Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/7916cd-4d2f-4f52-aeac-f1e9bc41d92f/1/FfxXDTix1Fqa7AqSxIjrs2OMq1Y.roa
File: FfxXDTix1Fqa7AqSxIjrs2OMq1Y.roa (raw, json)
Hash identifier: 6g81Hr+BvKmymmWNxKXnPAAYBntAZeS+kr/9VcuNA5Y=
Subject key identifier: 15:FC:57:0D:38:B1:D4:5A:9A:EC:0A:92:C4:88:EB:B3:63:8C:AB:56
Certificate issuer: /CN=32ed67002dc7307e8563b6e4934ccd5723a44f3e
Certificate serial: 03283799
Authority key identifier: 32:ED:67:00:2D:C7:30:7E:85:63:B6:E4:93:4C:CD:57:23:A4:4F:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mu1nAC3HMH6FY7bkk0zNVyOkTz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/7916cd-4d2f-4f52-aeac-f1e9bc41d92f/1/FfxXDTix1Fqa7AqSxIjrs2OMq1Y.roa
Signing time: Sat 01 Jan 2022 16:07:38 +0000
ROA not before: Sat 01 Jan 2022 16:07:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15924
IP address blocks: 185.180.29.0/24 maxlen: 24
185.180.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52967321 (0x3283799)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32ed67002dc7307e8563b6e4934ccd5723a44f3e
Validity
Not Before: Jan 1 16:07:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=15fc570d38b1d45a9aec0a92c488ebb3638cab56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:86:f0:f2:12:1c:60:5f:72:2f:8c:e9:44:7e:
44:31:85:16:b0:8f:7a:9d:67:3c:67:05:31:ce:d2:
e6:e8:35:fa:8b:af:b4:31:ec:3d:26:0c:9e:2e:3c:
b2:ed:88:79:24:25:bb:5e:af:82:27:3b:6b:f4:3b:
92:0a:ff:30:28:0d:23:7e:a7:8c:ac:8d:f9:10:fb:
c6:77:80:5c:89:33:b4:cf:42:46:04:b9:e4:e5:26:
51:23:d3:e4:47:16:8f:4f:6a:40:54:84:0d:29:b7:
94:27:5e:22:da:af:ec:a6:6e:47:ec:30:03:5e:18:
3f:8e:ac:ff:f0:29:a7:4d:99:d9:a9:c5:4b:2f:e0:
4a:32:03:15:28:ca:23:be:36:5c:0e:b1:2f:fb:6b:
e5:a4:41:65:15:39:8c:54:41:3b:79:be:18:a2:37:
1a:d3:ef:ab:df:77:9c:37:6d:6e:d9:f9:58:3d:0b:
1b:7a:68:d1:c3:e6:1f:a2:fb:15:ff:d2:7f:02:25:
ef:61:a6:b9:f8:e0:35:6f:aa:44:f2:b6:01:e3:dd:
2b:4b:a9:1e:43:e0:69:ff:03:3f:5a:dc:5f:e8:e4:
9e:33:58:08:97:1e:ff:61:91:5b:3a:f3:83:4b:ae:
6e:bd:99:6f:37:8a:a0:3c:5b:f4:a0:e8:0a:68:d7:
b0:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:FC:57:0D:38:B1:D4:5A:9A:EC:0A:92:C4:88:EB:B3:63:8C:AB:56
X509v3 Authority Key Identifier:
keyid:32:ED:67:00:2D:C7:30:7E:85:63:B6:E4:93:4C:CD:57:23:A4:4F:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mu1nAC3HMH6FY7bkk0zNVyOkTz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7916cd-4d2f-4f52-aeac-f1e9bc41d92f/1/FfxXDTix1Fqa7AqSxIjrs2OMq1Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7916cd-4d2f-4f52-aeac-f1e9bc41d92f/1/Mu1nAC3HMH6FY7bkk0zNVyOkTz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.180.28.0/23
Signature Algorithm: sha256WithRSAEncryption
90:30:b7:71:47:b6:f5:09:c9:99:d4:d5:46:7f:5a:69:19:53:
cd:43:17:c6:46:4f:ed:07:fc:f1:2d:c6:9d:f5:38:ff:8c:49:
52:9a:f1:7e:09:51:ea:4d:a4:5a:ab:4b:af:1e:9a:96:ec:a0:
65:a6:c3:08:6c:2b:71:fa:08:15:a8:21:38:c3:f0:23:ba:ca:
29:79:46:cb:55:23:0a:a0:97:3e:ee:f3:d9:b5:0f:0a:42:b7:
83:9c:e6:b1:3d:4a:15:bf:2b:98:df:f6:ad:32:38:6c:b2:16:
a3:bb:aa:1f:cd:22:79:97:f3:1f:e6:df:ee:85:ba:55:6b:be:
66:66:50:2c:5d:59:48:e8:34:8a:9c:d2:04:2b:52:c6:f1:18:
55:89:ef:d8:a4:28:65:6f:fb:f8:61:02:a8:18:bf:7b:08:fa:
98:d6:ff:a0:0b:4b:58:51:9a:08:a7:61:a7:dd:10:d1:fd:72:
75:7e:54:28:b5:79:5f:1b:4e:47:7d:cf:7d:14:ea:7d:67:43:
33:e0:18:35:b7:9a:a5:1a:93:c2:51:b9:89:19:27:16:0f:30:
da:57:39:4b:4e:0f:dd:c8:eb:67:ef:13:d1:e1:ed:bf:02:11:
07:39:50:ad:c5:32:27:b0:62:cc:2a:69:0e:3a:e1:27:c7:5c:
8e:0e:71:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 17:38:52 2025 by rpki-client