Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/a8F74hbLhJ1I3aPaoVeHv4ypEUM.roa
File: a8F74hbLhJ1I3aPaoVeHv4ypEUM.roa (raw, json)
Hash identifier: EiIRrzDfTH6OYq+sVqcUaTA+QK+OX8jAG38f1Be9usw=
Subject key identifier: 6B:C1:7B:E2:16:CB:84:9D:48:DD:A3:DA:A1:57:87:BF:8C:A9:11:43
Certificate issuer: /CN=55fad96dd05af8c2d26192c841131f2f97459fed
Certificate serial: 08AED804
Authority key identifier: 55:FA:D9:6D:D0:5A:F8:C2:D2:61:92:C8:41:13:1F:2F:97:45:9F:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VfrZbdBa-MLSYZLIQRMfL5dFn-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/a8F74hbLhJ1I3aPaoVeHv4ypEUM.roa
Signing time: Sat 01 Jan 2022 13:02:01 +0000
ROA not before: Sat 01 Jan 2022 13:02:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43361
IP address blocks: 185.175.94.0/23 maxlen: 23
45.10.89.0/24 maxlen: 24
31.133.98.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145676292 (0x8aed804)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55fad96dd05af8c2d26192c841131f2f97459fed
Validity
Not Before: Jan 1 13:02:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6bc17be216cb849d48dda3daa15787bf8ca91143
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f5:91:34:36:38:ce:cb:3e:e3:c0:30:e8:ff:
14:a1:ed:fe:03:89:3f:8d:68:ae:44:c6:b4:61:df:
03:66:19:c1:04:82:09:9f:5a:c4:5a:fd:c9:45:9b:
a0:2a:67:96:19:70:cb:e0:ac:90:f0:72:45:61:93:
0c:d4:18:07:d1:74:ad:cf:ec:b5:42:de:3d:04:02:
11:94:b1:9a:b8:01:95:e8:f4:ef:58:f3:1f:73:d0:
b1:c3:65:e9:8b:0d:f9:99:d8:9d:c4:3c:c1:c0:9a:
03:4e:08:c4:8f:09:88:f5:92:65:1a:a6:df:b8:bc:
62:db:30:26:c3:2f:72:90:d7:32:79:1b:65:54:0c:
c9:3b:e2:77:45:44:f4:81:33:c8:5b:b9:9c:cc:48:
1e:35:cd:12:37:9e:60:c3:ec:f4:32:61:42:6b:72:
ef:fa:9e:95:8f:7a:70:34:5f:2a:17:ca:51:12:c1:
9a:8b:59:9e:76:87:d6:91:69:09:68:fe:6e:89:b2:
7c:b9:69:97:ec:41:b2:94:85:0f:7b:f8:c7:c2:bc:
4e:ea:8a:43:c4:41:58:15:49:11:bd:a0:9c:c1:89:
84:35:d7:19:77:03:11:ce:90:5a:a1:5d:fc:3e:99:
aa:2c:65:23:57:56:7b:a4:b5:1a:b2:fd:48:13:a2:
5e:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:C1:7B:E2:16:CB:84:9D:48:DD:A3:DA:A1:57:87:BF:8C:A9:11:43
X509v3 Authority Key Identifier:
keyid:55:FA:D9:6D:D0:5A:F8:C2:D2:61:92:C8:41:13:1F:2F:97:45:9F:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VfrZbdBa-MLSYZLIQRMfL5dFn-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/a8F74hbLhJ1I3aPaoVeHv4ypEUM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/VfrZbdBa-MLSYZLIQRMfL5dFn-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.133.98.0/23
45.10.89.0/24
185.175.94.0/23
Signature Algorithm: sha256WithRSAEncryption
07:bd:17:c8:bb:8e:f4:57:cf:34:b3:47:1b:9e:a4:b7:15:57:
7c:c7:8d:40:ab:fc:03:d1:77:cd:fd:d4:c3:7e:87:ea:ba:c6:
f2:d2:03:e1:e5:db:c7:6f:4c:7d:d3:31:50:6d:2f:78:7d:76:
9f:a9:63:5e:6a:0f:c3:fa:fc:62:c8:fc:53:74:d9:67:b3:35:
49:2d:67:71:20:80:82:bd:4f:3e:5b:90:83:40:7a:29:86:bc:
b1:2c:08:62:13:92:85:98:45:7e:1e:83:24:35:09:7b:a4:13:
c8:44:77:e6:5b:1f:4b:f6:17:e2:fd:46:1f:f0:d0:c1:e4:cb:
3e:88:aa:3e:30:3a:29:26:31:ab:df:47:c2:f6:d5:3a:88:36:
09:63:ed:c9:6c:9c:0b:fa:a7:d8:ac:31:20:85:26:de:e1:52:
49:8c:eb:0c:d2:61:3c:78:fc:0f:52:ba:63:60:57:90:fd:57:
72:66:fc:89:65:0f:5f:1a:87:34:df:ad:ef:0c:bc:b1:b6:92:
d0:8e:9e:be:4f:e7:95:99:6e:43:ab:5e:a5:f0:0b:32:5b:ec:
1b:8b:ee:3f:53:c9:65:03:96:16:15:55:21:8b:ed:5f:42:d9:
df:4e:32:1a:07:76:4c:bc:68:31:19:b7:07:44:a0:af:04:35:
13:d9:62:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:41:30 2025 by rpki-client