Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/dc76ff-2b35-42be-ab56-5df2de08b695/1/4UC4ir6yykyEE8jXqKAwgo8cuCI.roa
File: 4UC4ir6yykyEE8jXqKAwgo8cuCI.roa (raw, json)
Hash identifier: AqT13T1f7V7gyNG1Meolv4rpX6YRJNWz+UOFie9QIg0=
Subject key identifier: E1:40:B8:8A:BE:B2:CA:4C:84:13:C8:D7:A8:A0:30:82:8F:1C:B8:22
Certificate issuer: /CN=37d6706a2e270cb486bb47243463ccbbf9f4d5ca
Certificate serial: 03BA8966
Authority key identifier: 37:D6:70:6A:2E:27:0C:B4:86:BB:47:24:34:63:CC:BB:F9:F4:D5:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N9Zwai4nDLSGu0ckNGPMu_n01co.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/dc76ff-2b35-42be-ab56-5df2de08b695/1/4UC4ir6yykyEE8jXqKAwgo8cuCI.roa
Signing time: Sat 01 Jan 2022 16:02:41 +0000
ROA not before: Sat 01 Jan 2022 16:02:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.206.120.0/24 maxlen: 24
2a10:a200::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62556518 (0x3ba8966)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37d6706a2e270cb486bb47243463ccbbf9f4d5ca
Validity
Not Before: Jan 1 16:02:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e140b88abeb2ca4c8413c8d7a8a030828f1cb822
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:75:c2:0c:c8:f9:81:a3:51:78:ce:19:f3:d7:
22:a9:78:de:2d:81:cf:44:e6:1c:6e:54:d4:08:30:
6e:74:9f:52:6e:6f:3d:c7:5d:0a:31:ba:7f:c6:8d:
3b:40:1c:ae:5b:74:ea:31:cf:76:0a:a6:3d:e5:06:
ff:78:a0:87:b7:6d:2d:89:e6:7b:35:42:0d:97:29:
1b:7d:7a:0f:61:c2:71:f7:5c:0d:be:e9:69:39:b5:
e9:ea:c3:d3:80:98:43:35:29:85:53:58:d9:f3:dc:
17:d8:ec:27:87:8d:65:9b:c3:b4:de:41:cc:f0:14:
b7:b1:0a:b7:c2:65:a2:c1:b9:fb:43:c1:68:d7:f9:
3e:b2:de:0b:7d:38:d2:c0:53:fa:3d:ec:ac:f5:1a:
2a:95:80:0a:2c:15:90:79:a4:28:13:11:1d:2a:03:
bd:02:32:cc:08:38:81:ca:7c:05:6c:78:17:2e:78:
e5:a2:29:4a:78:0a:c0:fc:3d:0a:c5:2b:e9:55:83:
c2:ef:a8:25:71:d3:e5:d3:dc:e7:60:78:6d:bf:54:
c3:7c:1f:54:12:ac:6d:cc:8c:58:af:bd:76:65:e6:
8b:5a:38:5f:40:63:44:65:5e:c4:f4:c2:fa:20:6e:
2e:85:e6:9b:41:42:63:3a:bd:0c:f3:32:48:27:f7:
4e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:40:B8:8A:BE:B2:CA:4C:84:13:C8:D7:A8:A0:30:82:8F:1C:B8:22
X509v3 Authority Key Identifier:
keyid:37:D6:70:6A:2E:27:0C:B4:86:BB:47:24:34:63:CC:BB:F9:F4:D5:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N9Zwai4nDLSGu0ckNGPMu_n01co.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/dc76ff-2b35-42be-ab56-5df2de08b695/1/4UC4ir6yykyEE8jXqKAwgo8cuCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/dc76ff-2b35-42be-ab56-5df2de08b695/1/N9Zwai4nDLSGu0ckNGPMu_n01co.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.120.0/24
IPv6:
2a10:a200::/48
Signature Algorithm: sha256WithRSAEncryption
0f:09:a1:9f:41:48:b6:e3:29:fb:e0:fb:b9:7d:aa:2a:39:69:
fb:42:08:02:51:69:8e:3b:0a:c9:df:5a:d5:e6:8e:4b:d6:d2:
3b:b0:79:a5:b9:f3:e2:0c:24:1b:a6:0a:52:85:1d:d5:e2:c8:
f5:d4:50:e3:c5:e9:a6:32:88:5d:71:0e:38:e8:18:d6:e7:01:
9a:00:3f:46:be:e6:e9:d7:a3:a3:08:14:c6:95:17:d8:ef:07:
9d:1f:86:d0:b1:cc:d3:32:3c:61:67:c4:b8:56:1a:9e:d1:b3:
14:6a:28:b4:b7:57:77:cf:55:1c:0e:d8:6c:30:d2:df:ec:89:
20:16:61:35:cf:b1:4b:f9:aa:bc:f3:0a:65:54:f0:06:f3:a2:
18:cf:46:8e:2b:b7:34:c1:e0:44:9f:e8:59:b5:30:1d:cf:f1:
d4:59:71:96:52:1f:1e:f8:5b:7e:0e:5a:86:1b:11:68:a1:e3:
44:99:0c:2b:12:b0:8b:39:be:a7:68:80:17:dd:66:07:c7:1e:
4f:cb:0b:8e:8c:98:a0:64:c5:2b:0e:d0:65:58:d3:4a:ca:06:
00:3d:e8:25:b2:91:fe:ca:d4:28:d9:e4:54:62:8e:47:43:1b:
8e:c9:79:91:dc:e9:42:5b:aa:09:7a:32:d7:a4:05:a7:83:c6:
b1:ce:5c:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:29:09 2025 by rpki-client