Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/016156-093e-405b-9b2d-a5749d2346e7/1/6GsEFyDRYCcfC3zYQxLariajJmU.roa
File: 6GsEFyDRYCcfC3zYQxLariajJmU.roa (raw, json)
Hash identifier: LBhNw/Kw5RcmP6hPN67NqLJB63nMGPrPEt6TLNPxBKo=
Subject key identifier: E8:6B:04:17:20:D1:60:27:1F:0B:7C:D8:43:12:DA:AE:26:A3:26:65
Certificate issuer: /CN=36c3c4565743ae57bd2aea9a363c2b3c3e250f72
Certificate serial: 02D5363F
Authority key identifier: 36:C3:C4:56:57:43:AE:57:BD:2A:EA:9A:36:3C:2B:3C:3E:25:0F:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsPEVldDrle9KuqaNjwrPD4lD3I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/016156-093e-405b-9b2d-a5749d2346e7/1/6GsEFyDRYCcfC3zYQxLariajJmU.roa
Signing time: Sat 01 Jan 2022 06:02:55 +0000
ROA not before: Sat 01 Jan 2022 06:02:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57469
IP address blocks: 185.234.101.0/24 maxlen: 24
185.231.228.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47527487 (0x2d5363f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c3c4565743ae57bd2aea9a363c2b3c3e250f72
Validity
Not Before: Jan 1 06:02:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e86b041720d160271f0b7cd84312daae26a32665
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:8c:41:60:87:41:b0:2d:f8:1c:b1:44:bc:b9:
df:32:af:f5:09:c9:b3:76:c3:9a:4e:1c:9d:d6:bf:
34:ab:a5:84:b9:86:7c:57:d7:1a:64:2e:18:9e:ba:
ee:0a:da:1e:f4:54:b1:4a:80:fd:99:7f:58:33:ba:
1a:3d:7e:08:46:cf:82:bf:82:8c:48:8e:e4:06:86:
76:02:ae:9f:16:75:ff:79:2d:cb:3f:1b:31:38:44:
b3:d8:4d:1b:fb:db:97:fe:3e:04:d7:3f:92:c3:96:
91:32:c3:98:b2:92:a7:3f:16:6c:ab:b0:ca:3d:65:
0a:36:89:bd:92:79:e2:88:2d:96:b8:3d:9e:73:63:
cc:dc:2b:5a:89:e2:01:c6:63:fb:e0:03:46:ae:40:
a3:50:64:93:de:00:ca:7b:e6:e1:53:99:3b:d4:38:
c8:29:25:72:eb:61:0b:c8:fb:37:44:15:54:9c:88:
68:1b:76:30:f8:5b:4c:4b:12:07:c8:cc:10:03:da:
bb:fc:86:fd:ec:ba:56:5d:66:7d:fa:86:22:02:2f:
af:c8:88:d5:c7:e9:96:2f:31:56:53:62:c6:8d:a9:
fb:9b:f5:95:37:a9:30:0a:6f:04:35:37:8f:1f:25:
41:9d:7a:b2:c3:7f:a1:93:05:f1:02:98:5f:9d:3a:
b0:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:6B:04:17:20:D1:60:27:1F:0B:7C:D8:43:12:DA:AE:26:A3:26:65
X509v3 Authority Key Identifier:
keyid:36:C3:C4:56:57:43:AE:57:BD:2A:EA:9A:36:3C:2B:3C:3E:25:0F:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsPEVldDrle9KuqaNjwrPD4lD3I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/016156-093e-405b-9b2d-a5749d2346e7/1/6GsEFyDRYCcfC3zYQxLariajJmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/016156-093e-405b-9b2d-a5749d2346e7/1/NsPEVldDrle9KuqaNjwrPD4lD3I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.231.228.0/22
185.234.101.0/24
Signature Algorithm: sha256WithRSAEncryption
66:07:e6:d1:7b:55:61:21:14:da:0d:31:77:f4:5d:d1:81:da:
84:cd:13:2a:c6:b8:1e:68:49:4e:9f:72:2b:52:cb:1f:c0:88:
91:51:9c:0b:87:2f:9d:94:f4:44:d5:d7:3f:9c:8d:ba:b2:ad:
84:52:04:3c:ce:9c:c7:75:82:d6:f5:47:3e:b0:2a:37:c6:72:
0a:c0:fa:71:25:95:04:29:28:79:4f:eb:89:a9:a9:99:f2:c5:
9f:b5:93:5c:66:08:53:77:bb:d0:3a:85:2b:2d:dd:d2:7d:42:
a1:31:c5:12:04:be:ec:87:e6:75:93:55:8e:03:89:9f:37:b5:
93:8e:ef:48:84:95:07:9a:6e:e2:29:c1:fc:71:64:f6:cb:8e:
bf:36:98:bd:75:f0:a7:19:ae:e4:33:a7:2c:36:1d:a1:44:43:
c0:38:bc:b4:7d:8a:d1:aa:90:c5:b0:fc:dd:7f:98:bf:dd:06:
41:65:10:07:29:d5:80:34:7d:4f:e3:6d:cb:69:10:92:4e:56:
e1:80:bf:ac:d8:70:1c:84:11:43:9b:14:7a:45:21:b4:f9:b9:
90:10:7c:73:5d:e6:9f:0d:41:53:57:3f:90:93:78:d8:7d:52:
3d:c2:db:9b:48:9e:00:02:29:8b:d3:91:bc:4f:16:84:26:b9:
10:13:86:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 20:17:37 2025 by rpki-client