Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/5892d1-6f51-4cb3-93e2-0f0494ca6d2c/1/1-L_xEL_cipwK66287zjakfsU2uU.roa
File: 1-L_xEL_cipwK66287zjakfsU2uU.roa (raw, json)
Hash identifier: v7752VD9tUrb1xrrAduFjSbVD7sxlCmb+2Ibx9wujRU=
Subject key identifier: F8:BF:F1:10:BF:DC:8A:9C:0A:EB:AD:BC:EF:38:DA:91:FB:14:DA:E5
Certificate issuer: /CN=94ca595385505455b8cb1d90e946ef7b0b6f5d3f
Certificate serial: 0414DF3B
Authority key identifier: 94:CA:59:53:85:50:54:55:B8:CB:1D:90:E9:46:EF:7B:0B:6F:5D:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lMpZU4VQVFW4yx2Q6UbvewtvXT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/5892d1-6f51-4cb3-93e2-0f0494ca6d2c/1/1-L_xEL_cipwK66287zjakfsU2uU.roa
Signing time: Sat 01 Jan 2022 09:58:06 +0000
ROA not before: Sat 01 Jan 2022 09:58:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212637
IP address blocks: 185.190.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68476731 (0x414df3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94ca595385505455b8cb1d90e946ef7b0b6f5d3f
Validity
Not Before: Jan 1 09:58:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f8bff110bfdc8a9c0aebadbcef38da91fb14dae5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:5a:31:3b:73:ac:0a:a9:12:2a:2d:3e:22:c7:
e3:b3:9d:cb:b2:01:2f:09:80:3f:9c:ef:68:e8:63:
b3:69:fa:64:fa:88:d0:15:1d:c2:0a:42:d8:5a:85:
82:d2:4e:a5:38:fe:31:7a:70:16:e0:e4:1d:9c:b7:
dd:dc:87:48:85:98:d1:c7:db:5f:ed:92:ca:7a:91:
29:87:bb:2a:6f:dd:94:ea:0e:1a:fa:81:df:a9:73:
4f:86:d8:41:c7:4e:6d:03:2d:fe:31:df:d1:21:f4:
3c:da:b2:da:5f:93:46:f5:70:d3:92:8a:3f:0f:51:
2c:5a:71:39:c0:69:b9:01:64:10:0b:63:ac:92:3c:
e9:9f:ef:c4:f0:c0:25:8d:bd:d4:eb:c2:40:b2:6c:
2e:91:8f:d9:57:5d:dd:0d:3e:fd:71:e5:9f:a6:da:
67:0a:a5:50:fa:00:26:fb:13:28:65:3a:ed:b3:3b:
30:ac:f5:70:c7:47:98:4c:d0:78:93:d5:b0:b0:26:
76:e3:79:af:63:e4:c9:2c:b0:6b:b8:f8:fa:a1:aa:
d7:30:78:c4:4e:43:4f:a7:32:de:e2:dc:04:55:34:
30:b8:b0:81:83:ce:f3:d3:42:4b:22:61:61:41:04:
3c:30:84:60:40:17:63:e1:7b:d9:1e:72:e7:16:01:
e2:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:BF:F1:10:BF:DC:8A:9C:0A:EB:AD:BC:EF:38:DA:91:FB:14:DA:E5
X509v3 Authority Key Identifier:
keyid:94:CA:59:53:85:50:54:55:B8:CB:1D:90:E9:46:EF:7B:0B:6F:5D:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lMpZU4VQVFW4yx2Q6UbvewtvXT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/5892d1-6f51-4cb3-93e2-0f0494ca6d2c/1/1-L_xEL_cipwK66287zjakfsU2uU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/5892d1-6f51-4cb3-93e2-0f0494ca6d2c/1/lMpZU4VQVFW4yx2Q6UbvewtvXT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.190.90.0/24
Signature Algorithm: sha256WithRSAEncryption
75:fe:61:3a:2e:ac:5b:3d:32:06:e3:ff:e1:08:71:b1:50:80:
d3:0b:1b:fa:69:71:68:8b:58:8f:3a:38:e9:2a:45:ad:81:5f:
82:0e:ff:0a:56:f0:94:d9:aa:4d:03:bc:81:f1:fb:5d:4b:d0:
27:09:ff:1c:45:5e:b1:2b:c3:a2:2c:18:39:27:0e:4d:d7:fa:
2f:6b:22:77:81:b1:81:ec:14:d2:fd:91:8c:e0:c2:ab:dd:40:
0a:9d:66:1b:a6:ae:c4:96:a5:33:f3:1b:2e:0d:16:03:f2:8b:
fa:4e:85:56:b4:28:ad:74:a8:da:16:cb:52:57:10:f7:11:aa:
ff:35:8a:d6:3e:ff:f7:49:eb:93:67:a5:07:ce:1f:70:14:55:
56:2d:3e:32:44:75:9a:af:78:b9:f6:3a:31:89:0b:35:a2:78:
46:3b:9a:92:84:58:42:c1:5b:b1:f9:5c:3d:cc:b0:b9:f1:87:
55:82:2f:0f:b3:60:84:76:ea:36:03:09:ee:d9:3a:1d:75:bb:
1e:67:79:91:3b:0e:07:a8:2a:b2:4b:00:e2:f6:2d:0c:08:2a:
d4:8f:eb:f6:45:c5:c1:59:7f:30:18:28:4a:b9:df:74:8d:d7:
6f:f0:b5:66:68:37:3e:fa:e5:fc:74:3d:af:33:21:57:ff:7a:
b3:4a:21:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 03:40:28 2025 by rpki-client