Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/Hks4GMrnciBWVwHDBpnEcCDJwjE.roa
File: Hks4GMrnciBWVwHDBpnEcCDJwjE.roa (raw, json)
Hash identifier: aRsiDGxYyZzTzHtT0/cnKKPS6POxqZWZLPp0bT98Zyg=
Subject key identifier: 1E:4B:38:18:CA:E7:72:20:56:57:01:C3:06:99:C4:70:20:C9:C2:31
Certificate issuer: /CN=7df132df13e4be53d8250c8c48420264eef6c14c
Certificate serial: 1754DB95
Authority key identifier: 7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/Hks4GMrnciBWVwHDBpnEcCDJwjE.roa
Signing time: Sat 01 Jan 2022 16:03:56 +0000
ROA not before: Sat 01 Jan 2022 16:03:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58174
IP address blocks: 85.204.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 391437205 (0x1754db95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df132df13e4be53d8250c8c48420264eef6c14c
Validity
Not Before: Jan 1 16:03:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e4b3818cae77220565701c30699c47020c9c231
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5b:d2:e6:09:2c:d3:df:74:f4:2d:5c:77:e0:
ad:e8:23:e9:8f:63:cd:da:3c:ae:fa:7a:9e:88:36:
ec:39:e6:74:2a:10:de:69:b9:25:6e:a8:d6:3e:49:
b0:28:ac:dd:22:7d:ac:e2:e5:c5:b4:f9:f3:3a:60:
0b:04:9e:ea:45:5f:a4:54:65:35:8a:9d:11:c1:bb:
8a:8b:5a:05:1d:04:e8:9b:44:da:d1:80:4a:96:fc:
d7:6e:28:f1:98:65:c1:9f:15:d5:55:c9:f9:5d:23:
98:03:d2:a9:d5:0a:ff:ad:6c:2c:8b:a5:02:39:1d:
02:ac:2d:41:a7:0e:41:08:ea:ce:00:06:49:4b:82:
c5:ba:76:f5:55:47:df:51:57:44:88:a3:5b:75:aa:
17:54:56:e8:0b:06:64:5d:95:75:ad:1f:e0:33:a4:
64:b8:c6:8e:86:ad:21:ce:7c:d1:a7:f7:80:21:ff:
37:71:45:4c:a4:72:10:00:4d:b5:f5:c0:cb:71:8c:
aa:b4:ce:98:cb:75:2e:36:ce:86:57:df:ef:3b:4c:
1f:bb:3c:72:5c:b4:cf:7b:1b:c7:c4:54:20:a1:3c:
b9:5b:70:86:14:8a:7d:0a:42:c2:cf:e6:09:3a:db:
be:11:8d:04:46:39:d0:1a:63:fd:8b:3b:3b:7c:93:
2d:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:4B:38:18:CA:E7:72:20:56:57:01:C3:06:99:C4:70:20:C9:C2:31
X509v3 Authority Key Identifier:
keyid:7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/Hks4GMrnciBWVwHDBpnEcCDJwjE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.68.0/24
Signature Algorithm: sha256WithRSAEncryption
71:cf:f3:41:93:7b:32:a8:34:cf:03:cc:df:b5:96:97:19:fd:
40:31:e7:10:9d:c3:45:01:df:6a:86:65:df:b5:a3:5b:c5:eb:
7f:ad:4a:57:ab:94:db:e7:57:94:25:e9:54:5f:e3:2e:fa:b9:
26:8b:3f:11:ca:e7:82:d5:09:65:43:4b:e9:99:15:df:c6:c9:
83:5b:dd:80:95:b1:9e:b5:dd:6a:d0:15:e0:dc:2b:24:53:16:
e6:2b:f1:c0:b6:4a:e3:a9:3e:d9:84:b9:f8:1e:73:5f:eb:1a:
a3:cb:63:8f:e9:b9:4c:0c:89:47:3f:33:53:77:d7:70:50:91:
78:33:e3:f5:2f:6c:11:52:82:75:f8:92:22:28:0c:46:2d:cc:
af:dc:4d:44:d0:0c:a4:c7:11:f3:e1:c1:a3:5f:9d:cf:4d:04:
1e:89:c4:14:89:b5:54:aa:1c:fd:4a:18:f8:48:0f:3d:0d:cd:
fe:86:29:a5:a7:f1:fa:f0:51:e0:7a:c0:e1:85:ee:11:aa:02:
47:e5:c8:b0:77:d3:bc:1c:ad:8e:de:b2:48:02:b3:05:4d:17:
69:2b:d5:1b:0f:0d:4b:a3:66:58:41:30:9e:96:d8:6b:dd:75:
2c:2d:8f:12:84:42:cd:7c:df:54:df:2c:b8:30:e5:2b:15:db:
53:97:25:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 14:58:50 2025 by rpki-client