Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/xloTTes78fS9l0PvjWfvzhrGTxM.roa
File: xloTTes78fS9l0PvjWfvzhrGTxM.roa (raw, json)
Hash identifier: ZFRD8LnFThopUYFYzpmD4t5fHlms2Hqm9xoIYcOdU+g=
Subject key identifier: C6:5A:13:4D:EB:3B:F1:F4:BD:97:43:EF:8D:67:EF:CE:1A:C6:4F:13
Certificate issuer: /CN=621b8e486eecae6124de10494fd39139ed4a37cb
Certificate serial: 1083329B
Authority key identifier: 62:1B:8E:48:6E:EC:AE:61:24:DE:10:49:4F:D3:91:39:ED:4A:37:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhuOSG7srmEk3hBJT9OROe1KN8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/xloTTes78fS9l0PvjWfvzhrGTxM.roa
Signing time: Sat 01 Jan 2022 04:04:21 +0000
ROA not before: Sat 01 Jan 2022 04:04:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30900
IP address blocks: 185.176.128.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 277033627 (0x1083329b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621b8e486eecae6124de10494fd39139ed4a37cb
Validity
Not Before: Jan 1 04:04:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c65a134deb3bf1f4bd9743ef8d67efce1ac64f13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f1:1f:2b:b9:36:ce:36:f7:85:f1:1a:eb:91:
82:7b:a3:61:51:0f:72:94:35:a1:e4:c6:cf:6b:26:
71:f6:64:54:be:a9:48:0f:be:c0:a9:ba:b3:3d:2b:
29:6c:b7:08:e4:9c:30:d6:c0:68:12:be:6d:b2:4b:
5c:b6:ae:f2:59:62:7e:4d:bf:a3:cf:32:28:d2:49:
f9:83:92:f4:3a:ba:c8:4d:f1:bd:55:dc:e4:75:a7:
75:67:e9:07:b0:94:94:b4:e9:c5:17:e4:1c:57:99:
73:1f:31:87:87:38:c6:0c:1c:58:3b:37:f5:d4:af:
fb:eb:be:63:78:6c:be:f3:5e:d3:a9:b0:10:ea:d5:
22:ec:06:83:39:51:ba:a5:b6:ae:90:aa:f3:10:d3:
92:d3:e3:16:1a:b6:32:82:29:93:e1:1d:1d:b1:06:
87:1f:81:f8:4d:ca:07:27:d6:d7:08:41:16:1c:25:
6e:99:1a:f4:0c:17:89:06:37:16:e1:4a:4e:c9:d8:
27:54:d8:24:e7:71:66:1c:fe:e0:17:c7:c6:c7:ba:
59:82:82:49:8d:46:22:ef:8f:e2:48:00:38:3b:a0:
f9:58:ea:cb:fe:7f:fe:99:4d:f8:06:1a:21:a2:22:
84:0e:af:03:eb:88:3a:30:70:e6:82:5b:9a:8a:ef:
6b:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:5A:13:4D:EB:3B:F1:F4:BD:97:43:EF:8D:67:EF:CE:1A:C6:4F:13
X509v3 Authority Key Identifier:
keyid:62:1B:8E:48:6E:EC:AE:61:24:DE:10:49:4F:D3:91:39:ED:4A:37:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhuOSG7srmEk3hBJT9OROe1KN8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/xloTTes78fS9l0PvjWfvzhrGTxM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.176.128.0/22
Signature Algorithm: sha256WithRSAEncryption
83:35:50:3a:3e:8f:65:31:ca:8e:6d:e2:bb:f7:b1:92:69:c0:
25:43:c5:29:83:ef:5a:30:58:3d:fd:e1:42:20:8a:6e:fa:1a:
d4:a3:56:af:e6:50:2f:a1:9f:de:cd:89:46:6f:32:9d:b6:2a:
59:09:cd:d5:d9:d7:14:32:96:ac:7c:78:ab:1d:e6:b0:f0:95:
de:8a:25:71:8e:70:3c:ce:c5:7d:00:b9:b3:13:cf:ed:00:17:
e3:76:d9:d4:be:77:f0:e5:54:95:37:c4:3b:bf:7c:24:ce:09:
fa:bf:d2:1b:63:29:cb:ec:9d:a7:f1:ce:07:a4:1f:68:77:50:
32:59:d0:c7:ac:11:b9:22:32:8c:a4:9d:d9:09:da:ed:20:14:
dc:fa:aa:4f:86:fe:1d:1f:b1:1e:ac:65:a1:cb:59:64:2f:5a:
b6:c7:88:f3:5f:13:77:35:78:0a:a1:da:ba:3d:73:41:1c:10:
06:b3:b2:f6:81:fc:a4:ee:0e:30:b9:c7:c2:df:ae:73:6d:3e:
a6:63:17:63:cd:73:d3:8b:64:f8:bf:6e:02:1e:bf:7e:e8:bc:
26:55:a2:36:7a:68:8e:58:cd:1d:37:9d:fa:b2:7c:cf:38:ce:
11:84:d3:8b:a3:84:74:00:3b:19:33:13:6d:25:57:cd:e2:9e:
20:bc:df:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 16:05:11 2025 by rpki-client