Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/b49f81-8536-4a67-899f-d5e63856d55d/1/F2xjQ6lZOFcPhFSUadpqrVdjPUA.roa
File: F2xjQ6lZOFcPhFSUadpqrVdjPUA.roa (raw, json)
Hash identifier: sEt8wvI/jpdcrFfN2M8avbvtQ7u8PunUX/4FNe97+J0=
Subject key identifier: 17:6C:63:43:A9:59:38:57:0F:84:54:94:69:DA:6A:AD:57:63:3D:40
Certificate issuer: /CN=c285a1474e38627e301a551be34efa4582a5cf39
Certificate serial: 1764FE99
Authority key identifier: C2:85:A1:47:4E:38:62:7E:30:1A:55:1B:E3:4E:FA:45:82:A5:CF:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/woWhR044Yn4wGlUb4076RYKlzzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/b49f81-8536-4a67-899f-d5e63856d55d/1/F2xjQ6lZOFcPhFSUadpqrVdjPUA.roa
Signing time: Sat 01 Jan 2022 06:02:50 +0000
ROA not before: Sat 01 Jan 2022 06:02:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201419
IP address blocks: 185.62.162.0/23 maxlen: 23
81.173.43.0/24 maxlen: 24
2a03:522::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 392494745 (0x1764fe99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c285a1474e38627e301a551be34efa4582a5cf39
Validity
Not Before: Jan 1 06:02:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=176c6343a95938570f84549469da6aad57633d40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ab:68:3b:b0:eb:3b:96:79:5e:89:09:b2:6a:
f8:09:84:d7:83:5f:30:5e:4d:e7:8f:27:ea:85:41:
8f:cb:36:ec:df:5c:79:4b:e1:f1:6c:e4:be:5e:78:
7c:b5:f6:e5:35:23:ab:15:ab:f9:2d:b6:8d:82:61:
76:bd:62:2a:32:a3:40:73:71:56:cf:1e:8d:53:23:
87:6c:de:49:e6:23:61:53:dc:6b:cf:e8:90:0c:95:
bd:bc:7a:37:26:c9:7e:d9:72:71:10:05:66:3b:0d:
91:75:9e:19:a7:db:f9:ec:e7:35:b4:32:08:86:cf:
2d:43:01:ab:54:d8:20:54:13:d0:b5:c8:5c:6a:dd:
1d:22:b9:95:91:94:6d:2a:88:b3:af:6d:b2:aa:93:
22:2e:31:6d:0f:22:c5:ca:ff:00:4d:13:d6:6f:52:
9c:26:64:51:4c:91:c1:09:c6:5d:93:cb:1a:75:e8:
ad:81:5b:9d:bc:df:88:f4:5e:fc:76:c5:00:75:55:
54:a0:74:36:8a:b7:2b:88:e6:76:2c:48:69:07:87:
16:c8:4b:5f:11:4d:3d:1d:39:9d:1d:ea:35:b9:de:
5b:e5:2d:31:cc:11:1e:68:f5:8b:df:1f:71:bf:bd:
60:22:1f:b9:4a:59:55:71:b2:27:00:16:37:8b:a1:
ee:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:6C:63:43:A9:59:38:57:0F:84:54:94:69:DA:6A:AD:57:63:3D:40
X509v3 Authority Key Identifier:
keyid:C2:85:A1:47:4E:38:62:7E:30:1A:55:1B:E3:4E:FA:45:82:A5:CF:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/woWhR044Yn4wGlUb4076RYKlzzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/b49f81-8536-4a67-899f-d5e63856d55d/1/F2xjQ6lZOFcPhFSUadpqrVdjPUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/b49f81-8536-4a67-899f-d5e63856d55d/1/woWhR044Yn4wGlUb4076RYKlzzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.173.43.0/24
185.62.162.0/23
IPv6:
2a03:522::/32
Signature Algorithm: sha256WithRSAEncryption
ac:16:a3:68:52:b8:c5:68:6b:2f:c2:a1:7c:63:67:17:26:ea:
fb:29:13:13:82:88:ac:f8:b3:9f:ec:89:cb:f3:80:73:85:a6:
ca:4e:6c:1c:ec:4e:55:c9:f8:81:b9:6c:aa:01:fa:c0:58:8f:
ec:dd:b9:7a:9c:76:4d:29:b4:b2:49:8e:a8:1d:81:cb:bb:cb:
e6:71:6d:af:8e:09:46:54:f8:7c:f4:66:34:21:ce:4b:24:38:
a6:73:07:c8:ee:b0:52:01:9e:a3:c5:38:d5:4a:11:94:7e:1b:
bc:66:5e:ed:7f:cf:75:76:e2:a4:ec:81:ce:11:7d:00:45:00:
de:b8:f3:f6:15:cd:26:a0:be:79:6f:c3:e0:b8:3e:66:17:18:
bc:d7:d0:7b:5d:5d:2a:b5:d8:48:f1:ac:d7:c6:88:37:ef:c7:
77:cb:7b:c1:0c:74:af:8f:be:ea:54:a0:7d:53:26:6e:4f:7d:
38:08:fe:a3:e4:75:53:08:7c:fe:d5:95:eb:d0:47:7b:4c:66:
30:36:66:8b:cf:bc:ce:76:27:bd:f2:85:03:ca:49:cd:af:e8:
07:9f:96:a5:37:22:db:2c:32:46:39:a5:9a:18:42:5b:74:fa:
1a:8f:3f:47:f1:60:a0:11:cd:c6:27:53:79:72:2a:b6:5a:86:
5d:a5:b6:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:24:38 2025 by rpki-client