Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/9e9jv9pLSizcCAoTXXdBWCvQF9Y.roa
File: 9e9jv9pLSizcCAoTXXdBWCvQF9Y.roa (raw, json)
Hash identifier: z+5I1uBOpmxAUxWJElR06aD9WdBWJE7/mRK8LZINBqI=
Subject key identifier: F5:EF:63:BF:DA:4B:4A:2C:DC:08:0A:13:5D:77:41:58:2B:D0:17:D6
Certificate issuer: /CN=4384f6fa6decced5578a85a51e0bd65701ea34ec
Certificate serial: 01886CF3EC24FE3D7D59B7553704D64BAFB6
Authority key identifier: 43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/9e9jv9pLSizcCAoTXXdBWCvQF9Y.roa
Signing time: Tue 30 May 2023 13:58:24 +0000
ROA not before: Tue 30 May 2023 13:58:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60783
IP address blocks: 185.198.208.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:6c:f3:ec:24:fe:3d:7d:59:b7:55:37:04:d6:4b:af:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4384f6fa6decced5578a85a51e0bd65701ea34ec
Validity
Not Before: May 30 13:58:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f5ef63bfda4b4a2cdc080a135d7741582bd017d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:5f:ab:6e:8d:6c:a0:bf:66:07:e0:91:d0:41:
ff:21:42:2b:04:77:e8:87:b9:4a:5a:fc:a7:cb:26:
fa:91:ee:42:7d:a6:e7:23:fa:f1:1c:68:f2:a8:00:
db:08:a0:19:de:ec:85:00:93:57:b0:3f:85:82:1d:
ab:50:16:31:8f:f8:93:d6:1c:e4:c5:1a:75:df:f7:
ae:f6:25:1c:98:c5:69:d3:d7:a3:a5:08:1e:0b:db:
db:c7:c9:cb:cc:39:94:2d:5d:6e:71:19:42:38:99:
6f:dd:ef:0f:71:a1:3b:56:2f:3b:55:70:14:2d:13:
9a:e8:a3:9d:d5:96:91:47:3c:9d:c4:81:24:eb:31:
3e:1d:09:24:12:26:a3:8b:ad:bd:fb:7b:54:c3:9c:
99:57:ed:8a:a2:b0:f9:b2:57:53:3f:5c:b7:92:f8:
26:41:78:22:1d:1f:5a:c0:e4:a7:d7:fe:fe:e5:1d:
17:ef:df:04:75:5d:10:7b:6f:5e:f8:d8:cd:9d:c8:
ad:23:77:1f:9e:ae:c1:b4:53:2b:2f:b4:56:15:10:
c6:7c:9a:98:bd:b7:79:2a:ce:76:7e:ce:31:43:e7:
59:69:0d:5e:b8:0c:d4:6c:b4:01:88:0f:12:cb:3c:
12:c1:23:dc:7a:d5:06:79:7b:ac:54:2f:4b:81:6a:
37:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:EF:63:BF:DA:4B:4A:2C:DC:08:0A:13:5D:77:41:58:2B:D0:17:D6
X509v3 Authority Key Identifier:
keyid:43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/9e9jv9pLSizcCAoTXXdBWCvQF9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.208.0/23
Signature Algorithm: sha256WithRSAEncryption
31:64:64:7f:fe:9e:6a:78:c5:bb:b0:a4:58:1d:4a:d7:36:96:
de:02:4f:39:92:f4:2f:f4:cd:be:07:a8:3a:50:11:7b:af:e6:
86:57:26:90:e0:c1:8b:d8:34:41:f1:4a:7c:e1:79:1d:4c:6d:
cc:a5:45:87:29:44:81:5d:d5:62:95:98:fb:d5:3f:69:bf:0f:
67:b0:55:db:6b:79:e2:a6:50:0a:42:79:1f:04:70:28:f9:cc:
a4:97:63:e4:aa:d3:e5:cd:c0:db:f8:c4:47:7c:8b:0a:fd:7b:
8c:0e:34:84:16:e2:61:34:25:3e:f2:8b:b4:77:b8:d8:67:b4:
25:b5:ab:b4:f3:7a:4b:79:de:f1:6f:ed:13:2c:c5:5f:35:a5:
ad:cb:de:7e:d9:f8:78:de:e7:5c:c8:8f:37:26:99:97:d1:6e:
95:6b:9c:11:ad:ca:37:b9:76:66:3a:d2:b0:b3:cf:23:f6:15:
a0:79:e2:4d:ff:fa:6c:30:43:38:95:6c:c1:49:d0:8f:a5:ba:
eb:24:9c:ac:00:3c:46:90:20:47:77:8f:42:dd:c6:5d:38:0c:
5c:5e:f5:46:49:28:93:9b:c6:ed:76:b9:98:89:8b:ae:e5:8b:
b4:8d:cc:6f:7d:7b:54:6f:be:25:77:9c:15:21:88:45:cc:2e:
2a:3f:0d:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:47:20 2025 by rpki-client