:44:37:57:
b7:f2:32:01:86:2d:c2:b2:84:c1:e0:a0:e5:50:3e:89:79:fd:
5a:e6:03:38:5e:fa:26:2a:47:35:10:e7:96:d7:22:d7:21:e7:
cb:65:c5:6a:91:d2:12:57:9f:69:4d:ad:9a:fe:bb:aa:9b:cb:
0b:0d:2c:54:40:9b:cf:c3:36:e6:6c:8c:1c:01:d5:e9:ec:7c:
67:6e:31:06:1b:72:30:23:b2:37:08:9e:68:33:75:1a:d5:4a:
a8:8b:ff:33:1b:51:a8:91:5d:58:f1:65:3c:a2:52:36:fb:a4:
18:6f:5b:f6:11:af:1f:b2:95:68:9e:62:57:8b:6a:23:5e:ec:
e5:ac:4b:43:2c:95:9f:ce:35:74:a2:a9:c5:98:da:b7:98:35:
ec:98:ac:fc:9b:1b:76:2b:84:de:67:87:f1:a5:dc:97:d2:4c:
ee:8a:23:0b:38:55:b2:70:fd:7f:94:9a:88:77:41:49:eb:0f:
81:ee:06:d8:50:88:cc:1e:8b:a9:ce:37:64:5a:fd:68:ee:bb:
68:b7:c0:43:23:b7:2e:d1:7c:14:02:06:0f:5d:df:c2:f6:7a:
c0:17:ea:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:26:38 2025 by rpki-client