Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/6afa85-367a-4efd-a311-41172b249740/1/tVboqBbUVI3bFppTGUG0xUzTFSs.roa
File: tVboqBbUVI3bFppTGUG0xUzTFSs.roa (raw, json)
Hash identifier: LdM9xmh1d6kTnRSODJPKa3ReCDXPXlP78Dfbybdb7wU=
Subject key identifier: B5:56:E8:A8:16:D4:54:8D:DB:16:9A:53:19:41:B4:C5:4C:D3:15:2B
Certificate issuer: /CN=e67bc12b3685716d8ef6567e21904194377be1e5
Certificate serial: 0F6034F0
Authority key identifier: E6:7B:C1:2B:36:85:71:6D:8E:F6:56:7E:21:90:41:94:37:7B:E1:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5nvBKzaFcW2O9lZ-IZBBlDd74eU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/6afa85-367a-4efd-a311-41172b249740/1/tVboqBbUVI3bFppTGUG0xUzTFSs.roa
Signing time: Sat 01 Jan 2022 04:55:52 +0000
ROA not before: Sat 01 Jan 2022 04:55:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207074
IP address blocks: 185.166.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 257963248 (0xf6034f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e67bc12b3685716d8ef6567e21904194377be1e5
Validity
Not Before: Jan 1 04:55:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b556e8a816d4548ddb169a531941b4c54cd3152b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:83:55:d6:22:f9:ea:f1:fc:e3:c4:d1:97:3e:
af:a1:b4:15:bc:89:3c:67:6c:7b:fa:d6:33:cb:45:
b3:27:33:28:99:83:3c:5f:b0:67:f6:96:0c:d6:79:
ec:f2:62:1c:49:13:43:03:bf:bc:29:61:f7:aa:e2:
71:b8:e5:e2:fe:e3:09:fd:07:df:65:2b:9a:21:0a:
57:9f:fc:c8:70:70:53:e3:ef:a2:fa:d7:1c:d8:de:
58:43:85:0a:b2:80:fe:0e:63:ae:6f:66:c4:e1:c4:
1e:1a:83:0d:28:c0:72:18:44:2d:29:ec:62:6b:8d:
63:22:42:51:3c:e6:8d:14:f0:95:8e:20:16:1b:ec:
b5:34:41:9f:45:fb:d0:27:54:92:0f:b7:f9:95:79:
5a:d7:60:ff:16:36:9c:d0:99:f3:a8:e5:dd:c8:fd:
98:d3:1a:be:47:48:ae:0b:9c:ff:ac:0a:32:35:ff:
2d:24:1c:18:4d:ba:9b:43:18:7a:05:de:d0:da:10:
06:dc:0e:43:ff:8c:f2:12:3e:31:19:a1:27:9c:b8:
c1:9d:12:7a:3f:e9:fc:dc:a4:b3:86:de:bc:fa:f9:
93:2a:80:b4:e3:03:50:4d:e5:cf:e3:f4:a2:56:8c:
da:b9:24:31:ff:33:76:d3:26:f7:a7:05:18:8a:7a:
2a:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:56:E8:A8:16:D4:54:8D:DB:16:9A:53:19:41:B4:C5:4C:D3:15:2B
X509v3 Authority Key Identifier:
keyid:E6:7B:C1:2B:36:85:71:6D:8E:F6:56:7E:21:90:41:94:37:7B:E1:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5nvBKzaFcW2O9lZ-IZBBlDd74eU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/6afa85-367a-4efd-a311-41172b249740/1/tVboqBbUVI3bFppTGUG0xUzTFSs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/6afa85-367a-4efd-a311-41172b249740/1/5nvBKzaFcW2O9lZ-IZBBlDd74eU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.166.148.0/24
Signature Algorithm: sha256WithRSAEncryption
96:a4:ed:85:01:44:a3:47:9a:bf:1b:2f:39:f7:fc:d6:c1:5d:
6b:47:7f:47:03:3b:a3:37:06:08:4e:84:c3:49:38:fd:99:f4:
29:bc:59:da:85:0e:b0:46:16:dd:af:95:1f:27:74:19:e1:2c:
cb:41:7e:03:70:17:a9:ee:28:c7:25:e6:ba:8e:46:8e:55:78:
7d:a8:ed:bd:6d:38:da:50:28:d1:91:3e:70:f0:3f:e5:7b:84:
7b:2e:9f:1a:96:23:eb:22:28:3d:9d:1c:00:11:78:a3:b0:0d:
68:68:2b:24:8a:46:8e:3b:94:b8:d5:b0:29:cb:4b:a8:46:08:
c8:b4:d4:26:16:6a:55:08:3b:39:e5:b6:62:45:50:ec:3e:05:
9c:46:0e:db:39:0d:99:30:e4:3f:7e:68:77:ee:13:1c:2c:e0:
0b:ed:ef:d2:70:85:81:2c:43:54:85:38:b0:02:a3:24:9f:d8:
6c:70:94:e6:18:e4:06:a4:34:b1:55:1b:7c:31:7c:79:0a:9a:
47:fd:e3:a2:68:b0:dc:99:ac:87:1c:ab:5c:88:dd:a8:cb:00:
33:21:8b:b7:4d:80:5f:58:c1:88:6d:f1:ad:85:4f:f6:71:17:
04:04:40:29:be:2d:1c:4d:72:db:c1:ca:a9:92:de:dc:7b:9c:
cb:5f:25:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 00:51:28 2025 by rpki-client