Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/96ab95-c2fe-4b93-9a2e-5689ee06e14c/1/Wk1jtslfbvoAhQ3vqY9QzlUHQZo.roa
File: Wk1jtslfbvoAhQ3vqY9QzlUHQZo.roa (raw, json)
Hash identifier: OFMD6HPFEhirT2Db2/VSER399GNA5D25WiPlnQ6/zOA=
Subject key identifier: 5A:4D:63:B6:C9:5F:6E:FA:00:85:0D:EF:A9:8F:50:CE:55:07:41:9A
Certificate issuer: /CN=258623ecc8dcb913d10228a9460a86e660cb8fb2
Certificate serial: 0186923CE91B3E568C3323BE07A29648B409
Authority key identifier: 25:86:23:EC:C8:DC:B9:13:D1:02:28:A9:46:0A:86:E6:60:CB:8F:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JYYj7MjcuRPRAiipRgqG5mDLj7I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/96ab95-c2fe-4b93-9a2e-5689ee06e14c/1/Wk1jtslfbvoAhQ3vqY9QzlUHQZo.roa
Signing time: Mon 27 Feb 2023 09:38:30 +0000
ROA not before: Mon 27 Feb 2023 09:38:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24651
IP address blocks: 185.57.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:92:3c:e9:1b:3e:56:8c:33:23:be:07:a2:96:48:b4:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258623ecc8dcb913d10228a9460a86e660cb8fb2
Validity
Not Before: Feb 27 09:38:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a4d63b6c95f6efa00850defa98f50ce5507419a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:9f:1b:e0:a2:e0:13:a5:fe:a5:38:68:19:88:
2d:f9:c0:96:d2:04:af:78:4e:4b:d3:d8:73:f4:ad:
d4:93:da:b4:69:ae:02:84:c9:d0:cc:40:2e:c7:75:
94:49:7d:7a:e5:99:1d:4d:6e:45:dd:fa:9c:61:4c:
a0:0c:6d:b2:0b:74:fe:35:ab:6f:af:5d:f5:95:0e:
ca:11:a8:6e:90:70:bb:c6:d9:4b:2e:00:e9:d3:11:
ad:1d:ee:f7:bf:d5:c0:22:c9:3d:d8:77:b8:31:36:
b9:ec:a3:c4:d1:71:d4:7f:75:7f:9c:52:dc:91:a0:
f8:3f:89:cf:8a:b3:b3:29:46:b9:9e:7b:9c:0f:cf:
ba:fc:29:48:b1:89:06:35:cf:cc:8a:45:a2:cd:c7:
37:c1:7a:69:55:3e:ae:f5:62:7d:39:95:0a:24:a3:
e1:60:f4:fc:8b:17:46:55:79:5b:9d:e2:74:bb:f2:
c4:a7:d9:32:22:8b:fe:80:ee:e1:5a:a1:26:11:ef:
1e:72:2f:1e:a7:44:1c:86:82:f3:64:fe:d2:69:6b:
48:3d:d5:ba:be:57:4b:df:e3:55:6d:f1:8c:67:e1:
eb:ce:a8:b1:57:53:09:f6:8f:d7:82:20:05:aa:58:
fd:bd:77:09:f8:91:92:be:da:7b:a6:c8:88:12:ad:
bf:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:4D:63:B6:C9:5F:6E:FA:00:85:0D:EF:A9:8F:50:CE:55:07:41:9A
X509v3 Authority Key Identifier:
keyid:25:86:23:EC:C8:DC:B9:13:D1:02:28:A9:46:0A:86:E6:60:CB:8F:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JYYj7MjcuRPRAiipRgqG5mDLj7I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/96ab95-c2fe-4b93-9a2e-5689ee06e14c/1/Wk1jtslfbvoAhQ3vqY9QzlUHQZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/96ab95-c2fe-4b93-9a2e-5689ee06e14c/1/JYYj7MjcuRPRAiipRgqG5mDLj7I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.57.77.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:5e:a0:37:9c:f3:f9:33:09:09:d3:7d:4c:ba:bd:9b:81:18:
4c:38:c4:71:2e:88:7a:79:0d:fd:c0:96:b5:8e:1c:fe:a5:a1:
6a:5f:54:2b:e5:f0:83:3b:73:87:e6:69:78:24:75:c3:1a:7a:
56:1a:25:95:5b:34:9a:f4:b5:d4:7a:06:5c:99:07:87:52:09:
d1:40:6a:58:e4:e2:58:e8:43:5f:92:47:41:88:b0:f8:81:0d:
97:d7:80:fc:04:62:35:b2:0d:e4:31:22:57:03:fa:90:a4:e4:
f1:ee:5f:8b:2a:d2:f4:44:05:ee:3e:ee:e3:69:d8:7a:0f:91:
a1:a5:e1:e6:4e:08:64:91:31:55:17:9b:98:73:82:c9:f1:4d:
16:d2:9c:0b:84:ed:42:cb:91:76:79:13:5b:dd:44:18:bf:1e:
d7:56:fb:64:24:8d:b7:85:3c:b2:a1:36:8e:4e:c5:c5:b1:89:
f9:eb:01:ad:f3:03:8b:3c:d9:cf:f1:24:08:11:4c:07:36:88:
b3:f1:d6:78:9e:e8:56:2c:37:8f:84:74:c8:1c:1a:5c:4d:5e:
ac:8f:dd:f8:b1:01:0f:73:14:d4:03:63:bb:e9:ad:b5:a3:93:
81:10:27:30:f6:d4:92:84:a9:b9:2e:2b:fe:ed:e7:7a:66:1f:
90:59:bf:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 20:11:21 2025 by rpki-client