Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/0c9b54-130a-499a-bf9f-7610aabaa274/1/EW2wb-x_KE-9A_inEw1maQlw5ZE.roa
File: EW2wb-x_KE-9A_inEw1maQlw5ZE.roa (raw, json)
Hash identifier: a2Lxz71ZsAzl7k8i+zYDpnmp2x47yz+sra9FZFV4frE=
Subject key identifier: 11:6D:B0:6F:EC:7F:28:4F:BD:03:F8:A7:13:0D:66:69:09:70:E5:91
Certificate issuer: /CN=725c0c7111e2f57fcaf8113a42e556e882dd5c4b
Certificate serial: 018570CBD896DC41AEA35AFBF9915716C30C
Authority key identifier: 72:5C:0C:71:11:E2:F5:7F:CA:F8:11:3A:42:E5:56:E8:82:DD:5C:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/clwMcRHi9X_K-BE6QuVW6ILdXEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/0c9b54-130a-499a-bf9f-7610aabaa274/1/EW2wb-x_KE-9A_inEw1maQlw5ZE.roa
Signing time: Mon 02 Jan 2023 04:44:45 +0000
ROA not before: Mon 02 Jan 2023 04:44:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198380
IP address blocks: 185.242.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cb:d8:96:dc:41:ae:a3:5a:fb:f9:91:57:16:c3:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=725c0c7111e2f57fcaf8113a42e556e882dd5c4b
Validity
Not Before: Jan 2 04:44:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=116db06fec7f284fbd03f8a7130d66690970e591
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:50:0e:b3:0c:f3:87:45:91:06:36:f3:61:ec:
80:e9:75:55:39:3f:b8:0a:e7:f1:eb:ff:9c:62:e0:
50:c2:d3:b9:60:52:45:f6:c7:3b:1c:20:d5:b8:35:
c4:c4:a7:dd:7c:8e:44:2b:6f:01:6c:f6:cb:80:18:
f6:80:af:1d:69:8c:ad:3a:9c:35:b9:cc:96:54:8a:
a6:3a:d8:c8:8f:e1:cb:fd:71:de:78:1a:e4:95:86:
20:d7:ac:d6:98:8a:cb:a5:e1:fa:fe:e6:4f:8d:18:
cd:64:1b:e7:4e:be:e4:5b:2e:dd:78:f9:b9:fb:ee:
b6:6b:9d:6b:04:86:d8:37:83:9c:8f:e2:ee:32:59:
d1:af:2f:d5:b7:95:87:ee:3e:09:fb:24:bf:f0:1f:
09:b3:e0:55:99:ea:0c:f5:74:d0:8c:2f:99:5d:90:
55:b8:87:bb:1d:96:f2:7a:2d:1f:2c:4a:b7:91:1d:
04:57:59:75:b4:1e:a7:e5:9c:e2:fd:e3:a2:f5:ba:
76:a2:06:46:f3:77:bd:b8:0d:95:de:39:2e:f8:77:
a2:80:d6:e3:e6:d0:fd:d6:2e:b5:f0:e4:4d:83:ca:
23:db:d7:18:86:d9:e3:51:01:32:cc:47:33:4c:e7:
98:c2:94:7f:6b:68:a5:d3:87:cc:8a:ca:1f:c8:f2:
aa:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:6D:B0:6F:EC:7F:28:4F:BD:03:F8:A7:13:0D:66:69:09:70:E5:91
X509v3 Authority Key Identifier:
keyid:72:5C:0C:71:11:E2:F5:7F:CA:F8:11:3A:42:E5:56:E8:82:DD:5C:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/clwMcRHi9X_K-BE6QuVW6ILdXEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/0c9b54-130a-499a-bf9f-7610aabaa274/1/EW2wb-x_KE-9A_inEw1maQlw5ZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/0c9b54-130a-499a-bf9f-7610aabaa274/1/clwMcRHi9X_K-BE6QuVW6ILdXEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.15.0/24
Signature Algorithm: sha256WithRSAEncryption
07:26:ca:ca:b9:8a:b1:39:38:b5:22:81:d3:56:1a:65:10:bd:
cd:19:91:ed:92:8d:5f:55:81:9a:cb:cc:7e:ce:b8:19:37:d0:
fe:68:7a:b8:8d:b9:e2:8a:03:56:23:60:b2:43:27:5e:79:0b:
1a:6c:55:4e:d7:e2:df:76:b1:7b:59:ab:b4:a9:6b:24:cb:d6:
1b:1b:25:33:c6:b3:0a:94:10:49:2f:b3:39:82:a4:da:84:59:
3b:5d:ec:7c:cb:ad:59:5f:ee:03:f2:6e:b7:fe:88:aa:1e:c1:
2c:7b:bc:0c:21:07:27:38:68:0d:6a:ef:2b:81:e0:66:dd:da:
a0:80:c7:ed:b7:77:ca:dd:a4:c8:1b:83:b4:6b:36:2c:8f:a6:
ff:8a:ea:27:ef:c1:79:fc:e7:01:4a:7a:6e:07:e1:86:e7:38:
88:56:5f:7c:1f:5e:bc:a1:e6:d6:08:10:47:1c:be:85:22:7f:
11:30:37:96:b8:c2:3b:92:ce:16:97:16:93:80:e6:49:b2:35:
12:bd:85:44:15:1f:67:a7:67:a0:c1:e0:d6:f8:35:0d:1f:ef:
11:28:97:70:a7:49:d5:79:36:a5:07:9a:56:ec:e6:9a:9d:4b:
5b:6a:d4:a8:f1:c7:f6:60:d2:ad:34:16:2a:0a:07:70:e9:16:
84:10:99:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:49:46 2025 by rpki-client