Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d6513d-2d53-4022-8360-3117989601ad/1/Rvqf0YVHK5Ie7G3dobYEhZ2VGL8.roa
File: Rvqf0YVHK5Ie7G3dobYEhZ2VGL8.roa (raw, json)
Hash identifier: 0OGaHAnGsiMPZnaAbwXMhDfpZxurjam0X7Q0vkRh8/k=
Subject key identifier: 46:FA:9F:D1:85:47:2B:92:1E:EC:6D:DD:A1:B6:04:85:9D:95:18:BF
Certificate issuer: /CN=b4a2085c7de3b598216b89fb0f2b1d930de66c19
Certificate serial: 05F17E4F
Authority key identifier: B4:A2:08:5C:7D:E3:B5:98:21:6B:89:FB:0F:2B:1D:93:0D:E6:6C:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKIIXH3jtZgha4n7Dysdkw3mbBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d6513d-2d53-4022-8360-3117989601ad/1/Rvqf0YVHK5Ie7G3dobYEhZ2VGL8.roa
Signing time: Sat 29 Jan 2022 04:15:23 +0000
ROA not before: Sat 29 Jan 2022 04:15:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 185.231.109.0/24 maxlen: 24
185.231.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99712591 (0x5f17e4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a2085c7de3b598216b89fb0f2b1d930de66c19
Validity
Not Before: Jan 29 04:15:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=46fa9fd185472b921eec6ddda1b604859d9518bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e3:47:e1:83:a2:6f:de:c0:28:3b:dd:4a:bb:
77:2a:f4:33:0b:9e:90:7b:de:d3:b0:ab:9d:9d:62:
e1:73:fd:15:73:c4:1e:a8:4a:78:bc:26:c3:9b:dd:
45:63:62:f1:67:b5:82:c6:18:b3:50:8d:50:66:aa:
36:78:2e:a1:cd:fc:16:9c:dc:91:0b:fc:8d:10:59:
72:0c:f8:62:49:fb:d1:c2:8e:ec:c4:8b:7f:ed:ef:
01:c3:22:23:e1:18:1b:3f:3e:d4:2f:94:9f:11:f0:
5e:07:fe:2a:30:ad:3a:33:25:7e:85:52:0b:81:72:
80:67:cc:49:d3:58:ec:aa:13:79:22:44:ef:c1:47:
50:9b:d0:e9:82:da:73:12:18:03:ef:b2:c8:71:44:
5a:41:f5:5e:55:ab:51:d6:51:89:c2:3a:03:42:a9:
59:ca:c8:ac:55:af:2b:5b:84:f9:a9:b5:53:66:f7:
1d:07:5b:0e:69:4e:fe:54:c0:98:b1:ce:54:b1:63:
05:06:1b:69:24:88:e5:77:ae:b8:d7:e9:83:b4:b3:
be:1b:c7:97:d6:8c:52:4f:4d:41:32:c7:2d:13:bb:
16:40:69:9c:00:0a:d3:41:a7:31:e0:65:53:65:d3:
15:e1:49:f3:bf:55:37:06:17:12:d3:b4:50:4c:98:
76:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:FA:9F:D1:85:47:2B:92:1E:EC:6D:DD:A1:B6:04:85:9D:95:18:BF
X509v3 Authority Key Identifier:
keyid:B4:A2:08:5C:7D:E3:B5:98:21:6B:89:FB:0F:2B:1D:93:0D:E6:6C:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKIIXH3jtZgha4n7Dysdkw3mbBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d6513d-2d53-4022-8360-3117989601ad/1/Rvqf0YVHK5Ie7G3dobYEhZ2VGL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d6513d-2d53-4022-8360-3117989601ad/1/tKIIXH3jtZgha4n7Dysdkw3mbBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.231.108.0/23
Signature Algorithm: sha256WithRSAEncryption
86:f9:9b:5b:1c:4e:c2:c9:ee:aa:d3:d9:c1:84:48:09:4e:59:
9d:ae:66:58:2a:3b:4d:c0:e4:b5:3d:a9:13:d3:ae:5c:ef:49:
cb:b9:8c:3b:b7:84:a0:8b:0b:18:1b:01:e6:db:52:60:c9:e1:
e3:48:b9:10:b9:9c:df:76:ef:ca:a6:21:94:5b:f9:48:f0:1c:
9c:85:98:6d:e5:e4:c2:ab:03:53:c6:75:86:03:e6:d3:38:2c:
6e:d9:c1:43:56:f6:c3:61:1a:90:7f:73:5b:97:19:10:d8:8b:
06:db:a4:15:cd:56:cd:0e:8d:f4:61:7f:fe:40:33:ee:f0:4e:
ce:30:ac:ed:5e:e2:50:52:df:b8:c0:da:92:c3:7e:4c:18:bb:
89:ad:56:8a:6f:db:13:9a:fd:3e:e0:0c:28:7c:eb:ad:93:ca:
18:54:03:84:a5:3f:d4:24:d8:af:c1:2b:e4:e7:08:a4:04:c1:
e8:96:25:de:cd:f6:53:da:be:d7:86:52:47:ce:4e:0c:9f:5e:
96:d2:e8:b9:da:bb:fd:89:8a:3f:7b:29:5f:c7:e8:6e:8a:76:
cc:f3:d2:f7:d8:59:b6:3a:9c:35:e0:c7:95:8c:59:99:e8:2a:
c6:65:78:a9:2f:81:a2:8b:fa:91:a5:79:ac:dd:64:c4:bf:81:
34:85:85:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 22:45:00 2025 by rpki-client