Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/jHVwG26a-pgtdjLnHRkuIelLmLo.roa
File: jHVwG26a-pgtdjLnHRkuIelLmLo.roa (raw, json)
Hash identifier: 55iWxTkrOE2MJUNal4rTpU9jNeBDNFoORxabdb1VEIc=
Subject key identifier: 8C:75:70:1B:6E:9A:FA:98:2D:76:32:E7:1D:19:2E:21:E9:4B:98:BA
Certificate issuer: /CN=55fad96dd05af8c2d26192c841131f2f97459fed
Certificate serial: 01856C0A4FD741540DAC8D8BED363DAEF6B2
Authority key identifier: 55:FA:D9:6D:D0:5A:F8:C2:D2:61:92:C8:41:13:1F:2F:97:45:9F:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VfrZbdBa-MLSYZLIQRMfL5dFn-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/jHVwG26a-pgtdjLnHRkuIelLmLo.roa
Signing time: Sun 01 Jan 2023 06:34:53 +0000
ROA not before: Sun 01 Jan 2023 06:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48557
IP address blocks: 185.138.230.0/23 maxlen: 23
185.138.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:0a:4f:d7:41:54:0d:ac:8d:8b:ed:36:3d:ae:f6:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55fad96dd05af8c2d26192c841131f2f97459fed
Validity
Not Before: Jan 1 06:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c75701b6e9afa982d7632e71d192e21e94b98ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f7:19:a5:48:4d:27:3d:a9:12:6b:89:52:f6:
d4:21:f4:f4:c0:19:dd:12:cb:b0:bd:3f:cf:57:6c:
39:a9:a7:cf:04:99:91:52:98:72:d5:19:a8:5d:ce:
a0:76:9a:75:d8:ec:ff:ab:f0:ed:3f:00:4e:59:4c:
6b:6c:a1:6a:9f:af:37:f9:e4:ff:51:ba:62:4a:f5:
cf:d7:e4:d8:aa:70:8d:35:95:72:e6:ca:19:ab:ae:
56:11:dd:4c:23:44:50:35:95:89:d1:26:17:ec:c3:
a6:fc:87:37:cc:49:9e:d8:db:f9:25:29:b8:03:09:
d2:18:7c:f2:ee:4c:0d:44:65:e3:11:9e:38:f8:33:
09:63:1f:06:03:64:aa:81:2f:19:95:6f:f7:0b:8c:
71:b7:85:a6:3d:9d:10:47:f1:a7:75:56:38:44:0b:
2d:1d:c9:68:36:7c:35:c4:44:5f:95:d2:91:54:ef:
eb:2c:3e:5d:94:a0:2d:fa:da:3f:18:09:08:f2:eb:
62:39:6c:01:72:f9:fe:f4:b5:f4:63:d1:33:2c:85:
b8:b2:41:90:33:54:2b:36:4a:2a:09:e7:02:51:25:
42:8f:02:cb:64:92:6a:06:2b:6d:f3:77:7c:06:5b:
77:b2:4c:c0:77:7b:84:67:00:b1:7d:e9:33:ff:06:
ed:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:75:70:1B:6E:9A:FA:98:2D:76:32:E7:1D:19:2E:21:E9:4B:98:BA
X509v3 Authority Key Identifier:
keyid:55:FA:D9:6D:D0:5A:F8:C2:D2:61:92:C8:41:13:1F:2F:97:45:9F:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VfrZbdBa-MLSYZLIQRMfL5dFn-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/jHVwG26a-pgtdjLnHRkuIelLmLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/VfrZbdBa-MLSYZLIQRMfL5dFn-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.230.0/23
Signature Algorithm: sha256WithRSAEncryption
02:d4:61:fa:25:60:83:d6:43:3e:4c:0b:e8:3a:fe:4f:3f:99:
be:da:b0:1c:80:7f:d9:b6:a7:0f:48:31:9c:43:16:a2:94:33:
99:a4:b4:fa:ff:68:52:44:ad:41:e2:f9:9c:b3:47:bc:43:51:
ae:46:a4:14:7a:50:d5:24:e2:9d:4b:06:93:43:42:62:69:6a:
5b:4b:32:ec:6f:a7:5f:8f:01:e8:25:ed:b6:b4:0a:59:ee:d0:
ee:d6:b0:f9:cb:c6:60:b4:f9:a2:da:ea:f6:de:ed:50:a9:aa:
1b:6d:f8:07:58:43:1f:92:78:3a:87:d1:f6:c9:b2:73:35:0c:
1d:06:1a:73:bd:3d:f0:a8:bc:e1:f4:6d:9d:f1:ce:7b:f5:f1:
56:3d:85:4a:f4:5f:b4:29:b6:19:41:91:41:7c:f3:e2:b8:7d:
d8:cf:52:e3:74:ad:bd:05:8b:63:ab:7c:f6:7d:1e:9c:65:28:
e5:13:9d:15:29:99:ee:e4:4d:46:ac:b0:ee:87:a3:b2:95:b5:
71:c0:fb:3e:a0:cf:d5:61:36:2b:08:6c:28:e3:91:78:2b:9e:
50:97:b8:9f:b4:7f:40:cb:c1:de:83:68:42:07:d8:9a:00:73:
ec:cb:a7:5d:32:a2:13:f1:73:89:a5:29:d2:cc:57:5a:48:7f:
3a:78:70:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:43:31 2025 by rpki-client