Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/63a402-a56a-4a89-a745-946817b59148/1/p2wS_66kpaZxCVLA4uQAyB7JncQ.roa
File: p2wS_66kpaZxCVLA4uQAyB7JncQ.roa (raw, json)
Hash identifier: khzGQdposQTrPxchEDzAz4oAStWFUXsbVvkcpv9LbFI=
Subject key identifier: A7:6C:12:FF:AE:A4:A5:A6:71:09:52:C0:E2:E4:00:C8:1E:C9:9D:C4
Certificate issuer: /CN=22d028f1ba3cefb0debd51be9dac68c9ce56c3d5
Certificate serial: 03E908A6
Authority key identifier: 22:D0:28:F1:BA:3C:EF:B0:DE:BD:51:BE:9D:AC:68:C9:CE:56:C3:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ItAo8bo877DevVG-naxoyc5Ww9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/63a402-a56a-4a89-a745-946817b59148/1/p2wS_66kpaZxCVLA4uQAyB7JncQ.roa
Signing time: Sat 01 Jan 2022 12:54:35 +0000
ROA not before: Sat 01 Jan 2022 12:54:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.204.184.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65603750 (0x3e908a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22d028f1ba3cefb0debd51be9dac68c9ce56c3d5
Validity
Not Before: Jan 1 12:54:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a76c12ffaea4a5a6710952c0e2e400c81ec99dc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c6:33:17:b8:82:f4:b7:b0:72:44:8e:12:cb:
9e:43:f9:66:ee:d3:e6:38:cc:45:4a:e9:e7:4b:a5:
12:99:f8:4d:a4:16:cf:ca:16:68:06:4c:48:49:dd:
5e:a7:af:2b:d0:5b:ca:f7:e3:61:6b:80:08:f0:d8:
d4:76:c5:4b:73:ae:28:dc:d4:65:be:67:12:88:31:
49:58:94:f2:ef:ba:74:5a:21:ba:9d:7c:87:d6:aa:
8b:70:29:57:44:3a:4e:c7:0e:42:2c:87:ea:2f:93:
95:79:24:ee:23:6f:71:ec:e9:76:52:aa:69:30:1e:
97:b2:9d:2f:0d:16:3e:48:24:0f:da:19:83:ad:99:
a9:ce:92:23:40:6d:fe:57:ab:99:c8:49:ad:ac:c7:
da:08:bd:23:b7:da:26:61:33:f5:81:e2:95:38:e8:
2f:b2:7b:73:1c:c5:5b:bf:8b:26:0f:bd:6c:a4:59:
ad:9a:a9:8c:9b:cc:84:31:58:47:63:c1:54:f0:5a:
37:23:14:36:bf:28:5b:83:38:9c:1c:39:72:e8:a5:
6e:4c:35:c3:67:e3:62:b8:7b:3b:0d:28:55:e6:3b:
4a:b8:89:cf:5d:b1:77:29:20:c1:9c:63:e7:63:92:
c9:eb:40:2e:aa:f9:71:08:91:31:ef:88:c8:1a:4e:
1b:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:6C:12:FF:AE:A4:A5:A6:71:09:52:C0:E2:E4:00:C8:1E:C9:9D:C4
X509v3 Authority Key Identifier:
keyid:22:D0:28:F1:BA:3C:EF:B0:DE:BD:51:BE:9D:AC:68:C9:CE:56:C3:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ItAo8bo877DevVG-naxoyc5Ww9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/63a402-a56a-4a89-a745-946817b59148/1/p2wS_66kpaZxCVLA4uQAyB7JncQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/63a402-a56a-4a89-a745-946817b59148/1/ItAo8bo877DevVG-naxoyc5Ww9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.184.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:e9:3b:21:d6:62:71:75:da:a0:27:64:3c:3f:4d:32:0c:09:
43:df:48:a9:c9:ec:5b:16:2f:0d:02:9c:f7:dc:84:6a:f1:70:
4a:69:8e:d7:2e:f8:86:25:c0:0d:26:8f:7f:6a:3b:99:02:89:
7a:59:49:27:b7:88:a7:94:82:4f:de:f5:56:34:f6:ed:64:6b:
f0:01:ce:7f:e8:ed:c0:d9:60:82:f0:a7:5e:7e:54:9e:23:ba:
63:94:28:85:f6:af:38:07:2a:f7:81:ce:a6:d3:87:47:d2:f5:
05:1e:c6:1f:c6:ec:c7:ef:97:90:7e:b8:68:8f:7a:91:fb:aa:
d9:c9:e0:00:c6:da:28:28:36:33:c6:b4:43:86:56:a6:42:65:
71:1b:d4:4b:60:b9:eb:9c:81:59:3f:a4:85:a8:91:de:b8:0d:
34:46:3f:87:39:92:ad:f5:b4:a4:5a:a3:17:26:9d:d0:fb:88:
bd:af:24:bd:01:86:c9:c9:42:79:7e:a0:0d:15:e2:ee:14:38:
f8:ec:0b:4e:cd:fa:4b:6b:f6:c4:17:72:8f:e6:a5:1c:6e:63:
34:e2:dc:f8:0a:d0:41:11:8e:b8:ca:90:8a:5e:71:7f:4f:a1:
29:39:b3:7d:a6:10:68:19:ef:6b:f7:ee:9d:40:54:70:87:f3:
4f:6c:26:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 07:49:46 2025 by rpki-client