Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f462dc-9e59-4e8d-9c6d-f46887df9863/1/nw2vWEMr_Kk3iITlHv0hnkMA4wA.roa
File: nw2vWEMr_Kk3iITlHv0hnkMA4wA.roa (raw, json)
Hash identifier: 7M6uk4PBPC8H6Won2RPz0I9TJmPdtypWftXFiniuJt0=
Subject key identifier: 9F:0D:AF:58:43:2B:FC:A9:37:88:84:E5:1E:FD:21:9E:43:00:E3:00
Certificate issuer: /CN=525b705a91dbc30ed10eb7222b7797b834e01863
Certificate serial: 01856E38B20AE55A81A083F65B163D75B24E
Authority key identifier: 52:5B:70:5A:91:DB:C3:0E:D1:0E:B7:22:2B:77:97:B8:34:E0:18:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UltwWpHbww7RDrciK3eXuDTgGGM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f462dc-9e59-4e8d-9c6d-f46887df9863/1/nw2vWEMr_Kk3iITlHv0hnkMA4wA.roa
Signing time: Sun 01 Jan 2023 16:44:47 +0000
ROA not before: Sun 01 Jan 2023 16:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208521
IP address blocks: 185.236.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:38:b2:0a:e5:5a:81:a0:83:f6:5b:16:3d:75:b2:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=525b705a91dbc30ed10eb7222b7797b834e01863
Validity
Not Before: Jan 1 16:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f0daf58432bfca9378884e51efd219e4300e300
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:e6:2c:1e:90:47:78:90:9d:a9:dd:ca:4e:be:
47:ab:e8:fd:be:1f:58:d6:0c:fe:84:55:94:74:0b:
80:3c:f1:6a:b7:7b:26:a6:22:b3:02:94:19:b1:25:
91:d8:7b:8a:4e:87:06:b8:09:12:2c:bc:14:d4:8e:
18:dc:db:90:27:68:64:74:25:39:2b:2a:1b:1d:b6:
3a:b8:a5:6b:3a:01:30:1c:51:21:cb:2c:8a:6e:b5:
93:d1:67:56:ad:80:01:e6:d8:1f:31:41:95:2e:cc:
2e:3d:e0:10:79:0b:94:fb:9d:70:8f:70:27:02:d8:
43:c1:76:ce:f1:55:04:01:d2:42:48:94:18:bd:d5:
48:12:90:49:c9:0f:0b:29:26:3b:34:5f:ef:7a:c4:
86:31:f4:85:15:48:e3:b6:0d:75:8e:2a:63:10:99:
b3:f9:f6:f3:d1:01:3e:b1:b5:d8:10:ec:59:5c:8b:
ae:d9:17:12:78:6c:1f:de:ea:fd:36:d1:8e:49:af:
fe:49:44:6f:e5:6e:c8:b0:77:55:1c:6e:da:57:da:
74:a2:1c:4f:a7:7a:1f:72:f0:a2:de:d6:18:4b:ca:
bb:76:a1:bc:78:8d:4f:dd:fe:1c:93:c8:a0:5f:01:
b1:7d:0d:79:c1:bb:97:63:4e:d0:75:53:fe:32:fb:
a8:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:0D:AF:58:43:2B:FC:A9:37:88:84:E5:1E:FD:21:9E:43:00:E3:00
X509v3 Authority Key Identifier:
keyid:52:5B:70:5A:91:DB:C3:0E:D1:0E:B7:22:2B:77:97:B8:34:E0:18:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UltwWpHbww7RDrciK3eXuDTgGGM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f462dc-9e59-4e8d-9c6d-f46887df9863/1/nw2vWEMr_Kk3iITlHv0hnkMA4wA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f462dc-9e59-4e8d-9c6d-f46887df9863/1/UltwWpHbww7RDrciK3eXuDTgGGM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.241.0/24
Signature Algorithm: sha256WithRSAEncryption
08:7b:86:a8:a2:b8:34:69:7e:95:77:de:71:db:31:fb:85:94:
10:d6:42:1c:bf:ac:f1:af:5b:5e:8f:7d:a3:35:51:3b:7c:fd:
e3:2d:eb:c2:3e:85:7b:52:d8:a6:fd:d2:b0:90:57:68:6b:f6:
cc:fd:40:3c:fd:17:f1:75:de:d2:00:55:62:13:dc:cf:85:73:
22:20:ea:90:8d:d7:1e:b3:6b:6d:36:5e:1a:8b:3f:ae:0c:45:
96:fe:6e:fc:7e:6c:0f:6f:b1:a6:d9:5e:93:0f:06:b7:93:d2:
a8:23:3d:f5:b9:63:36:5d:26:1a:3f:50:d1:e4:75:01:c1:72:
16:b7:31:ea:34:a8:e8:dc:38:d0:c9:c3:35:84:1a:13:b9:d5:
11:4b:4d:63:ac:fa:a7:d1:29:96:a9:c1:1f:79:81:9d:c0:94:
48:6c:2b:4f:4b:ba:0b:7d:58:5d:39:c0:85:a4:4e:86:39:33:
9a:20:a8:78:cb:65:dd:3b:41:3e:7e:a0:d6:46:42:02:c0:e0:
71:1c:f4:a0:ef:5e:db:3d:19:0d:a7:af:7c:1b:ea:7f:f6:26:
f7:d2:ee:39:c1:91:1c:9e:f8:77:83:68:92:87:7b:e9:9a:5a:
dd:57:23:ab:0a:f5:2d:26:a5:8b:c8:f6:09:41:f4:3d:1b:23:
5f:d6:69:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:37:20 2025 by rpki-client