Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/4b08af-67db-42da-a094-ef590c1c8e12/1/dZ9NQw89SfJzWZn_q4sghZNQ1gw.roa
File: dZ9NQw89SfJzWZn_q4sghZNQ1gw.roa (raw, json)
Hash identifier: hwRVX1IIcEGQixqW8l7F0Dw270FFcc/hLKMeox507aM=
Subject key identifier: 75:9F:4D:43:0F:3D:49:F2:73:59:99:FF:AB:8B:20:85:93:50:D6:0C
Certificate issuer: /CN=97eac753379fd22ff6515033f513dc282463ad2d
Certificate serial: 0183F04EAEDEA55584C9D386DF0E52CBC2DB
Authority key identifier: 97:EA:C7:53:37:9F:D2:2F:F6:51:50:33:F5:13:DC:28:24:63:AD:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l-rHUzef0i_2UVAz9RPcKCRjrS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/4b08af-67db-42da-a094-ef590c1c8e12/1/dZ9NQw89SfJzWZn_q4sghZNQ1gw.roa
Signing time: Wed 19 Oct 2022 12:53:51 +0000
ROA not before: Wed 19 Oct 2022 12:53:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211336
IP address blocks: 185.184.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f0:4e:ae:de:a5:55:84:c9:d3:86:df:0e:52:cb:c2:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97eac753379fd22ff6515033f513dc282463ad2d
Validity
Not Before: Oct 19 12:53:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=759f4d430f3d49f2735999ffab8b20859350d60c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:07:c1:3b:12:3c:0e:fc:d1:2b:c0:41:3a:f3:
33:62:3b:cd:e9:fb:a8:b7:bc:19:62:0f:65:54:73:
0c:17:a6:ec:2a:3a:09:9f:8e:51:c0:06:fc:b4:40:
13:67:d6:46:b4:1a:76:01:39:6c:a6:f2:ff:38:06:
cb:7b:da:bf:77:ee:fb:55:1c:e0:2d:be:75:1d:25:
f3:46:ea:5f:b5:87:c1:21:a2:98:88:45:f2:ef:07:
af:b9:83:7e:3a:bf:c2:5e:9e:d2:79:2b:fb:9a:31:
39:26:ef:10:90:94:ce:e1:93:82:30:a5:b1:eb:82:
e2:61:93:52:3f:a4:c8:6f:f5:ca:bc:92:13:a1:ce:
64:04:77:4b:d9:eb:b5:73:42:e5:aa:d4:26:0c:e4:
7d:59:db:2e:ea:46:1b:77:da:4c:ab:16:c7:66:0e:
fc:2c:2b:69:68:b3:d6:8b:99:b2:96:30:b6:86:80:
f1:9e:ae:e3:a4:64:62:e8:99:e3:6e:d0:fc:e8:5b:
22:68:42:a2:f9:8b:2c:9f:7d:47:b1:12:80:2d:51:
19:36:c0:8c:68:b0:48:93:d7:96:02:ff:91:15:36:
e8:a3:5f:3c:65:62:9a:79:2d:75:99:5b:2d:a6:49:
c9:ad:8a:00:79:25:09:f4:78:83:c7:fd:90:5c:9b:
b9:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:9F:4D:43:0F:3D:49:F2:73:59:99:FF:AB:8B:20:85:93:50:D6:0C
X509v3 Authority Key Identifier:
keyid:97:EA:C7:53:37:9F:D2:2F:F6:51:50:33:F5:13:DC:28:24:63:AD:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l-rHUzef0i_2UVAz9RPcKCRjrS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/4b08af-67db-42da-a094-ef590c1c8e12/1/dZ9NQw89SfJzWZn_q4sghZNQ1gw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/4b08af-67db-42da-a094-ef590c1c8e12/1/l-rHUzef0i_2UVAz9RPcKCRjrS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.184.145.0/24
Signature Algorithm: sha256WithRSAEncryption
25:0f:23:02:17:42:4d:50:b1:10:d0:73:ac:d0:d9:3a:05:88:
92:ec:8a:e9:05:52:0f:9e:d2:9c:04:72:c0:f0:c0:58:2c:a7:
3c:e0:9a:85:74:4d:a9:8b:5b:0b:f6:9b:c0:47:d9:17:25:ad:
27:9b:01:20:2e:82:c6:01:ed:a3:4b:9a:14:e5:2f:3d:5e:f0:
c2:d8:5b:6f:a8:3e:e2:de:ff:9a:46:f6:77:15:c2:10:54:3c:
73:8f:33:2f:e6:e0:0e:53:c9:9a:0f:8b:22:73:69:c1:75:dd:
79:39:82:ad:c0:4b:d0:86:a7:04:ed:06:66:ae:7a:c4:5d:47:
c9:99:61:4a:ba:20:75:7a:03:de:a9:ac:11:64:9d:de:19:3f:
78:0c:8e:80:9d:68:46:7c:23:ce:34:ad:38:97:81:49:bc:f2:
54:6f:91:86:6b:44:8b:5a:55:7a:86:05:3f:1a:fe:ad:b8:39:
37:e1:f0:cc:ae:e4:a7:16:25:c1:14:51:10:a6:49:5a:bc:a7:
a8:a0:b1:7d:60:74:cc:86:98:56:c6:22:58:9c:88:0a:e4:96:
fa:20:59:95:ed:4d:bc:76:06:8b:87:f7:8c:54:4b:6b:70:1b:
06:8f:02:39:da:a6:ea:42:37:7b:76:ea:e1:d3:38:aa:b9:6f:
a4:b6:f1:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:29:25 2025 by rpki-client