Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/f4ad0f-0b30-41ff-a8d9-82ededa7fe7a/1/PPUcNQSELwXiFzEDRnb2bd5u390.roa
File: PPUcNQSELwXiFzEDRnb2bd5u390.roa (raw, json)
Hash identifier: s1l00vP8TiTSlVjay2i0q9UazD5FGs3LdK2BLXK5Aj0=
Subject key identifier: 3C:F5:1C:35:04:84:2F:05:E2:17:31:03:46:76:F6:6D:DE:6E:DF:DD
Certificate issuer: /CN=aaab6111e004c2a044f168b8d28273cf6744f3a8
Certificate serial: 01856F301D642F9972597B3E59394530DCCD
Authority key identifier: AA:AB:61:11:E0:04:C2:A0:44:F1:68:B8:D2:82:73:CF:67:44:F3:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qqthEeAEwqBE8Wi40oJzz2dE86g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/f4ad0f-0b30-41ff-a8d9-82ededa7fe7a/1/PPUcNQSELwXiFzEDRnb2bd5u390.roa
Signing time: Sun 01 Jan 2023 21:15:02 +0000
ROA not before: Sun 01 Jan 2023 21:15:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202766
IP address blocks: 185.44.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:30:1d:64:2f:99:72:59:7b:3e:59:39:45:30:dc:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaab6111e004c2a044f168b8d28273cf6744f3a8
Validity
Not Before: Jan 1 21:15:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3cf51c3504842f05e21731034676f66dde6edfdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:17:0a:71:ae:7f:2e:2e:cd:59:a3:5b:51:71:
92:85:6c:ae:96:36:24:ad:30:35:87:22:b5:09:7c:
3d:e8:ee:19:a1:ed:97:57:28:be:ca:71:2d:6d:ca:
88:79:3b:24:8d:87:06:2b:4e:dd:7f:32:5b:56:04:
75:f3:78:61:1b:26:02:0a:48:24:0f:db:9e:89:b5:
0e:e1:75:dc:22:04:c7:31:0e:ee:62:58:21:47:b3:
36:ea:91:20:1b:29:90:f0:2e:96:e2:3e:99:76:b2:
7e:c7:51:97:36:37:a7:37:40:7f:de:01:4f:44:59:
f9:95:10:dc:67:3d:7f:75:17:33:b5:01:1e:d6:9c:
5e:c5:7e:51:29:e4:c5:7f:6c:1f:5a:21:87:6c:b5:
7c:ba:54:0b:a9:b4:52:e4:b9:7e:9c:62:24:63:f0:
27:fe:45:4b:18:9e:a7:69:ed:04:97:61:50:9a:10:
62:de:27:c0:1d:de:de:42:6b:57:95:3a:c4:73:d3:
3e:33:85:df:53:fe:66:4c:96:7f:0d:b6:7d:a3:3d:
e9:3b:fa:10:90:53:d7:fc:7b:5c:4f:c6:af:42:b6:
6f:59:ab:d1:15:9f:72:3f:0f:07:5f:5c:4f:a1:44:
9c:47:e5:b1:48:87:a9:30:72:f9:31:c3:f1:68:df:
be:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:F5:1C:35:04:84:2F:05:E2:17:31:03:46:76:F6:6D:DE:6E:DF:DD
X509v3 Authority Key Identifier:
keyid:AA:AB:61:11:E0:04:C2:A0:44:F1:68:B8:D2:82:73:CF:67:44:F3:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qqthEeAEwqBE8Wi40oJzz2dE86g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/f4ad0f-0b30-41ff-a8d9-82ededa7fe7a/1/PPUcNQSELwXiFzEDRnb2bd5u390.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/f4ad0f-0b30-41ff-a8d9-82ededa7fe7a/1/qqthEeAEwqBE8Wi40oJzz2dE86g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.44.63.0/24
Signature Algorithm: sha256WithRSAEncryption
77:53:b3:81:41:27:10:98:f1:5b:0c:47:82:68:ac:f1:83:cd:
17:2c:00:df:a7:45:b3:9d:85:1b:b8:c6:8c:2e:9e:c5:91:15:
92:0c:de:d8:20:03:bc:3a:aa:08:3c:eb:35:a0:72:51:0a:7c:
01:70:de:f1:f2:6c:7d:54:cb:d4:e1:ec:5a:33:25:62:f1:76:
d4:16:88:a7:f8:1f:4c:fa:c2:aa:d3:88:2d:aa:31:49:c5:a0:
5f:ea:d2:25:1e:82:50:75:e4:de:80:69:d7:a6:98:88:61:4b:
be:3c:e9:8c:4f:16:3e:0a:be:b5:db:17:31:0f:71:23:ec:ba:
f9:13:aa:22:21:2d:fa:0c:30:cb:b7:4e:6d:ca:01:d7:5f:9d:
7f:ac:5f:7c:76:2c:8c:2e:fd:83:2e:77:21:8e:ab:af:49:58:
e3:93:84:13:4d:7a:85:a7:4c:64:d3:79:46:a7:ca:d1:f0:9f:
16:8a:1f:cb:60:83:91:c3:86:7e:27:10:b0:6c:58:9d:d3:9d:
c9:2b:4a:38:78:aa:11:6d:2a:84:54:6c:24:e8:83:67:62:1b:
03:b2:2d:4f:9e:25:44:fc:06:5e:70:df:06:45:2e:e7:e8:e4:
50:b9:86:af:4a:3a:92:41:15:ea:7d:cd:f6:f3:16:ea:33:0d:
0e:13:d7:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:35:38 2025 by rpki-client