Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/63a402-a56a-4a89-a745-946817b59148/1/4_awWES3HBioyPVt69DoHB9ipxM.roa
File: 4_awWES3HBioyPVt69DoHB9ipxM.roa (raw, json)
Hash identifier: R+15Cw0obbcA0Yac6fby0Ntcd0CLlUJ/Iw4kRYEW24w=
Subject key identifier: E3:F6:B0:58:44:B7:1C:18:A8:C8:F5:6D:EB:D0:E8:1C:1F:62:A7:13
Certificate issuer: /CN=22d028f1ba3cefb0debd51be9dac68c9ce56c3d5
Certificate serial: 0183848A20F89503F9B7A5C0AD90B3EC5522
Authority key identifier: 22:D0:28:F1:BA:3C:EF:B0:DE:BD:51:BE:9D:AC:68:C9:CE:56:C3:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ItAo8bo877DevVG-naxoyc5Ww9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/63a402-a56a-4a89-a745-946817b59148/1/4_awWES3HBioyPVt69DoHB9ipxM.roa
Signing time: Wed 28 Sep 2022 14:39:48 +0000
ROA not before: Wed 28 Sep 2022 14:39:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.204.184.0/24 maxlen: 24
2a0e:c940::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:84:8a:20:f8:95:03:f9:b7:a5:c0:ad:90:b3:ec:55:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22d028f1ba3cefb0debd51be9dac68c9ce56c3d5
Validity
Not Before: Sep 28 14:39:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e3f6b05844b71c18a8c8f56debd0e81c1f62a713
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:94:20:88:19:40:74:d1:d5:cb:87:89:c8:9d:
46:89:43:72:12:82:74:9d:2d:f3:f9:a6:3d:08:b2:
b3:ba:c6:27:3f:92:42:f9:79:8b:b2:b1:45:4e:66:
eb:66:84:6d:3c:c4:37:ee:c3:12:1d:9e:c4:c9:a1:
63:63:10:43:66:57:ab:df:0c:d3:24:2d:29:93:33:
79:63:d0:35:ce:eb:df:fd:c3:ef:6b:10:35:1f:12:
36:a3:34:15:3e:88:31:a8:51:8f:82:64:6a:b4:46:
21:d2:56:89:58:1a:a9:1d:4e:83:d4:08:fb:b1:7c:
0e:1e:6d:53:56:85:91:d0:54:75:c8:0a:cf:d8:34:
5c:f4:1b:bd:6a:68:07:85:76:f2:f8:b5:cf:87:8e:
44:69:c0:c7:eb:94:cd:62:8e:2e:cb:d6:f8:d3:71:
e5:f5:8f:c0:f9:10:bd:dd:ad:ea:71:d0:39:3e:96:
8e:27:e5:9b:8d:cf:d9:76:83:21:29:cb:9d:66:0c:
12:57:d1:93:f7:a0:c5:db:61:bd:7f:28:d4:5c:ff:
8b:75:d6:17:e4:a4:8e:19:81:33:44:97:12:63:7c:
fa:ec:cc:c3:a4:1b:8e:ff:04:ef:9c:d5:7e:38:fd:
6e:d1:c3:0c:b3:9a:f6:52:c5:22:f1:b3:04:8c:f7:
d7:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:F6:B0:58:44:B7:1C:18:A8:C8:F5:6D:EB:D0:E8:1C:1F:62:A7:13
X509v3 Authority Key Identifier:
keyid:22:D0:28:F1:BA:3C:EF:B0:DE:BD:51:BE:9D:AC:68:C9:CE:56:C3:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ItAo8bo877DevVG-naxoyc5Ww9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/63a402-a56a-4a89-a745-946817b59148/1/4_awWES3HBioyPVt69DoHB9ipxM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/63a402-a56a-4a89-a745-946817b59148/1/ItAo8bo877DevVG-naxoyc5Ww9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.184.0/24
IPv6:
2a0e:c940::/29
Signature Algorithm: sha256WithRSAEncryption
51:65:53:0e:d6:de:09:25:20:f0:73:5b:c3:af:72:35:d2:c4:
f1:3a:85:2d:a0:4a:f5:98:d7:82:93:65:6c:b5:b7:58:ee:17:
9d:47:f7:4d:74:45:2c:27:c9:38:af:fa:c4:44:fb:22:3f:05:
2c:b4:08:12:ba:1e:17:37:92:25:b0:3b:c8:4e:2c:4d:22:7d:
96:de:c0:dd:8a:26:54:f9:4a:92:a5:03:9b:0f:c8:ff:ce:39:
9a:5c:3e:83:2e:43:c0:0b:d5:13:b6:65:a5:f6:d4:30:83:5f:
4b:34:5c:b4:90:0a:3e:c1:48:b2:62:e7:6b:45:8b:6b:82:ad:
ae:c4:88:74:d6:fe:ff:75:2c:62:2e:1d:82:c7:a6:1b:88:44:
a5:e9:7b:7b:00:e0:73:f3:4f:26:92:b7:cf:bb:02:e0:36:d7:
b0:95:31:48:0a:e6:87:4b:63:67:9b:57:f3:2f:ee:3a:11:d5:
89:c0:d8:a2:66:d9:a5:ee:9e:ad:f3:0b:54:0a:c3:b1:fa:49:
d6:58:4f:f5:cb:de:43:a7:c6:f7:e1:51:4d:72:a3:46:ad:f9:
b7:75:bb:e3:b7:51:8d:03:a6:32:5c:f8:15:93:b1:32:13:4a:
0e:ae:79:39:a3:7d:a4:bc:71:cf:c9:45:e2:2d:42:de:5f:70:
61:f3:8c:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 22:44:50 2025 by rpki-client