Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/0c4e20-d591-415e-a06f-008a508bae9d/1/9jdbFq1PBeP7uGgb-Pu036nss6A.roa
File: 9jdbFq1PBeP7uGgb-Pu036nss6A.roa (raw, json)
Hash identifier: NV2WXow9u93akb4yVXXTvJTCmSLLv6OHdX9XwHUHXoQ=
Subject key identifier: F6:37:5B:16:AD:4F:05:E3:FB:B8:68:1B:F8:FB:B4:DF:A9:EC:B3:A0
Certificate issuer: /CN=0843e9c2487954691227b1e32175d8f7a1cc3ef5
Certificate serial: 090B795E
Authority key identifier: 08:43:E9:C2:48:79:54:69:12:27:B1:E3:21:75:D8:F7:A1:CC:3E:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEPpwkh5VGkSJ7HjIXXY96HMPvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/0c4e20-d591-415e-a06f-008a508bae9d/1/9jdbFq1PBeP7uGgb-Pu036nss6A.roa
Signing time: Sat 01 Jan 2022 08:04:33 +0000
ROA not before: Sat 01 Jan 2022 08:04:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212131
IP address blocks: 85.208.168.0/22 maxlen: 22
2a10:ae80::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151746910 (0x90b795e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0843e9c2487954691227b1e32175d8f7a1cc3ef5
Validity
Not Before: Jan 1 08:04:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f6375b16ad4f05e3fbb8681bf8fbb4dfa9ecb3a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:6c:19:15:a7:28:21:b8:14:a5:32:9b:0f:c3:
86:38:ae:9c:15:21:1e:d1:70:c6:bd:0d:9d:be:13:
e6:06:e0:5f:75:91:72:1a:d3:96:fa:3a:53:c7:57:
87:45:ab:9a:61:0c:b5:48:ef:fb:40:33:81:62:3c:
62:55:d1:96:9d:66:c3:93:c8:5d:1b:7f:b3:e6:5f:
aa:51:aa:d1:41:9b:95:a6:6c:16:2a:ec:62:d0:c2:
e4:ed:2f:20:1c:e0:1c:de:86:f2:ff:e4:21:76:18:
5f:5d:bc:03:72:c1:29:80:f0:07:2f:0c:9d:36:24:
32:34:27:3a:a5:72:32:29:04:3d:a8:23:9e:b9:d2:
fc:71:1c:16:ee:e0:db:05:84:39:e2:b2:0f:ca:75:
e3:f1:bb:b4:6d:35:2b:c0:67:5e:6a:da:55:a4:cd:
b5:7e:c6:0b:df:06:70:31:44:5e:76:d1:53:f3:31:
ff:f3:8b:54:ee:21:ad:81:bc:c9:11:66:4d:c5:6c:
42:1f:1a:c5:8f:dc:2b:ff:62:da:ea:5b:9d:b3:0b:
64:ee:6b:34:a2:c7:f2:a5:19:59:e8:8f:61:21:60:
f2:b5:46:a8:c6:3f:39:46:72:6d:97:b1:46:25:96:
6f:06:f8:43:e2:cd:ce:9c:cd:80:c2:85:59:26:cf:
c5:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:37:5B:16:AD:4F:05:E3:FB:B8:68:1B:F8:FB:B4:DF:A9:EC:B3:A0
X509v3 Authority Key Identifier:
keyid:08:43:E9:C2:48:79:54:69:12:27:B1:E3:21:75:D8:F7:A1:CC:3E:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEPpwkh5VGkSJ7HjIXXY96HMPvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/0c4e20-d591-415e-a06f-008a508bae9d/1/9jdbFq1PBeP7uGgb-Pu036nss6A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/0c4e20-d591-415e-a06f-008a508bae9d/1/CEPpwkh5VGkSJ7HjIXXY96HMPvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.208.168.0/22
IPv6:
2a10:ae80::/29
Signature Algorithm: sha256WithRSAEncryption
a5:f0:61:ec:f9:93:ff:fc:eb:da:94:2c:76:58:27:d8:6b:a3:
28:dd:0e:f2:6e:2c:cf:73:2d:be:af:69:3e:c6:e2:e5:96:e8:
c4:33:05:c4:f0:63:ad:67:0f:7c:bf:7b:8c:c5:65:11:88:7b:
6b:32:e9:45:df:ed:fc:cd:ba:47:9b:2a:fa:53:dd:53:e4:e5:
cf:11:41:50:d8:8a:e2:37:4a:0c:30:7f:ae:33:4f:38:07:ce:
24:fa:fa:cc:0e:3e:d7:e7:f4:ed:68:fb:a8:13:b9:40:dc:39:
7c:30:95:8e:31:13:e8:12:b9:f0:97:da:42:ad:19:5b:4f:89:
e6:ff:62:f4:29:c0:58:7d:fc:19:a4:1b:98:e0:bd:96:05:76:
1b:30:e4:8d:76:b0:3e:59:49:3b:a2:d1:9b:b7:0c:40:7f:4c:
66:ea:28:a9:4a:19:92:94:dd:6b:cb:1f:fe:7e:74:cb:27:9b:
58:59:ec:66:ec:72:c4:39:b1:bf:4a:23:c4:5e:96:f2:75:20:
02:5e:fb:cd:f6:11:75:1a:96:30:f7:e8:66:6c:10:07:db:2d:
31:80:18:da:07:9f:b7:d4:14:f8:bf:20:09:33:38:fc:b8:62:
a1:f6:41:73:39:c0:63:39:87:42:82:1e:9f:99:3c:ad:46:a6:
77:d8:d2:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:31:39 2025 by rpki-client