Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/1e09a6-695b-402e-9bfc-041312242ff3/1/zoaZMwJQw_1gnsaGBBjbONQH4rA.roa
File: zoaZMwJQw_1gnsaGBBjbONQH4rA.roa (raw, json)
Hash identifier: StUdj+iMglmbNln6xzoTKVn4trLceB6fq7a/8pwZJZk=
Subject key identifier: CE:86:99:33:02:50:C3:FD:60:9E:C6:86:04:18:DB:38:D4:07:E2:B0
Certificate issuer: /CN=e15136feff3574ef9b2262de59b06a21908fab3e
Certificate serial: 043792E9
Authority key identifier: E1:51:36:FE:FF:35:74:EF:9B:22:62:DE:59:B0:6A:21:90:8F:AB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4VE2_v81dO-bImLeWbBqIZCPqz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/1e09a6-695b-402e-9bfc-041312242ff3/1/zoaZMwJQw_1gnsaGBBjbONQH4rA.roa
Signing time: Fri 24 Jun 2022 16:31:17 +0000
ROA not before: Fri 24 Jun 2022 16:31:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204533
IP address blocks: 185.248.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70750953 (0x43792e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e15136feff3574ef9b2262de59b06a21908fab3e
Validity
Not Before: Jun 24 16:31:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce8699330250c3fd609ec6860418db38d407e2b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:13:64:a5:94:43:89:58:6a:b2:67:3e:e3:10:
e2:51:e1:d7:38:00:cc:e2:74:fb:49:bf:73:da:bf:
02:59:f3:80:00:f7:9f:7d:1d:30:5e:5a:f2:e8:a1:
bc:ea:7f:d7:d5:c8:56:6b:82:3f:46:3b:6f:9c:48:
e0:7a:8e:9b:a0:65:55:43:bf:38:16:8b:5d:ea:de:
57:f9:20:5d:1f:b6:ff:f2:36:75:79:ca:29:e1:a1:
80:a9:7b:36:95:3e:f3:50:a8:8e:0d:e4:01:67:3c:
c2:bb:35:d8:b5:48:fc:45:cd:f8:84:4a:ce:4e:2c:
4b:d0:29:31:69:44:79:27:24:fa:61:bb:fe:20:30:
e1:0e:bc:c1:45:26:c7:c9:f9:af:72:1b:91:f0:c1:
06:7f:49:92:5f:73:d2:28:8e:4e:5e:e1:5c:a3:81:
60:c8:e6:fe:44:21:b3:ce:a2:af:44:c6:be:05:90:
0d:b5:d0:37:18:00:73:53:5c:32:82:4d:2d:64:b3:
05:f8:a3:2b:2f:ed:55:3a:80:bc:52:dc:d2:5a:ce:
50:4f:81:04:84:06:0d:4b:23:8a:b1:28:1e:7c:15:
84:dd:71:0c:31:44:4a:28:32:e2:c5:8b:5c:b1:6a:
2c:4d:11:8f:7d:20:5a:62:c1:43:ea:aa:49:a4:23:
fe:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:86:99:33:02:50:C3:FD:60:9E:C6:86:04:18:DB:38:D4:07:E2:B0
X509v3 Authority Key Identifier:
keyid:E1:51:36:FE:FF:35:74:EF:9B:22:62:DE:59:B0:6A:21:90:8F:AB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4VE2_v81dO-bImLeWbBqIZCPqz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/1e09a6-695b-402e-9bfc-041312242ff3/1/zoaZMwJQw_1gnsaGBBjbONQH4rA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/1e09a6-695b-402e-9bfc-041312242ff3/1/4VE2_v81dO-bImLeWbBqIZCPqz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.248.32.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:91:65:bb:46:29:0e:b6:79:df:68:7c:9c:10:5d:2f:8c:f3:
5b:c8:f6:05:cb:0f:5c:14:ea:d7:0f:fa:04:3e:ca:d9:7c:f6:
62:25:f6:06:e1:a4:7f:cc:49:f6:a7:ca:32:4b:36:01:60:c2:
c3:d6:d3:67:0f:f8:d9:b7:90:34:e1:7f:e9:15:e1:d9:70:72:
28:22:c9:e0:c6:ae:ba:e5:c2:a2:40:05:03:6c:2b:b9:e8:91:
47:10:89:de:1c:0e:f2:42:bd:3c:9c:d6:97:e4:a7:23:9f:f3:
da:9a:96:b3:e2:ab:84:b9:8e:f0:47:2d:9d:df:98:bb:99:0f:
dd:1c:7c:55:9e:2d:37:ec:5f:08:2e:99:c4:98:67:fa:44:5a:
d2:6a:27:2f:e2:cd:ca:a7:05:b1:47:f8:f8:ad:04:07:da:6c:
b9:23:83:08:ad:9d:74:e6:bf:c3:67:fa:03:e5:90:d6:ee:bb:
3e:25:25:9c:37:59:8b:1d:b6:ee:30:78:6e:8d:86:82:e1:81:
1e:36:59:21:cb:c4:d1:0b:51:14:40:d4:bb:7b:e1:bf:82:ba:
ff:89:17:da:5b:ce:f7:2f:82:55:ce:bd:b5:68:82:f4:2c:47:
a3:a7:8b:ef:e0:d1:9b:f4:e9:83:d4:bf:75:df:be:de:a5:8b:
81:58:e0:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 09:22:27 2025 by rpki-client