Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/220ed7-8dc2-4c01-92bb-208ef32c0202/1/4G4vu1Z4pwg52lvqdkoUdHk6LG0.roa
File: 4G4vu1Z4pwg52lvqdkoUdHk6LG0.roa (raw, json)
Hash identifier: 6D5nyALTaEWfyQxGrXEL90p9Yiymz3Oy9lMg5LAg7V4=
Subject key identifier: E0:6E:2F:BB:56:78:A7:08:39:DA:5B:EA:76:4A:14:74:79:3A:2C:6D
Certificate issuer: /CN=579ade9feaedc406df5e11bcef0393cd5e9fd0dd
Certificate serial: 01856F30124F3A86FACE21E66E1ACC1BCEC3
Authority key identifier: 57:9A:DE:9F:EA:ED:C4:06:DF:5E:11:BC:EF:03:93:CD:5E:9F:D0:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5ren-rtxAbfXhG87wOTzV6f0N0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/220ed7-8dc2-4c01-92bb-208ef32c0202/1/4G4vu1Z4pwg52lvqdkoUdHk6LG0.roa
Signing time: Sun 01 Jan 2023 21:14:59 +0000
ROA not before: Sun 01 Jan 2023 21:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50103
IP address blocks: 185.186.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:30:12:4f:3a:86:fa:ce:21:e6:6e:1a:cc:1b:ce:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=579ade9feaedc406df5e11bcef0393cd5e9fd0dd
Validity
Not Before: Jan 1 21:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e06e2fbb5678a70839da5bea764a1474793a2c6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:b3:d6:4e:0d:e8:72:88:d1:d6:2e:37:c1:97:
6c:a4:ca:68:bc:d0:8f:96:05:3b:8e:2e:ac:4f:8f:
d1:f2:48:a2:d7:af:1d:3f:1c:03:bc:f8:2c:e0:7b:
7c:29:e9:a7:b0:2f:27:37:55:33:15:b6:06:83:53:
d6:cd:8f:89:26:f4:72:45:e4:1e:5d:a4:e6:1c:5e:
fc:13:c8:b1:49:a8:9f:0c:3f:0f:b4:84:79:bd:7e:
14:31:39:9c:5d:9f:58:ed:cf:ab:95:1b:6c:e6:c6:
bc:bd:e2:cf:d9:51:49:70:7a:ae:5f:b3:c9:67:60:
13:af:c3:9d:2a:b2:1f:99:c9:09:84:f3:db:d2:6f:
de:bb:7e:a9:05:88:a7:09:6a:6f:6f:5e:86:0e:57:
57:92:52:ab:39:32:7c:a0:57:36:56:36:11:db:b2:
18:4f:61:9b:4b:24:fb:97:8d:1d:26:2e:40:dd:8b:
44:7f:fb:e4:d2:ba:61:a5:26:67:b3:d8:01:eb:47:
f9:d7:5f:8e:87:09:c9:8d:ea:7b:62:12:65:83:bf:
f4:ac:b0:d7:25:b3:af:5a:20:e1:9e:ce:70:f3:66:
79:b6:79:7b:84:e0:24:ad:4f:b8:26:e7:8b:8e:cb:
a6:ae:7a:32:4c:bf:57:a5:d4:48:f2:ed:57:3e:53:
ae:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:6E:2F:BB:56:78:A7:08:39:DA:5B:EA:76:4A:14:74:79:3A:2C:6D
X509v3 Authority Key Identifier:
keyid:57:9A:DE:9F:EA:ED:C4:06:DF:5E:11:BC:EF:03:93:CD:5E:9F:D0:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5ren-rtxAbfXhG87wOTzV6f0N0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/220ed7-8dc2-4c01-92bb-208ef32c0202/1/4G4vu1Z4pwg52lvqdkoUdHk6LG0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/220ed7-8dc2-4c01-92bb-208ef32c0202/1/V5ren-rtxAbfXhG87wOTzV6f0N0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.1.0/24
Signature Algorithm: sha256WithRSAEncryption
50:da:6a:77:f2:86:3e:7f:63:c1:c3:9d:43:b4:ab:78:59:c1:
7d:a5:52:26:6c:ec:0c:9e:fc:eb:96:e9:f2:29:b9:0c:6f:ce:
bd:8d:42:b8:e3:78:4f:a0:76:ed:b8:25:44:8e:2d:cc:e5:59:
ae:5a:b0:0f:48:f3:bc:d9:69:a7:66:9b:4b:f2:af:1e:c1:8b:
71:58:15:f1:96:51:55:be:9f:15:0e:b1:8a:ad:e8:ed:9b:a0:
ee:a1:bd:77:9a:bd:c5:83:bb:78:65:05:48:eb:90:e2:76:81:
89:0b:6e:a2:83:95:fb:d5:06:83:5b:11:3f:b4:a6:b9:d6:16:
90:b2:af:8c:ba:ca:05:f3:e2:2d:dc:48:62:a6:72:a1:5c:0c:
cc:5c:06:ff:27:de:23:a2:fe:4d:f6:db:01:84:e3:97:d1:e3:
cf:34:48:1e:ea:27:3d:a0:db:67:bb:18:c5:1a:13:f7:75:9f:
cd:fc:e3:44:9e:2c:88:78:18:2f:6f:bb:73:6d:04:96:89:d0:
72:58:57:0d:11:72:cd:de:c1:6f:b2:08:0e:cf:ad:0e:59:3f:
f4:dd:d4:f8:42:9f:cc:31:23:93:11:05:ba:5f:8a:dc:05:8a:
00:bc:45:6f:63:38:fb:43:b1:39:cb:0b:16:b8:29:dc:14:b1:
51:00:39:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:30:19 2025 by rpki-client