Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/31c815-d96a-4bb6-8ccf-f2b81079b746/1/_KHy9rWphd-DFiU-eCTMqZBur5Y.roa
File: _KHy9rWphd-DFiU-eCTMqZBur5Y.roa (raw, json)
Hash identifier: L1oa6hcyDF2nzzBzGHXDh0z+/7B3oJsaVyKCWUnl0+Y=
Subject key identifier: FC:A1:F2:F6:B5:A9:85:DF:83:16:25:3E:78:24:CC:A9:90:6E:AF:96
Certificate issuer: /CN=b2853aa1eb32bfee0feb1483c14936d101f16edf
Certificate serial: 0B1E598B
Authority key identifier: B2:85:3A:A1:EB:32:BF:EE:0F:EB:14:83:C1:49:36:D1:01:F1:6E:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/soU6oesyv-4P6xSDwUk20QHxbt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/31c815-d96a-4bb6-8ccf-f2b81079b746/1/_KHy9rWphd-DFiU-eCTMqZBur5Y.roa
Signing time: Tue 05 Apr 2022 09:31:02 +0000
ROA not before: Tue 05 Apr 2022 09:31:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49612
IP address blocks: 185.178.211.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 186538379 (0xb1e598b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2853aa1eb32bfee0feb1483c14936d101f16edf
Validity
Not Before: Apr 5 09:31:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fca1f2f6b5a985df8316253e7824cca9906eaf96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e6:77:5c:4a:10:ea:81:2e:e0:bd:2c:d8:d9:
78:2c:a2:72:e3:be:e9:30:82:52:35:d1:29:bf:e2:
9c:cd:d4:e8:f5:db:f4:f4:9e:f8:5e:42:71:41:61:
93:2a:98:78:ac:1e:d4:85:6d:e2:5f:72:d5:43:08:
40:d1:6f:67:b5:52:80:45:e9:19:1f:eb:7b:b6:ca:
fa:12:4f:ec:84:b7:63:60:cd:44:bf:71:7e:8e:b7:
a8:9c:92:5f:0d:1a:10:fd:18:b8:30:d7:e6:7a:5b:
2c:f1:7c:dc:be:4c:09:3f:5d:ed:9b:b8:92:df:17:
17:e7:9b:b3:76:aa:d0:25:03:5e:40:90:f6:a9:1b:
fa:06:38:9d:c4:70:bf:49:d6:45:6e:a1:50:e9:d9:
ab:12:d7:bc:7b:16:eb:fa:09:1e:76:d2:cf:22:1b:
06:86:17:0a:15:d9:ea:b6:9b:db:96:69:0c:d4:7e:
14:95:33:3f:de:6f:e9:18:49:d2:d3:33:c3:af:90:
64:bd:59:d1:d1:ad:a8:2f:7a:13:15:4c:3c:a1:65:
e5:2f:84:cd:68:35:c5:4e:a1:32:bb:f5:a6:38:46:
82:88:08:5a:57:6a:55:82:1e:04:56:64:4c:7b:c2:
d3:cd:80:98:fc:e5:97:6d:d9:e8:84:58:a5:72:2b:
6c:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:A1:F2:F6:B5:A9:85:DF:83:16:25:3E:78:24:CC:A9:90:6E:AF:96
X509v3 Authority Key Identifier:
keyid:B2:85:3A:A1:EB:32:BF:EE:0F:EB:14:83:C1:49:36:D1:01:F1:6E:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/soU6oesyv-4P6xSDwUk20QHxbt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/31c815-d96a-4bb6-8ccf-f2b81079b746/1/_KHy9rWphd-DFiU-eCTMqZBur5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/31c815-d96a-4bb6-8ccf-f2b81079b746/1/soU6oesyv-4P6xSDwUk20QHxbt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.178.211.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:ba:a4:7b:fe:1e:0b:2f:0c:56:40:89:96:6e:5b:6a:04:ae:
76:50:47:d7:a8:75:7d:99:a4:3f:8e:9b:d5:b5:f3:2a:ef:c4:
e5:d2:7e:36:a5:b1:12:1d:b0:01:16:44:04:46:c0:99:c2:30:
b6:32:90:42:cc:23:bb:40:2d:24:7f:11:59:8b:e9:58:99:14:
b8:16:a5:60:3f:5a:c8:1f:f7:a2:d9:74:78:d6:5a:9a:04:44:
36:55:04:56:19:05:3e:7e:e1:85:48:a1:0e:4d:d4:2a:51:01:
32:b6:0d:5d:45:c2:c4:8e:ba:4d:f1:2d:3d:b6:fa:90:ea:ca:
95:8b:68:53:db:41:3e:31:46:00:35:c2:7d:67:89:ff:23:78:
21:d1:15:1d:a0:75:92:81:08:56:a9:c7:ec:f9:9c:31:76:14:
5e:17:41:d5:11:0b:18:c5:28:03:5c:01:e2:75:5f:28:e9:5b:
39:5f:ab:e3:5f:c9:85:cc:17:4d:81:53:65:34:b5:6b:48:21:
e2:0d:6e:ee:c0:8f:2f:ac:f7:7a:d3:1c:e4:05:20:84:6b:17:
5c:e6:96:a2:61:4b:80:9e:27:f0:ec:ba:15:be:95:ef:77:bf:
04:50:83:9b:4c:c7:10:e3:10:8c:d6:ed:79:fa:ac:c7:c6:e1:
78:92:de:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:28:45 2025 by rpki-client