Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/0P7iMddn37yWSJEaRRbr6Rh4HMY.roa
File: 0P7iMddn37yWSJEaRRbr6Rh4HMY.roa (raw, json)
Hash identifier: uoAvbRSWkYqFSHPH2VzMm1QtxUdppI+OXeOTwc4m7Yo=
Subject key identifier: D0:FE:E2:31:D7:67:DF:BC:96:48:91:1A:45:16:EB:E9:18:78:1C:C6
Certificate issuer: /CN=00bf230044649c06d75e302c5175004dbfc67261
Certificate serial: 021E73
Authority key identifier: 00:BF:23:00:44:64:9C:06:D7:5E:30:2C:51:75:00:4D:BF:C6:72:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AL8jAERknAbXXjAsUXUATb_GcmE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/0P7iMddn37yWSJEaRRbr6Rh4HMY.roa
Signing time: Thu 19 May 2022 08:23:02 +0000
ROA not before: Thu 19 May 2022 08:23:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25206
IP address blocks: 185.230.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138867 (0x21e73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00bf230044649c06d75e302c5175004dbfc67261
Validity
Not Before: May 19 08:23:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d0fee231d767dfbc9648911a4516ebe918781cc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:79:b3:b2:47:5f:aa:de:f7:38:57:32:a8:75:
0b:0a:19:eb:84:00:b0:fe:d2:81:5f:2b:d5:46:c6:
ef:8f:64:28:e3:d8:2e:46:cc:a2:a3:ac:3b:1a:6c:
ae:69:28:2a:03:64:84:fd:98:3d:44:34:f9:df:04:
b6:06:35:87:bf:8d:5f:e1:80:3b:56:63:02:32:b1:
f5:92:2b:31:17:69:fd:7d:94:43:09:95:2e:90:d8:
3a:26:45:4e:56:99:46:f4:c2:b5:05:99:53:d7:00:
f2:7a:12:80:0d:cc:b3:26:05:63:e7:73:6a:f6:ba:
f5:a8:bb:7f:26:04:02:0e:f7:ec:f4:8a:c5:35:bd:
49:0d:2a:55:ab:b7:54:09:5b:18:f7:18:2d:02:43:
38:2a:8f:a0:60:5f:2f:de:36:e1:23:ff:c5:a0:34:
69:0d:80:fc:fc:2f:23:25:f5:e1:a1:7a:42:cb:1c:
a4:3d:2b:9d:9d:8a:f4:41:03:0a:9f:0a:d9:8e:51:
fe:e6:b2:0f:f7:f1:fd:70:13:42:e1:14:31:d3:2d:
25:23:db:4e:87:1b:a5:98:56:5d:0c:a3:ac:fb:e9:
54:e8:14:b1:39:e1:4e:7e:92:62:e5:eb:bf:af:07:
c1:ae:c6:a5:03:a2:42:f8:70:21:d4:51:41:a9:1f:
47:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:FE:E2:31:D7:67:DF:BC:96:48:91:1A:45:16:EB:E9:18:78:1C:C6
X509v3 Authority Key Identifier:
keyid:00:BF:23:00:44:64:9C:06:D7:5E:30:2C:51:75:00:4D:BF:C6:72:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AL8jAERknAbXXjAsUXUATb_GcmE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/0P7iMddn37yWSJEaRRbr6Rh4HMY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/AL8jAERknAbXXjAsUXUATb_GcmE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.244.0/24
Signature Algorithm: sha256WithRSAEncryption
62:ec:e1:de:05:16:3f:90:ce:3e:00:a6:ed:53:e2:32:4f:70:
ec:13:83:1c:61:d0:2e:c1:95:be:eb:8d:44:55:71:1f:ee:f1:
a0:01:bf:ef:21:5c:8e:5f:91:47:31:34:47:75:bb:dc:b5:91:
10:52:07:ea:51:93:dc:1e:d3:fe:40:7d:ab:01:56:25:06:dc:
81:32:ce:f9:e7:7f:cc:b7:07:39:eb:ee:6e:88:7f:25:26:d9:
91:4c:cb:28:5a:20:31:e3:09:91:4f:48:ad:07:a9:74:94:5c:
e8:c2:d2:57:57:bb:8f:ac:b0:b0:1b:51:62:b6:c3:04:60:af:
53:e3:34:cf:61:72:d7:a3:28:89:55:cb:f6:d0:f6:a6:8f:5a:
0a:25:d6:f3:bb:17:5d:ae:48:7e:c9:79:72:32:bb:01:ce:37:
f9:a5:ab:5f:bd:5d:19:db:bf:56:b7:25:2a:27:f4:cc:a3:38:
d5:5d:63:0e:cc:4d:ce:ea:12:7f:96:c4:f0:94:b3:64:c2:2b:
e3:b5:a9:f9:c9:dc:ed:03:97:34:13:a7:40:9c:43:34:83:2a:
6b:6c:d6:5a:b7:a2:c9:7b:d4:7e:65:ff:03:15:0f:da:33:0a:
a2:1d:63:90:b1:d0:6e:78:a3:ff:f6:b8:0f:6c:23:5c:7f:d5:
9d:ef:67:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:25:52 2025 by rpki-client