Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/778ce0-2cc2-490b-a6e2-6020e8a56556/1/OyIbcUbe4PYbv3cxyLHG8DLcrx4.roa
File: OyIbcUbe4PYbv3cxyLHG8DLcrx4.roa (raw, json)
Hash identifier: cj4lvgGSFgAvnb+cSkJQmGCHjBHh+Oj/wC+/LfMlfCk=
Subject key identifier: 3B:22:1B:71:46:DE:E0:F6:1B:BF:77:31:C8:B1:C6:F0:32:DC:AF:1E
Certificate issuer: /CN=8dac679b480a78ead797f2e0b7779e58f2271f24
Certificate serial: 0183FEBCD57F09A0089E98C46BF902824B3D
Authority key identifier: 8D:AC:67:9B:48:0A:78:EA:D7:97:F2:E0:B7:77:9E:58:F2:27:1F:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jaxnm0gKeOrXl_Lgt3eeWPInHyQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/778ce0-2cc2-490b-a6e2-6020e8a56556/1/OyIbcUbe4PYbv3cxyLHG8DLcrx4.roa
Signing time: Sat 22 Oct 2022 08:08:51 +0000
ROA not before: Sat 22 Oct 2022 08:08:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31549
IP address blocks: 185.110.245.0/24 maxlen: 24
185.110.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:fe:bc:d5:7f:09:a0:08:9e:98:c4:6b:f9:02:82:4b:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8dac679b480a78ead797f2e0b7779e58f2271f24
Validity
Not Before: Oct 22 08:08:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3b221b7146dee0f61bbf7731c8b1c6f032dcaf1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:00:57:9a:d2:37:79:6a:c0:0c:2e:11:6c:d6:
ac:35:e7:b7:90:19:ec:7b:aa:d9:66:0d:e8:31:23:
61:41:e2:2f:05:66:13:da:af:fd:5d:30:09:5c:cd:
f8:8b:b4:4b:c9:52:89:47:4e:c7:f0:4a:9b:f8:9f:
74:4e:76:47:da:ae:2b:a3:d8:1e:84:c7:94:de:c6:
54:4f:3a:0f:96:b4:ee:7d:b5:d8:7b:e1:83:dc:9c:
ff:ef:4c:48:8d:93:8b:90:63:9c:84:04:54:23:11:
ff:c2:78:95:d7:d1:02:72:67:dd:2c:c7:e2:0c:69:
63:48:93:2b:6f:af:b1:3c:af:24:f4:d0:a8:cd:da:
22:31:08:e2:36:9e:b7:12:f9:bf:9d:f7:a8:f9:48:
b6:c7:a9:4a:8f:f4:19:32:17:8e:46:28:da:da:e3:
13:b6:65:fd:17:d6:27:b7:af:5b:26:91:f5:15:38:
fc:41:1e:18:74:78:fb:d4:f4:87:15:60:55:10:0a:
2c:d3:a7:b5:ba:31:55:32:94:a9:32:84:54:ac:17:
7b:1c:75:3d:67:bf:e0:2a:ec:e3:71:9a:c8:86:73:
63:48:dd:8e:82:73:e4:a2:6a:38:ec:2a:25:c1:3f:
71:b0:22:6f:91:45:77:15:4e:86:96:c8:52:f6:0b:
a8:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:22:1B:71:46:DE:E0:F6:1B:BF:77:31:C8:B1:C6:F0:32:DC:AF:1E
X509v3 Authority Key Identifier:
keyid:8D:AC:67:9B:48:0A:78:EA:D7:97:F2:E0:B7:77:9E:58:F2:27:1F:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jaxnm0gKeOrXl_Lgt3eeWPInHyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/778ce0-2cc2-490b-a6e2-6020e8a56556/1/OyIbcUbe4PYbv3cxyLHG8DLcrx4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/778ce0-2cc2-490b-a6e2-6020e8a56556/1/jaxnm0gKeOrXl_Lgt3eeWPInHyQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.110.244.0/23
Signature Algorithm: sha256WithRSAEncryption
2e:ba:e4:cb:d9:33:f0:a4:ba:40:a0:6b:d8:50:4a:0c:5d:2f:
a3:8c:68:ff:99:e9:64:09:2b:27:fe:a6:6f:58:1d:80:64:0c:
58:f3:4a:82:cf:43:00:4f:89:40:ed:83:bf:1c:1a:2c:14:e3:
0a:99:5c:01:f3:fd:05:d4:ee:9b:f3:5b:61:bf:b5:a6:b8:dc:
96:dc:f1:52:73:b2:46:dc:5a:e3:e1:cd:02:5b:7c:53:35:be:
3b:8a:11:f9:14:42:dd:7f:9a:a8:17:19:e7:57:1b:c0:ca:17:
02:55:cc:39:70:84:8c:30:1b:77:23:d8:3a:69:54:ba:9a:00:
cd:e9:4a:54:9c:f0:42:79:cd:a7:7b:3e:94:34:be:c7:f4:06:
8c:a2:41:c4:1b:f1:3a:bb:d3:ff:26:4e:e0:36:12:83:09:34:
2f:7d:cd:82:d7:da:6c:3d:f4:22:d9:ac:90:92:5b:b1:ee:d4:
33:f3:b5:d2:93:02:1d:43:45:04:6d:55:61:01:cc:d4:3e:54:
3f:13:b6:cd:36:2d:90:4d:f1:09:e9:de:85:a6:b3:ad:d6:b8:
81:02:0c:50:b7:e0:9e:26:56:5f:f0:0e:87:19:d0:b9:73:a3:
5d:b1:f7:7e:38:ad:35:aa:92:35:33:e1:22:b8:3a:43:74:19:
d4:66:82:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:10:31 2025 by rpki-client