Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/fd8116-5e98-45ef-af74-073a5db0efb5/1/5SWJ8q1nwhrwwcr90iREHO1E-A4.roa
File: 5SWJ8q1nwhrwwcr90iREHO1E-A4.roa (raw, json)
Hash identifier: /b2jzR3e0kgc98K3/PChhOmvh4Sn1rCTafl2OGZZ4cg=
Subject key identifier: E5:25:89:F2:AD:67:C2:1A:F0:C1:CA:FD:D2:24:44:1C:ED:44:F8:0E
Certificate issuer: /CN=63e24977993c15bcc134b174937f41b2129f56d1
Certificate serial: 014DC8
Authority key identifier: 63:E2:49:77:99:3C:15:BC:C1:34:B1:74:93:7F:41:B2:12:9F:56:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-JJd5k8FbzBNLF0k39BshKfVtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/fd8116-5e98-45ef-af74-073a5db0efb5/1/5SWJ8q1nwhrwwcr90iREHO1E-A4.roa
Signing time: Fri 13 May 2022 19:47:40 +0000
ROA not before: Fri 13 May 2022 19:47:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15704
IP address blocks: 185.208.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85448 (0x14dc8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e24977993c15bcc134b174937f41b2129f56d1
Validity
Not Before: May 13 19:47:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e52589f2ad67c21af0c1cafdd224441ced44f80e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:44:c8:75:47:2c:b2:40:82:10:cd:c4:af:ff:
a8:d5:40:89:41:c0:d8:d0:eb:e1:4d:df:69:eb:ba:
b2:8e:1a:66:09:53:e6:c1:bd:96:d2:8f:11:87:77:
64:52:4b:ef:5c:45:66:07:6f:24:71:23:c2:d9:4b:
e2:e5:ed:30:fe:ab:09:6b:0a:60:a5:3a:aa:70:69:
01:e4:f6:2c:85:c7:6f:87:c1:e2:b0:b5:98:73:dd:
93:57:a2:fb:2a:4e:de:c2:58:eb:d0:72:19:3e:a1:
82:42:00:b4:56:17:85:59:fb:42:3c:7c:23:ed:77:
ab:20:ff:46:62:cf:3a:ce:ed:63:97:c2:2e:dc:b0:
07:e4:fb:89:bf:c6:ef:43:6c:2b:08:71:40:08:47:
c1:18:79:1e:73:7b:8a:e2:d4:71:c8:89:1e:b0:30:
8a:14:89:75:ec:3d:f0:b3:12:72:cf:0c:e4:24:3a:
57:70:a1:3e:5b:08:14:69:01:a8:a8:20:91:b8:14:
26:69:0b:8d:d2:b9:73:6e:5e:73:66:fb:30:1f:6e:
04:16:c3:c8:4b:4c:10:64:b2:e5:26:b0:97:ea:4a:
aa:30:6c:95:20:74:e5:c4:c8:78:fb:3f:f2:ee:ec:
50:fe:a1:c7:58:c7:7f:94:4a:52:b7:fd:46:fa:91:
a6:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:25:89:F2:AD:67:C2:1A:F0:C1:CA:FD:D2:24:44:1C:ED:44:F8:0E
X509v3 Authority Key Identifier:
keyid:63:E2:49:77:99:3C:15:BC:C1:34:B1:74:93:7F:41:B2:12:9F:56:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-JJd5k8FbzBNLF0k39BshKfVtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/fd8116-5e98-45ef-af74-073a5db0efb5/1/5SWJ8q1nwhrwwcr90iREHO1E-A4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/fd8116-5e98-45ef-af74-073a5db0efb5/1/Y-JJd5k8FbzBNLF0k39BshKfVtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.208.146.0/24
Signature Algorithm: sha256WithRSAEncryption
46:ae:fa:6f:dc:54:b7:e7:83:b2:44:e7:6e:8d:3c:ea:3d:4a:
7c:76:48:3c:00:3b:da:1c:a3:af:8b:dd:51:67:99:6b:e0:33:
be:c8:31:1a:d4:e8:3d:71:68:c2:35:8b:69:ba:92:2c:37:cd:
a1:3b:61:fb:df:a7:ed:43:2b:41:56:68:af:4a:07:d9:e0:aa:
af:8d:84:4c:92:0d:24:43:f4:32:0a:4d:3f:44:cc:3d:fd:2e:
97:8a:8a:3a:d4:0e:91:52:42:8a:8c:40:52:93:b2:bb:cb:d7:
cb:8e:ff:a7:0b:ad:14:a7:c1:e8:ae:35:09:1d:b1:ad:f9:a0:
b9:65:a6:f4:94:42:de:29:cc:e2:d8:bd:43:fc:43:34:50:b4:
7f:73:26:9e:83:e3:0c:9f:49:2e:85:80:e7:20:27:01:a5:97:
42:80:66:90:b7:0a:e6:86:5f:f4:8e:28:e9:59:47:dc:2d:28:
f4:ab:16:75:37:df:5a:42:4b:ea:74:77:6f:89:dd:2f:e1:5e:
93:d9:78:c3:2a:0f:06:e8:aa:ff:e4:5a:b5:97:a7:b5:1c:f6:
12:67:2a:22:7e:46:c7:4c:de:38:47:8f:bf:53:07:b0:71:8a:
ce:98:fd:5d:56:04:74:b3:ba:e6:80:fd:86:40:95:42:21:76:
d5:7a:0f:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:36:05 2025 by rpki-client