Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/005c9e-fe7c-469a-b6f0-9baa66ca1404/1/m1vRtBFkGtZc5xT-J3n-Dm7MACc.roa
File: m1vRtBFkGtZc5xT-J3n-Dm7MACc.roa (raw, json)
Hash identifier: AZygvzPntOJsFi/YA3+JPRnjpzKqwv0btn1SSbZ4M48=
Subject key identifier: 9B:5B:D1:B4:11:64:1A:D6:5C:E7:14:FE:27:79:FE:0E:6E:CC:00:27
Certificate issuer: /CN=ef4f78947341ce55888b7ebf3690143b0cbff3d6
Certificate serial: 01860D5531CBB9F4371E31E7EE10EA52F8CC
Authority key identifier: EF:4F:78:94:73:41:CE:55:88:8B:7E:BF:36:90:14:3B:0C:BF:F3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7094lHNBzlWIi36_NpAUOwy_89Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/005c9e-fe7c-469a-b6f0-9baa66ca1404/1/m1vRtBFkGtZc5xT-J3n-Dm7MACc.roa
Signing time: Wed 01 Feb 2023 14:15:32 +0000
ROA not before: Wed 01 Feb 2023 14:15:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204773
IP address blocks: 185.66.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:0d:55:31:cb:b9:f4:37:1e:31:e7:ee:10:ea:52:f8:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef4f78947341ce55888b7ebf3690143b0cbff3d6
Validity
Not Before: Feb 1 14:15:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b5bd1b411641ad65ce714fe2779fe0e6ecc0027
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:91:ec:0f:72:74:36:f2:3f:ef:45:58:85:fd:
76:97:98:ea:79:03:86:53:a4:e1:ad:f2:8a:0f:ec:
a8:fa:f6:2f:8b:e9:ec:fc:51:f5:a4:fc:79:57:93:
f9:2e:f3:ec:e6:8f:f2:40:df:f3:9c:50:03:97:e1:
dd:9b:18:2c:dd:5f:19:4f:24:5c:33:61:1f:da:a9:
53:5c:2b:79:57:01:f0:5b:f6:db:4e:92:0a:6f:b6:
38:6c:b9:00:07:00:f7:0b:9b:4d:eb:29:a7:ef:6c:
13:a8:69:be:1a:b5:68:d3:9e:37:54:5c:de:12:1f:
39:ff:3d:72:23:1e:ff:a0:f6:f9:4a:79:4b:c4:8f:
72:58:5b:40:b2:12:05:0b:93:2f:8e:6b:75:9d:5e:
d7:64:57:47:25:58:cc:68:db:4e:54:e0:dd:86:e1:
fc:dc:98:ec:ff:ab:67:73:61:80:fe:a5:bd:84:a7:
c7:73:fb:cc:08:41:79:45:26:e1:6b:b4:f9:5f:6a:
1a:4e:18:5e:9e:39:07:7b:a7:11:36:4a:47:9a:43:
93:e1:38:f6:41:98:e3:bb:4d:d9:ca:eb:8e:82:12:
52:75:ed:4b:de:cb:bb:11:de:08:cf:8e:6d:ad:36:
bd:13:8b:c8:7c:ed:ca:e3:22:eb:7c:8a:84:23:a3:
dc:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:5B:D1:B4:11:64:1A:D6:5C:E7:14:FE:27:79:FE:0E:6E:CC:00:27
X509v3 Authority Key Identifier:
keyid:EF:4F:78:94:73:41:CE:55:88:8B:7E:BF:36:90:14:3B:0C:BF:F3:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7094lHNBzlWIi36_NpAUOwy_89Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/005c9e-fe7c-469a-b6f0-9baa66ca1404/1/m1vRtBFkGtZc5xT-J3n-Dm7MACc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/005c9e-fe7c-469a-b6f0-9baa66ca1404/1/7094lHNBzlWIi36_NpAUOwy_89Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.66.75.0/24
Signature Algorithm: sha256WithRSAEncryption
80:46:b9:0f:1f:86:08:ec:12:a1:55:95:29:96:eb:63:f0:ca:
44:db:e4:90:df:81:11:9c:90:d0:c2:49:30:7f:bc:11:7e:43:
76:3d:f7:14:77:3e:ca:5c:34:58:f8:1e:34:61:aa:16:98:6c:
d9:47:ac:0c:23:ec:3e:7e:4b:f9:2e:77:a8:ac:c4:8f:04:48:
4d:22:57:aa:b9:7a:af:1e:c3:67:bc:5a:50:f8:51:1e:29:ee:
7c:97:1e:94:6b:1d:c8:e1:d9:37:ce:9f:cc:85:95:10:99:dc:
24:5c:7b:9f:4d:c1:d8:9a:6e:eb:1b:6f:c1:59:50:94:de:35:
de:2c:c4:2d:69:1f:6b:55:ff:a0:db:ee:7d:4f:5f:39:fc:9c:
fd:c9:df:b2:d7:15:2a:41:c6:92:5a:d5:b8:26:68:1b:38:e2:
91:61:3a:ed:98:ae:5a:c5:15:dd:81:48:5f:7c:fb:2a:cb:d8:
06:df:a3:72:a1:4f:2a:e8:69:16:4d:ad:eb:ba:35:32:93:bb:
f8:1b:a0:78:49:ef:9a:08:83:80:ba:04:bc:53:3f:7f:2d:d0:
8d:15:ff:8d:b9:b2:b6:88:7e:4b:8d:98:55:85:85:98:04:31:
b6:65:10:dd:f0:42:f3:77:6b:8e:f7:cb:88:43:ae:6e:05:28:
74:83:bd:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 11:46:58 2025 by rpki-client