Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/b7b7fa-13d0-4ffc-9878-097b4d6d81e4/1/rHP0Zy_k-y88KRFb_HzjHUynTFA.roa
File: rHP0Zy_k-y88KRFb_HzjHUynTFA.roa (raw, json)
Hash identifier: e5bC4kmk//6iYOx4thz2TKQItSAC4ugRMJchsKKne/w=
Subject key identifier: AC:73:F4:67:2F:E4:FB:2F:3C:29:11:5B:FC:7C:E3:1D:4C:A7:4C:50
Certificate issuer: /CN=6f108bd5addfabf151d9079e3d3d341269666fa7
Certificate serial: 0189DE87076BD7819228E4963BB86BB2FE80
Authority key identifier: 6F:10:8B:D5:AD:DF:AB:F1:51:D9:07:9E:3D:3D:34:12:69:66:6F:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bxCL1a3fq_FR2QeePT00Emlmb6c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/b7b7fa-13d0-4ffc-9878-097b4d6d81e4/1/rHP0Zy_k-y88KRFb_HzjHUynTFA.roa
Signing time: Thu 10 Aug 2023 08:18:58 +0000
ROA not before: Thu 10 Aug 2023 08:18:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199533
IP address blocks: 185.144.115.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:de:87:07:6b:d7:81:92:28:e4:96:3b:b8:6b:b2:fe:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f108bd5addfabf151d9079e3d3d341269666fa7
Validity
Not Before: Aug 10 08:18:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac73f4672fe4fb2f3c29115bfc7ce31d4ca74c50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:12:c5:92:ee:45:17:37:c6:23:88:f4:b0:12:
70:2e:af:8d:2f:d6:0e:28:8a:ba:7a:4c:83:75:06:
26:28:e9:c7:60:cb:92:38:b1:4c:3b:15:c1:78:75:
ae:92:6b:af:bf:c8:b2:ab:47:2e:53:bd:50:9b:73:
c7:3a:bb:d5:fb:ff:21:17:26:0a:5d:9c:dc:53:7d:
28:82:a7:77:dc:b7:1f:cc:3d:14:81:df:1f:58:a1:
72:eb:a6:65:e2:3a:8b:7e:7e:a5:62:47:db:98:cf:
48:0b:33:75:ca:fa:3d:3d:a7:56:d8:95:55:b4:12:
03:b1:c2:c3:90:2f:ac:03:0e:d3:9a:e3:2c:14:91:
53:d8:c4:21:06:65:54:4b:b7:e5:46:76:7d:0f:bd:
73:3e:02:6b:bc:7b:68:9c:43:fb:5f:81:e7:c6:ed:
40:cc:56:8a:81:b9:48:93:bb:90:6d:f2:17:76:da:
2a:01:56:f7:80:c3:0c:39:25:66:af:05:16:ca:0f:
31:50:9f:f2:bd:b8:3a:7b:66:57:a9:48:92:57:0a:
4d:37:0e:d2:85:3d:6a:db:6c:10:5c:44:b0:a1:e1:
fc:00:4d:0e:fc:9a:21:df:95:6f:9c:72:a3:08:57:
fe:ad:29:3d:0a:ea:28:1b:2f:86:4a:de:e1:d3:a0:
0d:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:73:F4:67:2F:E4:FB:2F:3C:29:11:5B:FC:7C:E3:1D:4C:A7:4C:50
X509v3 Authority Key Identifier:
keyid:6F:10:8B:D5:AD:DF:AB:F1:51:D9:07:9E:3D:3D:34:12:69:66:6F:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bxCL1a3fq_FR2QeePT00Emlmb6c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/b7b7fa-13d0-4ffc-9878-097b4d6d81e4/1/rHP0Zy_k-y88KRFb_HzjHUynTFA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/b7b7fa-13d0-4ffc-9878-097b4d6d81e4/1/bxCL1a3fq_FR2QeePT00Emlmb6c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.115.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:55:00:43:11:56:6f:27:f7:e7:a8:d6:87:91:64:b2:84:d4:
0b:03:fc:7a:a6:2b:a5:49:8b:19:6d:aa:7b:ce:09:47:3d:99:
88:04:d8:1f:77:8a:b8:c3:14:c1:6d:a5:3f:60:f6:f9:27:c4:
d0:dc:8b:5f:e3:2e:6e:44:a9:52:ef:80:5c:78:79:c7:89:2b:
68:15:35:23:11:5d:52:e2:9d:34:5e:87:2e:8a:3b:1e:d6:52:
06:23:b8:24:51:77:fe:f7:a2:97:dc:ce:04:da:e5:0a:00:fe:
93:b5:cc:47:fe:b8:ce:9e:b4:79:a7:6b:c4:8f:34:6d:bc:38:
11:f1:97:e4:61:57:1b:01:e6:84:01:6a:26:33:59:db:99:32:
fc:af:22:c4:8b:71:2a:ea:21:cf:cb:8b:97:e5:19:0a:ca:d8:
94:0e:1f:26:8e:76:19:4b:cf:52:31:ae:d3:ae:69:74:59:25:
e7:8d:76:b4:6a:ae:38:f3:70:dc:87:ca:88:28:74:51:56:d0:
74:61:d7:30:95:90:5f:20:d7:d3:a6:47:b7:c3:73:d5:5b:ea:
17:1d:84:1d:69:56:24:94:07:f6:bb:2f:8a:84:6b:69:d7:07:
a8:62:2e:1e:b3:8f:2d:c2:6e:e9:e8:af:e2:f8:08:0b:8a:74:
f2:6d:6b:fd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYnehwdr14GSKOSWO7hrsv6AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmMTA4YmQ1YWRkZmFiZjE1MWQ5MDc5ZTNkM2QzNDEyNjk2
NjZmYTcwHhcNMjMwODEwMDgxODU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYzczZjQ2NzJmZTRmYjJmM2MyOTExNWJmYzdjZTMxZDRjYTc0YzUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiRLFku5FFzfGI4j0sBJwLq+NL9YO
KIq6ekyDdQYmKOnHYMuSOLFMOxXBeHWukmuvv8iyq0cuU71Qm3PHOrvV+/8hFyYK
XZzcU30ogqd33LcfzD0Ugd8fWKFy66Zl4jqLfn6lYkfbmM9ICzN1yvo9PadW2JVV
tBIDscLDkC+sAw7TmuMsFJFT2MQhBmVUS7flRnZ9D71zPgJrvHtonEP7X4Hnxu1A
zFaKgblIk7uQbfIXdtoqAVb3gMMMOSVmrwUWyg8xUJ/yvbg6e2ZXqUiSVwpNNw7S
hT1q22wQXESwoeH8AE0O/Joh35VvnHKjCFf+rSk9CuooGy+GSt7h06ANyQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKxz9Gcv5PsvPCkRW/x84x1Mp0xQMB8GA1UdIwQY
MBaAFG8Qi9Wt36vxUdkHnj09NBJpZm+nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYnhDTDFhM2ZxX0ZSMlFlZVBUMDBFbWxtYjZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9iN2I3ZmEtMTNkMC00ZmZjLTk4Nzgt
MDk3YjRkNmQ4MWU0LzEvckhQMFp5X2steTg4S1JGYl9IempIVXluVEZBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi9iN2I3ZmEtMTNkMC00ZmZjLTk4NzgtMDk3YjRkNmQ4MWU0
LzEvYnhDTDFhM2ZxX0ZSMlFlZVBUMDBFbWxtYjZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZBzMA0G
CSqGSIb3DQEBCwUAA4IBAQCcVQBDEVZvJ/fnqNaHkWSyhNQLA/x6piulSYsZbap7
zglHPZmIBNgfd4q4wxTBbaU/YPb5J8TQ3Itf4y5uRKlS74BceHnHiStoFTUjEV1S
4p00Xocuijse1lIGI7gkUXf+96KX3M4E2uUKAP6TtcxH/rjOnrR5p2vEjzRtvDgR
8ZfkYVcbAeaEAWomM1nbmTL8ryLEi3Eq6iHPy4uX5RkKytiUDh8mjnYZS89SMa7T
rml0WSXnjXa0aq4483Dch8qIKHRRVtB0YdcwlZBfINfTpke3w3PVW+oXHYQdaVYk
lAf2uy+KhGtp1weoYi4es48twm7p6K/i+AgLinTybWv9
-----END CERTIFICATE-----
Generated at Sat Jun 7 20:48:09 2025 by rpki-client