Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/13fb65-4ee7-4026-aa3a-9d56e3adca90/1/f0W0rZA0QPoqi-cw0ukc8psG-Fk.roa
File: f0W0rZA0QPoqi-cw0ukc8psG-Fk.roa (raw, json)
Hash identifier: 5w8AK2EFQOe0bv1x5hpTimMehXiqT3rUdh5OD5QSSCg=
Subject key identifier: 7F:45:B4:AD:90:34:40:FA:2A:8B:E7:30:D2:E9:1C:F2:9B:06:F8:59
Certificate issuer: /CN=d612742b91d770fe8efbc9b5dcf8dc38984dd0f0
Certificate serial: 11015CBE
Authority key identifier: D6:12:74:2B:91:D7:70:FE:8E:FB:C9:B5:DC:F8:DC:38:98:4D:D0:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1hJ0K5HXcP6O-8m13PjcOJhN0PA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/13fb65-4ee7-4026-aa3a-9d56e3adca90/1/f0W0rZA0QPoqi-cw0ukc8psG-Fk.roa
Signing time: Wed 22 Jun 2022 13:48:33 +0000
ROA not before: Wed 22 Jun 2022 13:48:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58316
IP address blocks: 185.56.217.0/24 maxlen: 24
185.56.216.0/23 maxlen: 23
185.56.216.0/24 maxlen: 24
185.17.104.0/23 maxlen: 23
185.198.120.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 285301950 (0x11015cbe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d612742b91d770fe8efbc9b5dcf8dc38984dd0f0
Validity
Not Before: Jun 22 13:48:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f45b4ad903440fa2a8be730d2e91cf29b06f859
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:db:f6:d8:df:8b:f3:6d:04:10:82:42:8e:31:
fd:ba:9c:37:c8:ad:68:a3:9e:6d:70:57:e1:ef:d9:
58:fd:7e:14:f6:a8:8d:b1:17:de:31:57:66:40:51:
93:84:85:65:b4:a0:2f:dc:e5:d7:32:b1:f3:69:e2:
03:60:26:5f:c3:27:7f:81:9b:59:26:d5:a3:84:c4:
2e:fd:9a:38:a5:5e:2d:22:5c:75:0b:4b:69:90:8e:
f2:dd:86:57:27:9b:5c:34:e1:97:74:e7:d9:dd:33:
fb:34:f6:99:0f:cb:bf:a5:17:32:24:a6:31:c5:8f:
27:94:c8:15:9c:e3:45:e8:29:18:95:20:4a:92:e4:
ed:a7:61:5b:f5:1f:5b:c1:7e:f4:a3:59:f3:1a:78:
7d:d7:5a:62:56:73:fe:79:6c:84:c1:1a:4a:a2:5b:
d5:4b:25:d6:b1:72:6f:c1:c3:5e:ed:e2:a2:bf:49:
69:fb:39:ab:94:cb:1c:df:31:63:d9:82:d6:36:75:
80:c5:15:48:75:fd:bf:cb:23:36:60:b2:01:cb:b9:
f7:22:e7:1e:16:25:2d:c8:e6:23:5a:91:8c:cd:22:
6a:89:38:1d:5f:f1:c2:f1:ea:8e:37:2b:6a:44:07:
9f:62:27:69:65:19:2d:09:05:8f:15:0a:fd:06:52:
a0:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:45:B4:AD:90:34:40:FA:2A:8B:E7:30:D2:E9:1C:F2:9B:06:F8:59
X509v3 Authority Key Identifier:
keyid:D6:12:74:2B:91:D7:70:FE:8E:FB:C9:B5:DC:F8:DC:38:98:4D:D0:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1hJ0K5HXcP6O-8m13PjcOJhN0PA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/13fb65-4ee7-4026-aa3a-9d56e3adca90/1/f0W0rZA0QPoqi-cw0ukc8psG-Fk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/13fb65-4ee7-4026-aa3a-9d56e3adca90/1/1hJ0K5HXcP6O-8m13PjcOJhN0PA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.17.104.0/23
185.56.216.0/23
185.198.120.0/22
Signature Algorithm: sha256WithRSAEncryption
79:60:d0:54:d6:b8:d4:eb:f5:09:69:72:4b:c8:37:91:2e:c1:
ca:78:5a:13:2c:35:8c:e3:34:ed:f7:24:e1:64:63:6c:b1:b7:
10:40:87:c9:9c:51:86:4a:bd:7c:5a:c9:cd:2a:d9:b9:c3:b1:
54:24:0a:93:bc:96:44:96:4c:25:f5:fc:ad:d2:00:ef:ea:c0:
6f:c3:98:cd:e7:61:9b:ae:76:ed:05:47:a7:3b:7e:cd:89:f8:
6a:da:c4:91:99:28:ab:c7:6b:13:a7:b0:f5:e6:c2:c3:ea:05:
1c:9b:63:71:00:04:01:8e:14:4f:a0:58:78:ab:98:91:db:c2:
47:be:6a:09:6b:b7:b2:06:82:9f:0f:47:6d:ba:6d:7d:fa:49:
50:9e:be:81:1b:c6:1d:48:b9:b8:19:10:7a:f4:95:c0:7c:a9:
51:20:b0:9b:ad:a5:47:e7:cf:17:0b:2d:7e:2c:51:14:3f:af:
4e:6a:71:ea:2a:eb:90:e7:a7:0a:d4:e7:8e:de:5a:ed:bf:44:
99:fd:77:37:35:86:a7:d5:17:e2:e7:2c:64:0c:22:d2:c3:44:
50:05:62:41:07:c1:07:b4:85:29:19:53:59:d3:9d:8b:14:9f:
c0:66:95:fc:80:16:37:de:f1:76:3a:91:74:a1:b5:9a:a2:9d:
95:77:86:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:46:27 2025 by rpki-client