Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/4cc115-af65-4913-9d69-1c35b839379b/1/ou0IvOcHiuvqxzGIv8mqiEMbZlQ.roa
File: ou0IvOcHiuvqxzGIv8mqiEMbZlQ.roa (raw, json)
Hash identifier: y7Ey0NqK9nfIl7Jzw++4PA30UUBER1SBQsRqbA3ct3E=
Subject key identifier: A2:ED:08:BC:E7:07:8A:EB:EA:C7:31:88:BF:C9:AA:88:43:1B:66:54
Certificate issuer: /CN=2f2b26c552563006213cfe4814a9dc2a0fc16f43
Certificate serial: 018B6218D39298198758643A58C96DD75220
Authority key identifier: 2F:2B:26:C5:52:56:30:06:21:3C:FE:48:14:A9:DC:2A:0F:C1:6F:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LysmxVJWMAYhPP5IFKncKg_Bb0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/4cc115-af65-4913-9d69-1c35b839379b/1/ou0IvOcHiuvqxzGIv8mqiEMbZlQ.roa
Signing time: Tue 24 Oct 2023 14:31:16 +0000
ROA not before: Tue 24 Oct 2023 14:31:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6730
IP address blocks: 185.131.204.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:62:18:d3:92:98:19:87:58:64:3a:58:c9:6d:d7:52:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f2b26c552563006213cfe4814a9dc2a0fc16f43
Validity
Not Before: Oct 24 14:31:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2ed08bce7078aebeac73188bfc9aa88431b6654
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:05:48:b7:c1:31:09:0b:c7:db:a3:b8:3a:da:
d3:25:f4:b6:f7:6c:2c:70:8a:f5:c6:28:34:61:14:
e6:d9:66:9c:3d:6b:f6:a5:35:c8:aa:bf:de:d4:f5:
24:9e:99:52:0c:28:5b:75:2f:69:20:4e:b6:8d:3b:
88:84:3e:92:f6:70:77:62:13:3b:7d:37:5b:0c:8c:
69:b4:91:f7:54:82:3b:01:8a:9d:16:74:59:3b:ba:
91:a5:37:cc:2e:28:3a:28:91:3f:c5:4d:02:1b:ce:
0e:8f:3e:13:54:10:8a:ef:f8:86:ee:8d:53:81:1b:
ec:74:60:c2:d2:55:b7:1d:bd:7a:52:53:36:5a:31:
32:5c:9d:67:5b:54:0c:b9:d1:8b:e9:49:65:07:cc:
6f:fa:53:44:7d:f4:d3:42:e8:b2:f1:3d:cf:d4:fd:
93:99:a7:c5:c4:1e:a6:63:1e:f6:7a:75:4c:d8:5b:
b3:0e:aa:12:0c:9e:29:2d:63:3c:86:e8:09:7d:50:
c9:af:06:6f:df:0b:2d:20:45:d7:d5:2f:34:6d:42:
92:00:2e:d3:82:f4:d3:f7:c4:40:21:b0:c7:6a:06:
03:ed:c6:84:61:22:a7:3d:a7:d0:1a:bd:8b:76:d2:
7f:03:8e:ac:fc:c1:aa:1f:64:cd:4b:f3:ab:6e:e5:
73:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:ED:08:BC:E7:07:8A:EB:EA:C7:31:88:BF:C9:AA:88:43:1B:66:54
X509v3 Authority Key Identifier:
keyid:2F:2B:26:C5:52:56:30:06:21:3C:FE:48:14:A9:DC:2A:0F:C1:6F:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LysmxVJWMAYhPP5IFKncKg_Bb0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/4cc115-af65-4913-9d69-1c35b839379b/1/ou0IvOcHiuvqxzGIv8mqiEMbZlQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/4cc115-af65-4913-9d69-1c35b839379b/1/LysmxVJWMAYhPP5IFKncKg_Bb0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.131.204.0/24
Signature Algorithm: sha256WithRSAEncryption
18:4e:74:f2:92:e0:95:c4:72:c3:25:8e:b5:f6:bf:46:04:2b:
13:1b:f6:4c:7f:2f:80:80:a4:98:85:97:c5:f8:9b:29:16:9a:
8f:7c:c4:e7:d9:80:a4:8b:72:a2:0e:18:30:86:60:da:9a:05:
fd:b0:43:f5:f1:95:ff:c8:76:cd:7a:98:64:aa:31:31:09:da:
d6:46:90:c3:d3:dc:cb:ce:ec:19:e6:ad:c1:36:c5:82:6e:ab:
f0:7b:fc:76:9b:81:2a:24:08:f9:7e:c1:a6:64:1e:bc:52:3c:
99:c6:78:87:3e:39:15:64:a0:59:9b:98:36:bb:a4:53:77:69:
65:89:7b:30:50:86:bc:2a:73:36:5a:df:fe:d2:3a:eb:36:d7:
4f:b3:8a:df:cf:b0:2d:b3:53:e9:75:30:8e:49:1b:3b:c6:18:
27:37:3b:c7:d9:28:43:65:10:a5:96:f1:44:45:e5:09:8d:30:
ec:fc:a4:1d:84:56:62:af:2d:ad:b8:b1:dd:56:0f:bb:72:97:
1a:a1:97:0c:bd:ff:b7:ae:73:d8:1e:b6:c1:fe:ff:46:14:a8:
db:2a:cc:b4:c1:8b:ce:43:af:1a:58:9d:ee:aa:e4:ab:0f:55:
d3:1e:0e:42:33:d3:8a:6a:7a:bc:b0:47:c7:dd:20:53:ff:66:
5b:24:f6:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:58:28 2025 by rpki-client