Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/0AYYSWigA40pCr3WXQbPZE8_5nE.roa
File: 0AYYSWigA40pCr3WXQbPZE8_5nE.roa (raw, json)
Hash identifier: lTimom5FNEJmsHf6ZZouXjpFR8KHg8g5GGf4XXf2l9g=
Subject key identifier: D0:06:18:49:68:A0:03:8D:29:0A:BD:D6:5D:06:CF:64:4F:3F:E6:71
Certificate issuer: /CN=00bf230044649c06d75e302c5175004dbfc67261
Certificate serial: 018570B9910FBAFA9F409FF18F87D5294F1D
Authority key identifier: 00:BF:23:00:44:64:9C:06:D7:5E:30:2C:51:75:00:4D:BF:C6:72:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AL8jAERknAbXXjAsUXUATb_GcmE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/0AYYSWigA40pCr3WXQbPZE8_5nE.roa
Signing time: Mon 02 Jan 2023 04:24:47 +0000
ROA not before: Mon 02 Jan 2023 04:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25206
IP address blocks: 185.230.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b9:91:0f:ba:fa:9f:40:9f:f1:8f:87:d5:29:4f:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00bf230044649c06d75e302c5175004dbfc67261
Validity
Not Before: Jan 2 04:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d006184968a0038d290abdd65d06cf644f3fe671
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:73:6f:4b:cc:1a:d1:62:51:c3:2e:0f:62:ac:
bf:08:90:db:6e:c0:1f:e3:fb:90:7f:40:16:e3:80:
8b:f1:c7:c9:46:1c:6c:30:78:1c:58:56:12:a1:03:
d0:b9:60:ae:ba:a6:67:29:ca:cb:f0:48:af:58:3e:
6b:c3:c6:39:4d:d5:1d:a2:92:d1:73:7b:ce:ec:20:
73:3e:81:95:eb:98:15:66:c5:47:3b:04:47:52:36:
2e:67:39:a6:55:9a:cf:e9:f4:63:09:bc:a4:6b:05:
f5:8a:91:08:d5:c1:95:ee:ff:d5:e4:93:b6:fa:15:
c7:16:32:19:e3:a9:75:48:ce:97:31:5f:2f:c1:de:
93:16:74:1f:11:97:26:ea:cd:25:53:3c:09:85:49:
50:a9:5a:ee:98:56:e2:0b:cc:57:5f:d4:43:0e:fa:
68:9c:a5:f6:89:a3:70:e2:d2:71:27:1c:b4:2c:6f:
3d:dd:66:33:15:df:61:0e:99:15:7f:64:e7:57:a0:
94:cd:4a:09:db:cf:ca:68:bf:fa:d8:5d:51:a9:e4:
f4:22:7d:59:e5:2a:82:3f:54:fa:5c:4f:3a:7f:78:
16:e0:b3:c3:41:e3:21:2a:ac:7b:df:1d:6c:0a:00:
e2:a0:da:89:09:b1:1a:a5:11:19:a5:4d:fd:c6:70:
93:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:06:18:49:68:A0:03:8D:29:0A:BD:D6:5D:06:CF:64:4F:3F:E6:71
X509v3 Authority Key Identifier:
keyid:00:BF:23:00:44:64:9C:06:D7:5E:30:2C:51:75:00:4D:BF:C6:72:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AL8jAERknAbXXjAsUXUATb_GcmE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/0AYYSWigA40pCr3WXQbPZE8_5nE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/AL8jAERknAbXXjAsUXUATb_GcmE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.244.0/24
Signature Algorithm: sha256WithRSAEncryption
ee:dc:41:c6:92:d1:d8:8a:97:47:a5:41:e7:46:52:37:fe:23:
87:0b:e6:59:61:80:2f:04:dc:1f:5d:31:e6:fd:b1:fb:50:7f:
06:17:6f:4a:e0:1d:bb:6b:0a:52:aa:42:7f:d0:4c:e5:82:9d:
ec:77:4a:7b:2f:54:ff:89:47:42:b5:b1:b7:ba:04:73:e0:b5:
77:3c:c0:bd:b1:0c:3e:a1:64:57:2e:57:11:3a:ec:f7:d1:ff:
3b:c2:d5:d6:a3:cd:7d:db:6a:4e:2a:ef:25:2b:16:33:5c:5e:
09:86:d7:69:95:04:a1:64:e6:a6:91:fd:4e:ce:57:63:0f:e2:
5b:25:dc:ad:a5:cb:34:3e:e9:55:b5:a5:09:69:cc:6a:85:74:
db:49:21:5e:86:29:08:86:dd:98:9c:fd:cf:b1:32:d5:c3:72:
e0:a5:1d:a1:20:d8:5f:9a:2e:d9:7d:64:6b:08:ba:0b:13:47:
5f:ac:fd:b7:84:a5:b5:f3:10:9a:e7:97:df:d2:dd:7a:25:9f:
e5:66:34:31:85:ff:4e:b1:8d:ab:a3:28:d7:83:27:17:89:dc:
6a:cc:2e:e6:ad:94:f6:f5:ab:a4:7e:d3:20:c2:92:4c:ac:f6:
94:1e:1e:90:4b:34:49:01:c3:32:9e:1e:21:e9:c7:43:0d:5c:
21:9b:55:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:11:16 2025 by rpki-client