Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/F0pAB0XnsTzvCTHaEqnpuYz8Jnc.roa
File: F0pAB0XnsTzvCTHaEqnpuYz8Jnc.roa (raw, json)
Hash identifier: yooafnQAo3byEIABmTa9PMCI4UOVQ6FkiJbmCqaocGw=
Subject key identifier: 17:4A:40:07:45:E7:B1:3C:EF:09:31:DA:12:A9:E9:B9:8C:FC:26:77
Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Certificate serial: 0188F17FB0D53CD828CB1744B236F908B393
Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/F0pAB0XnsTzvCTHaEqnpuYz8Jnc.roa
Signing time: Sun 25 Jun 2023 07:40:57 +0000
ROA not before: Sun 25 Jun 2023 07:40:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211056
IP address blocks: 185.215.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:f1:7f:b0:d5:3c:d8:28:cb:17:44:b2:36:f9:08:b3:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Validity
Not Before: Jun 25 07:40:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=174a400745e7b13cef0931da12a9e9b98cfc2677
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:db:15:7a:45:7a:49:67:4e:7a:15:ca:8f:6b:
e1:c5:73:e1:2c:22:77:98:2b:3f:51:52:f0:da:67:
c7:7a:70:7c:15:ea:a3:ab:84:0d:81:d9:f8:eb:6c:
b5:04:97:e4:20:81:90:62:2b:77:da:6e:bd:d8:52:
65:f3:4b:6b:3d:72:3d:b9:7d:f7:77:f0:05:5a:26:
98:e9:86:cf:29:bd:b9:c6:34:c5:1a:3c:21:62:29:
e5:ba:d5:64:a2:57:71:ce:0a:79:dd:e2:22:33:ab:
13:fc:4c:4a:dd:3e:d8:5a:29:50:d1:fa:fb:0e:09:
b2:2e:3c:6e:50:04:b4:03:17:91:7a:f2:b7:67:8a:
d0:99:b3:2f:75:32:4d:f0:44:f1:cf:a1:f9:98:3d:
72:6b:f4:d9:77:49:59:b9:45:b9:87:5b:e7:33:a5:
61:f2:80:65:83:0b:31:43:d8:1d:bf:ff:0f:6a:0e:
b0:2e:89:7e:52:0a:aa:2b:1f:1b:84:d8:d5:f4:22:
63:8f:fb:b0:35:0f:31:7e:ff:b1:a8:79:7e:4f:d4:
b8:bf:5b:97:7f:a8:41:db:64:92:49:db:8e:63:90:
4c:34:8a:77:73:42:28:b8:5c:81:20:e8:f5:fa:f5:
ed:75:69:32:7d:db:e4:33:6f:d2:aa:a1:b7:32:6b:
16:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:4A:40:07:45:E7:B1:3C:EF:09:31:DA:12:A9:E9:B9:8C:FC:26:77
X509v3 Authority Key Identifier:
keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/F0pAB0XnsTzvCTHaEqnpuYz8Jnc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.215.230.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:19:18:68:7a:89:7b:19:ab:11:45:76:1e:0a:e3:7d:5d:eb:
08:73:36:9b:f3:ba:08:2e:43:20:3b:9a:f1:a1:ae:d4:f7:76:
c3:1d:8d:01:ea:4d:49:04:47:78:1a:2a:dc:05:ec:6e:c8:c5:
de:a4:2e:12:5a:5e:fc:df:0d:9d:fa:58:76:7d:8e:ac:b4:45:
87:7a:41:d1:8e:6a:4a:7d:7c:3c:8c:d4:96:0b:fc:87:70:36:
f8:b0:6c:3c:47:f8:57:fb:6a:e2:68:93:d2:da:f0:e2:9c:64:
29:87:dd:67:3c:5a:17:a2:81:f3:01:0c:fe:8c:73:d6:db:19:
1e:65:f8:dd:dc:3c:cf:7b:11:e8:fe:e7:04:d2:7e:bb:4e:5c:
17:c5:91:55:54:ca:42:fb:8a:0a:4a:52:40:37:b8:c8:cd:e4:
d3:5f:14:d4:7f:23:cb:83:4a:fe:bd:18:9a:57:18:c9:b5:38:
67:64:05:fa:f1:ec:12:fc:67:f4:f8:36:4a:f8:3b:79:7c:7f:
a5:0c:2a:e3:b5:ed:7a:e5:ed:42:17:f4:66:c4:d7:2b:59:87:
ea:c8:a2:9f:3f:3f:7b:74:83:d6:41:b8:f6:b3:b4:86:94:7b:
f5:21:1a:12:5f:08:50:26:ec:de:ff:97:26:d9:70:16:09:ff:
e5:6f:b8:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 03:29:40 2025 by rpki-client