Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/oGSI6zJ4sz74Mm_zE1WghbNtDe4.roa
File: oGSI6zJ4sz74Mm_zE1WghbNtDe4.roa (raw, json)
Hash identifier: KGaw8JhGnLcpXE2ApCKpLKL5T0dtv6/7bUzSSOIVwZU=
Subject key identifier: A0:64:88:EB:32:78:B3:3E:F8:32:6F:F3:13:55:A0:85:B3:6D:0D:EE
Certificate issuer: /CN=5806da5a59251275ceb18694e17415352aedd6aa
Certificate serial: 0185A5673D038A626749C219FD7C5DE7083B
Authority key identifier: 58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/oGSI6zJ4sz74Mm_zE1WghbNtDe4.roa
Signing time: Thu 12 Jan 2023 09:54:44 +0000
ROA not before: Thu 12 Jan 2023 09:54:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397270
IP address blocks: 185.255.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a5:67:3d:03:8a:62:67:49:c2:19:fd:7c:5d:e7:08:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5806da5a59251275ceb18694e17415352aedd6aa
Validity
Not Before: Jan 12 09:54:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a06488eb3278b33ef8326ff31355a085b36d0dee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ff:61:7b:97:18:78:11:00:cd:27:42:83:79:
48:a6:51:8a:9e:71:07:1b:e1:88:a5:c5:0e:06:b9:
4d:3d:19:55:87:55:e4:41:f5:fe:0b:7c:f5:01:3a:
59:54:21:91:fd:55:a5:31:e7:48:da:4d:ea:f4:9f:
f4:8d:07:37:88:ca:9a:ab:a9:3a:f9:e5:10:91:e6:
9b:e2:ee:80:5d:79:57:68:a9:c6:2a:c5:b8:f2:a0:
d0:c2:13:90:d8:64:d3:21:69:43:00:75:d9:35:11:
6f:2a:59:50:8b:a4:95:38:7d:fd:4b:71:cb:a5:1d:
f8:40:e2:f0:28:d2:29:f4:ac:e5:7f:27:f0:a6:a4:
8a:b7:2d:b7:b7:bb:51:d6:99:9a:06:d5:13:2e:c6:
b6:08:40:e2:f4:75:42:10:9f:06:08:23:d5:b0:ab:
32:9a:d0:0c:72:75:b7:ac:a0:73:bf:6c:86:0e:a4:
9d:45:88:30:8f:b5:d8:52:93:c3:cf:c1:d8:ef:f8:
92:b1:18:85:c7:86:ce:e8:26:a1:44:d0:2f:a4:eb:
28:75:6b:57:49:7b:5f:47:0a:72:db:02:a2:69:47:
7e:b6:12:d5:0f:bb:89:3c:62:7c:15:2d:00:2e:7a:
5e:b0:b3:89:e1:54:8c:11:77:4e:f4:a2:2c:d2:7d:
2c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:64:88:EB:32:78:B3:3E:F8:32:6F:F3:13:55:A0:85:B3:6D:0D:EE
X509v3 Authority Key Identifier:
keyid:58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/oGSI6zJ4sz74Mm_zE1WghbNtDe4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/WAbaWlklEnXOsYaU4XQVNSrt1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.197.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:96:b4:c3:06:76:21:a5:37:07:fc:88:ad:fb:f0:56:db:0c:
df:5d:da:00:c5:c1:76:cd:7d:3a:79:8d:07:91:b7:d2:64:a4:
96:e6:bd:9f:c7:f8:22:4d:8a:6a:e0:7b:96:6e:3c:dd:04:84:
29:dc:20:1c:fa:3c:51:e9:91:bf:5c:86:98:5f:4a:da:23:96:
1a:36:3c:63:2f:c4:ca:66:f9:90:0e:29:30:3b:99:c6:bf:ac:
b1:fc:0f:da:d2:7b:b5:97:5e:65:0e:16:84:68:41:a0:17:4f:
97:16:c8:52:9c:54:26:12:89:ed:01:9d:a1:a6:cc:1d:22:12:
b0:62:81:7e:61:db:c9:ed:4d:cb:1c:92:61:09:fc:0d:02:0b:
30:14:fb:3c:b3:69:83:a9:fa:ad:91:e9:90:e7:bd:da:15:af:
9d:c4:a3:bf:18:bd:aa:78:32:27:6e:ba:d5:09:c4:aa:e3:62:
1c:ad:75:fe:5f:f4:07:9f:72:92:a0:b6:9b:2a:9d:d1:bd:87:
75:03:de:9a:57:2a:6b:b8:fd:4b:0d:1d:c0:d2:fa:ad:0b:ad:
40:63:4f:54:79:1d:ca:92:e3:9c:c7:17:b6:56:6f:c8:9a:80:
cd:b7:b7:03:54:40:8b:56:3f:9d:55:3c:ec:15:4e:25:74:d0:
4d:2c:23:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 05:05:30 2025 by rpki-client