Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/637377-cadc-4fd4-b66d-c9a56c5d3e91/1/NelTcgmDiKMqHMJIF16KzHKa-B8.roa
File: NelTcgmDiKMqHMJIF16KzHKa-B8.roa (raw, json)
Hash identifier: BxCMY30Zb1kMy2m4l1vTXfiQ6mlkTVGiqKxXrsCEYGw=
Subject key identifier: 35:E9:53:72:09:83:88:A3:2A:1C:C2:48:17:5E:8A:CC:72:9A:F8:1F
Certificate issuer: /CN=6b3ae80cecb56f5b3003883a95e26f441d749f2e
Certificate serial: 09A33A6A
Authority key identifier: 6B:3A:E8:0C:EC:B5:6F:5B:30:03:88:3A:95:E2:6F:44:1D:74:9F:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/azroDOy1b1swA4g6leJvRB10ny4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/637377-cadc-4fd4-b66d-c9a56c5d3e91/1/NelTcgmDiKMqHMJIF16KzHKa-B8.roa
Signing time: Sat 01 Jan 2022 03:52:40 +0000
ROA not before: Sat 01 Jan 2022 03:52:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30720
IP address blocks: 80.85.160.0/24 maxlen: 24
2a01:6a40:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 161692266 (0x9a33a6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b3ae80cecb56f5b3003883a95e26f441d749f2e
Validity
Not Before: Jan 1 03:52:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35e95372098388a32a1cc248175e8acc729af81f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a0:ad:fc:06:0c:79:42:50:5c:2c:95:09:48:
ed:0e:61:2e:db:e6:cf:c6:12:c6:ce:59:24:88:6f:
ad:f5:ce:3e:0c:ce:7d:bb:1c:fa:88:14:a9:c0:8f:
cc:15:03:7a:34:3c:df:10:a9:22:76:b9:40:e1:a6:
2e:82:dd:36:4d:36:7b:a6:9f:ae:28:69:7a:89:77:
37:a8:7c:93:99:de:14:a7:46:42:0b:e8:e4:7b:b7:
af:84:56:cd:4c:ca:e4:05:17:7c:39:3a:87:1d:5b:
7e:78:1c:b8:59:bf:6b:70:82:24:bf:5a:4f:8a:bb:
6f:89:39:a6:2a:69:66:46:09:d9:d0:fa:bf:45:b6:
c9:04:23:fb:6a:74:3c:9f:65:8e:a6:06:41:16:8e:
43:6a:b2:fe:8b:e3:9a:af:44:bc:ea:05:f2:73:34:
43:4a:9a:bf:b9:7f:e7:48:c0:96:32:a3:07:1c:09:
d9:b5:aa:dd:6c:98:77:0a:6b:a0:86:1a:b8:c3:bf:
02:00:76:0e:87:17:3b:73:57:2f:6d:77:66:3d:90:
df:d2:06:ba:a3:42:4e:26:e1:bd:97:94:f2:d4:5f:
72:7a:99:35:8b:93:2d:7d:63:47:65:f0:58:25:e6:
26:07:b9:f2:fd:e3:41:e3:49:cb:78:83:a3:b9:c6:
4a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:E9:53:72:09:83:88:A3:2A:1C:C2:48:17:5E:8A:CC:72:9A:F8:1F
X509v3 Authority Key Identifier:
keyid:6B:3A:E8:0C:EC:B5:6F:5B:30:03:88:3A:95:E2:6F:44:1D:74:9F:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/azroDOy1b1swA4g6leJvRB10ny4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/637377-cadc-4fd4-b66d-c9a56c5d3e91/1/NelTcgmDiKMqHMJIF16KzHKa-B8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/637377-cadc-4fd4-b66d-c9a56c5d3e91/1/azroDOy1b1swA4g6leJvRB10ny4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.85.160.0/24
IPv6:
2a01:6a40:1::/48
Signature Algorithm: sha256WithRSAEncryption
a0:dc:11:db:61:d2:8c:81:42:bf:7c:19:37:78:e0:63:7d:9a:
1f:49:7f:57:ff:e5:1b:be:39:bb:66:12:bc:dc:cd:64:4f:51:
e6:0e:0d:9e:c7:d3:fe:e9:95:45:19:86:63:95:01:ae:21:39:
eb:e8:ef:68:34:e1:a1:f3:3e:44:23:b0:a2:09:ac:78:6b:f5:
81:8b:7f:5f:75:94:b2:5b:16:b4:e5:46:22:ae:7a:78:44:3e:
20:3f:1c:9e:84:18:d4:e1:cb:cc:94:c3:7c:2e:ca:89:46:88:
60:24:fb:1e:6c:63:a3:ce:6c:b6:6b:0a:2e:ba:ed:4e:ca:89:
b4:94:37:28:fd:a5:08:a7:a7:3f:b3:25:94:f0:6f:c2:73:e3:
b6:3a:31:68:3d:61:37:b8:3b:97:94:a6:24:0e:27:c2:6a:4b:
a1:96:05:c0:b3:26:4f:c8:9a:fd:e3:35:fa:2c:32:e8:02:97:
ba:6b:45:cf:58:43:5f:b9:67:14:cd:4c:f8:94:b4:17:e0:9c:
6d:0e:73:7f:52:8f:78:48:49:46:0d:31:b0:01:59:d6:46:6d:
a6:a9:83:30:14:48:ae:dc:21:6b:6e:4b:bd:15:7e:f0:cb:eb:
b8:2c:11:28:2a:6c:13:e7:f8:31:4f:00:88:c9:f1:64:8b:b7:
c1:7f:79:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 06:23:02 2025 by rpki-client