Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/6db46d-bc2d-45d7-a279-820325f53ccb/1/r_GA_bneFt4k19jBxo2Oj2ANgWs.roa
File: r_GA_bneFt4k19jBxo2Oj2ANgWs.roa (raw, json)
Hash identifier: OYtUBh3AdWx4tJyLoCjxZFjwEDx4iSbvvABZUZPJJNw=
Subject key identifier: AF:F1:80:FD:B9:DE:16:DE:24:D7:D8:C1:C6:8D:8E:8F:60:0D:81:6B
Certificate issuer: /CN=656cc25012e3a4c8b1626dd757c7b0510e457341
Certificate serial: 06C0F396
Authority key identifier: 65:6C:C2:50:12:E3:A4:C8:B1:62:6D:D7:57:C7:B0:51:0E:45:73:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZWzCUBLjpMixYm3XV8ewUQ5Fc0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/6db46d-bc2d-45d7-a279-820325f53ccb/1/r_GA_bneFt4k19jBxo2Oj2ANgWs.roa
Signing time: Sat 01 Jan 2022 12:03:48 +0000
ROA not before: Sat 01 Jan 2022 12:03:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.170.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113308566 (0x6c0f396)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=656cc25012e3a4c8b1626dd757c7b0510e457341
Validity
Not Before: Jan 1 12:03:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aff180fdb9de16de24d7d8c1c68d8e8f600d816b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e8:9e:0d:76:d1:2b:32:0e:0f:15:48:71:6a:
14:e8:45:f2:b6:7a:cc:c3:f5:5d:f7:35:65:e2:f3:
06:73:79:02:01:d8:bd:fd:d8:0b:dd:15:5c:cd:70:
4e:77:a8:03:bd:f8:74:4b:c2:22:90:a0:52:1b:65:
0f:92:47:86:79:d0:46:12:66:2c:be:94:e2:32:91:
19:17:3d:00:08:32:69:18:c9:26:cb:18:d2:63:41:
4b:e8:22:93:9d:95:f8:bd:e8:87:b0:d2:59:87:7b:
b6:dc:67:73:93:80:d1:f7:dd:ec:48:db:48:16:eb:
cf:8a:b3:d6:d6:fd:bb:b2:e7:7f:2f:ec:65:95:f7:
89:98:34:81:5c:6e:1b:20:da:ac:80:4d:6a:55:30:
55:91:90:89:83:47:30:83:84:3b:c2:21:cc:83:0c:
c1:e0:eb:b6:aa:8d:3d:a3:12:59:4f:c0:74:34:f4:
39:09:d9:c8:b4:f4:78:39:4f:ca:21:da:94:4a:28:
cb:49:00:f3:c9:b3:e1:73:b8:54:19:ac:cd:80:b1:
c2:4b:7a:8b:61:9b:67:dd:10:e7:2e:e8:7c:d7:9d:
37:fb:bb:33:69:1a:ec:0d:da:7f:40:ce:0c:be:42:
ec:c6:e0:0e:ec:07:81:df:a8:fb:93:f3:c7:c3:8d:
70:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:F1:80:FD:B9:DE:16:DE:24:D7:D8:C1:C6:8D:8E:8F:60:0D:81:6B
X509v3 Authority Key Identifier:
keyid:65:6C:C2:50:12:E3:A4:C8:B1:62:6D:D7:57:C7:B0:51:0E:45:73:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZWzCUBLjpMixYm3XV8ewUQ5Fc0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6db46d-bc2d-45d7-a279-820325f53ccb/1/r_GA_bneFt4k19jBxo2Oj2ANgWs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6db46d-bc2d-45d7-a279-820325f53ccb/1/ZWzCUBLjpMixYm3XV8ewUQ5Fc0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.170.188.0/24
Signature Algorithm: sha256WithRSAEncryption
22:f7:ee:60:99:ea:b9:70:29:fc:6c:f7:05:7c:18:25:3b:ce:
24:ef:22:c4:26:bc:8d:67:43:1e:a6:f3:90:39:8d:b7:2e:72:
72:2c:b2:e6:8e:6e:5a:1c:13:52:d5:8c:ac:1f:5d:f1:c8:f6:
b5:53:02:ce:43:fe:91:07:81:22:de:fd:c0:6e:26:d9:1e:f7:
fb:d3:0c:4c:0e:8f:6a:ec:84:bb:16:1c:53:4d:7c:9d:f0:8a:
3b:5d:12:07:95:37:90:27:16:c1:24:91:82:8f:37:5c:83:51:
72:ef:96:df:29:44:f8:95:46:73:85:b6:3a:80:99:4c:ca:60:
30:d1:6a:ff:19:ae:61:02:74:1a:64:12:4f:23:aa:19:d2:05:
44:75:39:90:04:68:df:6b:fb:1e:b9:b5:9d:77:7f:1a:03:17:
e8:2d:9f:a1:53:af:e2:59:57:49:dd:6d:2d:e1:af:94:51:6b:
33:88:dd:18:f7:06:f7:35:88:2f:48:28:18:9a:b6:df:76:22:
42:cc:18:d2:25:5e:ec:40:ab:95:49:94:83:14:82:6e:f0:c9:
ce:e6:7d:a7:26:d8:46:b0:c9:62:00:dc:fb:43:40:8f:12:c2:
79:7a:2e:91:a6:af:4a:2f:b6:1c:ef:3d:14:de:b7:50:7d:f9:
2c:66:66:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:27:11 2025 by rpki-client