Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/64e19f-fe54-42cd-8923-09b9920fe00f/1/C2P2aHwEOm7Piq0wmAYzEU7TC4s.roa
File: C2P2aHwEOm7Piq0wmAYzEU7TC4s.roa (raw, json)
Hash identifier: hboYVq+eLIqmneQ8ncTR4xumEsnGjVT7FaS+r++m0B4=
Subject key identifier: 0B:63:F6:68:7C:04:3A:6E:CF:8A:AD:30:98:06:33:11:4E:D3:0B:8B
Certificate issuer: /CN=80bd00829536d47745f47da9d1a8a72f6dd462d4
Certificate serial: 11BD8855
Authority key identifier: 80:BD:00:82:95:36:D4:77:45:F4:7D:A9:D1:A8:A7:2F:6D:D4:62:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gL0AgpU21HdF9H2p0ainL23UYtQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/64e19f-fe54-42cd-8923-09b9920fe00f/1/C2P2aHwEOm7Piq0wmAYzEU7TC4s.roa
Signing time: Sat 01 Jan 2022 07:56:41 +0000
ROA not before: Sat 01 Jan 2022 07:56:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203008
IP address blocks: 185.110.134.0/24 maxlen: 24
185.110.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 297633877 (0x11bd8855)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80bd00829536d47745f47da9d1a8a72f6dd462d4
Validity
Not Before: Jan 1 07:56:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b63f6687c043a6ecf8aad30980633114ed30b8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:26:b4:aa:e8:21:b9:d1:02:8f:df:65:f3:3a:
7e:27:85:22:91:af:2f:8b:94:32:81:0c:45:79:f2:
46:0e:a8:f8:df:c2:0b:45:c5:f2:9a:42:0c:07:01:
28:49:72:09:cf:86:8b:b8:70:c8:e5:34:1c:23:04:
12:9d:c1:ae:ef:04:ac:0e:e1:dd:12:25:6e:8b:41:
a5:e1:48:1d:7f:16:18:35:b0:17:2e:d1:80:d4:fa:
5c:5c:b1:45:42:0a:b6:0a:8e:49:eb:9d:ac:74:14:
83:11:af:7c:b9:b8:75:7f:b3:ba:f2:24:01:88:1c:
c7:51:59:27:04:f2:f1:a1:73:a8:98:c3:be:3d:4b:
b6:4a:df:a5:fa:18:9b:1b:56:bb:e6:09:c2:97:9f:
e8:87:31:d5:c8:a2:cb:f5:32:11:35:9f:f2:7b:15:
f6:40:e3:63:5d:f6:08:0a:8f:f4:60:ea:c8:9c:05:
4c:27:c9:e9:7a:59:a2:3e:98:b3:c2:4b:30:6d:90:
21:f1:cb:5c:4d:c6:2a:72:9a:aa:70:13:2e:47:20:
5e:fc:89:12:bc:63:e3:53:b5:ef:fc:1f:e2:8f:a2:
8f:c9:ab:c2:1d:9c:d4:fa:41:c9:09:2a:5b:b6:8d:
24:fe:64:36:3e:a3:ab:96:cc:87:dd:1f:87:94:66:
f1:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:63:F6:68:7C:04:3A:6E:CF:8A:AD:30:98:06:33:11:4E:D3:0B:8B
X509v3 Authority Key Identifier:
keyid:80:BD:00:82:95:36:D4:77:45:F4:7D:A9:D1:A8:A7:2F:6D:D4:62:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gL0AgpU21HdF9H2p0ainL23UYtQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/64e19f-fe54-42cd-8923-09b9920fe00f/1/C2P2aHwEOm7Piq0wmAYzEU7TC4s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/64e19f-fe54-42cd-8923-09b9920fe00f/1/gL0AgpU21HdF9H2p0ainL23UYtQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.110.133.0-185.110.134.255
Signature Algorithm: sha256WithRSAEncryption
3f:76:ab:fc:e8:82:74:f0:f1:d1:bb:22:f4:f5:4c:0e:8b:82:
ee:68:d3:02:fa:f8:54:fe:c3:cb:f8:53:77:b2:d0:f0:27:05:
c1:3e:f2:3b:aa:6e:ca:c8:f7:00:68:e8:4b:6b:6b:e1:ac:48:
75:f9:cb:08:3e:20:1f:e6:6c:f9:f9:9b:f0:56:ce:ed:29:f4:
d9:21:cd:4d:78:1e:04:e3:a6:e6:06:18:5d:fc:78:3a:ac:38:
06:8e:e5:c3:29:a9:8d:61:1d:53:91:9f:5a:45:9c:1b:c1:ad:
50:a2:b0:41:63:b4:bd:37:10:cd:f1:9f:9d:97:f3:08:f8:ce:
24:6c:d5:93:50:cc:b3:90:ca:22:2c:db:c6:a1:2d:7b:8c:48:
0d:88:fb:9f:02:7b:07:79:88:1e:1e:3b:43:fb:39:d5:04:7c:
1d:ac:11:5c:c8:43:58:d3:22:81:0d:86:87:03:c9:b7:10:e9:
4e:a2:8d:0b:75:66:a5:7e:53:69:f3:9e:e3:15:cd:1a:b0:5c:
72:55:44:7f:59:7d:a3:1a:fa:3c:c1:9d:aa:49:11:c0:a7:7c:
08:f6:d6:4d:06:d5:a8:75:11:58:c2:34:3b:bf:11:a1:c0:b1:
75:b9:b0:f8:30:1f:7b:9c:aa:9f:bb:df:9b:4b:77:7d:15:e1:
ad:f7:36:98
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEEb2IVTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MGJkMDA4Mjk1MzZkNDc3NDVmNDdkYTlkMWE4YTcyZjZkZDQ2MmQ0MB4XDTIyMDEw
MTA3NTY0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGI2M2Y2Njg3YzA0
M2E2ZWNmOGFhZDMwOTgwNjMzMTE0ZWQzMGI4YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMgmtKroIbnRAo/fZfM6fieFIpGvL4uUMoEMRXnyRg6o+N/C
C0XF8ppCDAcBKElyCc+Gi7hwyOU0HCMEEp3Bru8ErA7h3RIlbotBpeFIHX8WGDWw
Fy7RgNT6XFyxRUIKtgqOSeudrHQUgxGvfLm4dX+zuvIkAYgcx1FZJwTy8aFzqJjD
vj1LtkrfpfoYmxtWu+YJwpef6Icx1ciiy/UyETWf8nsV9kDjY132CAqP9GDqyJwF
TCfJ6XpZoj6Ys8JLMG2QIfHLXE3GKnKaqnATLkcgXvyJErxj41O17/wf4o+ij8mr
wh2c1PpByQkqW7aNJP5kNj6jq5bMh90fh5Rm8YsCAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBQLY/ZofAQ6bs+KrTCYBjMRTtMLizAfBgNVHSMEGDAWgBSAvQCClTbUd0X0
fanRqKcvbdRi1DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2dMMEFncFUyMUhkRjlIMnAwYWluTDIzVVl0US5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDIvNjRlMTlmLWZlNTQtNDJjZC04OTIzLTA5Yjk5MjBmZTAwZi8x
L0MyUDJhSHdFT203UGlxMHdtQVl6RVU3VEM0cy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDIv
NjRlMTlmLWZlNTQtNDJjZC04OTIzLTA5Yjk5MjBmZTAwZi8xL2dMMEFncFUyMUhk
RjlIMnAwYWluTDIzVVl0US5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQAuW6FAwQAuW6GMA0GCSqGSIb3
DQEBCwUAA4IBAQA/dqv86IJ08PHRuyL09UwOi4LuaNMC+vhU/sPL+FN3stDwJwXB
PvI7qm7KyPcAaOhLa2vhrEh1+csIPiAf5mz5+ZvwVs7tKfTZIc1NeB4E46bmBhhd
/Hg6rDgGjuXDKamNYR1TkZ9aRZwbwa1QorBBY7S9NxDN8Z+dl/MI+M4kbNWTUMyz
kMoiLNvGoS17jEgNiPufAnsHeYgeHjtD+znVBHwdrBFcyENY0yKBDYaHA8m3EOlO
oo0LdWalflNp857jFc0asFxyVUR/WX2jGvo8wZ2qSRHAp3wI9tZNBtWodRFYwjQ7
vxGhwLF1ubD4MB97nKqfu9+bS3d9FeGt9zaY
-----END CERTIFICATE-----
Generated at Fri Mar 14 12:06:30 2025 by rpki-client