Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/b69bba-7200-4f52-b631-fe0a658d9ded/1/H51DqhdMpb8A9mTqENcAaA6eEFc.roa
File: H51DqhdMpb8A9mTqENcAaA6eEFc.roa (raw, json)
Hash identifier: EAwdH6B9wR6pQxq/TKk1RFwkAVkcxwuwz40SJi3NS1Q=
Subject key identifier: 1F:9D:43:AA:17:4C:A5:BF:00:F6:64:EA:10:D7:00:68:0E:9E:10:57
Certificate issuer: /CN=f1bd02ea44a9bee35b63d1ab3e25b14f19a35a55
Certificate serial: 01824390405D78150ADA1C2B8C5D885537F1
Authority key identifier: F1:BD:02:EA:44:A9:BE:E3:5B:63:D1:AB:3E:25:B1:4F:19:A3:5A:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8b0C6kSpvuNbY9GrPiWxTxmjWlU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/b69bba-7200-4f52-b631-fe0a658d9ded/1/H51DqhdMpb8A9mTqENcAaA6eEFc.roa
Signing time: Thu 28 Jul 2022 06:48:23 +0000
ROA not before: Thu 28 Jul 2022 06:48:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44709
IP address blocks: 185.229.226.0/24 maxlen: 24
212.115.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:43:90:40:5d:78:15:0a:da:1c:2b:8c:5d:88:55:37:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1bd02ea44a9bee35b63d1ab3e25b14f19a35a55
Validity
Not Before: Jul 28 06:48:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f9d43aa174ca5bf00f664ea10d700680e9e1057
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:02:0f:63:f8:0d:3b:51:73:ad:45:19:a5:ee:
a8:71:39:23:0f:f7:51:17:50:3c:72:ad:81:b2:48:
c6:95:69:0a:e4:14:77:cb:54:e3:21:ce:dd:fc:c8:
73:47:52:24:b1:b5:8f:60:53:82:97:8d:21:b9:20:
91:f3:77:71:2e:d9:f0:67:96:93:f5:a8:85:c2:a0:
09:63:e2:33:8a:8e:6f:7b:1a:71:c1:fb:64:35:a8:
5b:cb:fc:2f:1a:39:1d:fa:4a:11:28:4d:3a:10:30:
ea:a2:5f:e7:ae:6b:34:4d:77:76:f5:8e:36:1f:3e:
8f:2c:60:17:76:ac:4c:aa:6f:79:ab:86:f5:da:83:
b1:c9:a6:8f:fa:8e:cf:45:9a:4a:46:d9:4f:e4:12:
f7:b4:66:58:bb:7b:a8:71:20:b7:f9:e3:ce:45:10:
66:2b:58:16:08:ac:f4:d9:cf:8c:29:24:b8:74:8a:
08:b9:fe:7a:e9:ce:76:f9:eb:d5:9f:47:4b:f5:29:
8b:94:3e:dc:e4:9c:05:f3:4f:46:e2:ad:9d:7c:09:
17:ec:a3:50:ac:0e:de:79:14:d9:ac:3b:b6:2f:a3:
d4:1e:03:00:e4:a6:75:95:ab:03:50:4b:e1:19:45:
00:aa:1d:9e:c5:6a:13:d8:33:99:6d:61:28:d5:12:
94:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:9D:43:AA:17:4C:A5:BF:00:F6:64:EA:10:D7:00:68:0E:9E:10:57
X509v3 Authority Key Identifier:
keyid:F1:BD:02:EA:44:A9:BE:E3:5B:63:D1:AB:3E:25:B1:4F:19:A3:5A:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b0C6kSpvuNbY9GrPiWxTxmjWlU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/b69bba-7200-4f52-b631-fe0a658d9ded/1/H51DqhdMpb8A9mTqENcAaA6eEFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/b69bba-7200-4f52-b631-fe0a658d9ded/1/8b0C6kSpvuNbY9GrPiWxTxmjWlU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.226.0/24
212.115.111.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:18:bb:fe:0e:b9:f1:06:ed:48:e6:bc:3e:18:81:bd:8a:7e:
dc:5d:5a:7d:b9:19:44:a2:2c:ce:95:88:28:a7:0d:f7:8e:7b:
47:ec:0b:58:69:22:fe:e6:9f:5d:51:b9:4c:2f:16:bb:34:e8:
14:97:db:80:25:32:2c:ee:98:f9:68:33:27:07:2d:49:79:44:
5d:d2:50:23:e2:ee:94:89:fe:61:ee:67:ff:68:e2:e0:9a:99:
05:28:9f:67:31:4e:a0:fe:88:cf:74:c0:dc:b0:fa:fb:30:e4:
31:fd:77:41:d9:b3:ce:8a:07:76:5c:29:0d:31:c0:06:1f:ac:
a1:25:9f:c5:66:45:60:4a:e1:62:5e:72:58:24:46:e3:05:93:
69:f8:b6:9c:1d:a6:ca:51:26:0f:8f:48:93:d2:13:c7:2c:7f:
ef:85:93:1c:36:44:82:18:09:17:29:5d:a3:4b:a1:05:22:c7:
f0:6b:3b:c1:de:40:1a:35:f7:4a:6b:96:a0:38:b5:13:f9:af:
11:58:bd:40:91:9c:a7:6f:ec:69:a8:26:f4:02:61:12:da:7c:
be:99:32:16:fa:5f:27:5a:a9:a6:18:04:d4:de:b9:7f:a8:c5:
e5:8b:0e:81:83:db:4c:93:04:f2:8e:3e:7c:c8:09:ca:3f:3f:
e0:69:8a:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 13:13:20 2025 by rpki-client