Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/036213-74b1-425c-9e56-7de910e00bed/1/KekDSs_ej5gnY-bXOZy7U_-mjZs.roa
File: KekDSs_ej5gnY-bXOZy7U_-mjZs.roa (raw, json)
Hash identifier: xKMsOeHsFbUA6HiEpuPHzMALh0EoeHuLAFADj4XFfng=
Subject key identifier: 29:E9:03:4A:CF:DE:8F:98:27:63:E6:D7:39:9C:BB:53:FF:A6:8D:9B
Certificate issuer: /CN=9416fa6a90ed94e221db69d21fcdda7c66d13c91
Certificate serial: 040F6188
Authority key identifier: 94:16:FA:6A:90:ED:94:E2:21:DB:69:D2:1F:CD:DA:7C:66:D1:3C:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lBb6apDtlOIh22nSH83afGbRPJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/036213-74b1-425c-9e56-7de910e00bed/1/KekDSs_ej5gnY-bXOZy7U_-mjZs.roa
Signing time: Sat 01 Jan 2022 10:57:24 +0000
ROA not before: Sat 01 Jan 2022 10:57:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207463
IP address blocks: 94.231.206.0/24 maxlen: 24
2a10:1800:1::/48 maxlen: 48
2a10:1800:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68116872 (0x40f6188)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9416fa6a90ed94e221db69d21fcdda7c66d13c91
Validity
Not Before: Jan 1 10:57:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29e9034acfde8f982763e6d7399cbb53ffa68d9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:9d:ba:75:64:be:e5:cb:87:35:21:63:04:c4:
35:4a:13:44:64:0c:7d:08:7a:91:84:4c:b9:c3:ad:
8f:59:28:ad:ca:02:72:9e:82:b4:36:c0:62:95:f5:
a6:bf:68:d7:80:bc:02:f6:36:02:49:57:55:79:e3:
26:e5:92:d4:ec:6a:74:ac:48:1c:da:35:bf:64:3b:
eb:23:f4:8a:c4:9b:48:d1:36:b4:8d:b7:ac:d0:98:
fe:da:a7:c4:ec:16:6e:25:cc:f7:a0:f5:80:10:36:
51:15:fe:a4:30:be:e7:77:b4:e7:a5:63:5c:7d:05:
3a:7d:37:54:56:90:c9:ed:67:4e:5e:d6:ef:80:5d:
c9:cb:a3:b3:10:6e:94:8a:dd:71:f6:b6:f0:eb:17:
4b:74:00:66:2c:67:f7:b6:85:4e:c3:3f:bb:ab:97:
35:f1:19:27:5e:46:c3:c6:3e:c1:f4:41:b0:79:ea:
54:6a:7e:93:72:b3:10:7a:c5:29:93:38:1a:b9:78:
f6:35:0b:1a:ca:39:c0:ba:fa:ac:e7:c7:25:e7:7f:
43:6b:39:ab:04:40:3f:5d:ae:3b:7c:a7:7d:8b:80:
f2:6c:a4:1d:51:ea:ef:0c:82:23:0f:ab:ec:3b:82:
f9:cc:93:d4:8e:42:43:3f:60:5f:fb:74:9e:63:ed:
ce:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:E9:03:4A:CF:DE:8F:98:27:63:E6:D7:39:9C:BB:53:FF:A6:8D:9B
X509v3 Authority Key Identifier:
keyid:94:16:FA:6A:90:ED:94:E2:21:DB:69:D2:1F:CD:DA:7C:66:D1:3C:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lBb6apDtlOIh22nSH83afGbRPJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/036213-74b1-425c-9e56-7de910e00bed/1/KekDSs_ej5gnY-bXOZy7U_-mjZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/036213-74b1-425c-9e56-7de910e00bed/1/lBb6apDtlOIh22nSH83afGbRPJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.231.206.0/24
IPv6:
2a10:1800:1::-2a10:1800:2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
52:fe:e7:d3:e7:df:67:c8:12:bf:a2:bf:19:5b:90:5f:88:6a:
b2:eb:d0:44:39:4e:8e:0a:42:72:36:5a:59:83:84:b2:33:63:
ba:69:8d:c1:01:b0:89:53:35:8a:b0:c6:19:bf:bb:69:16:ea:
d2:f0:cf:d3:fa:6e:48:a1:a3:99:ef:b9:40:25:bf:20:e0:72:
97:5e:eb:ed:13:39:24:e4:88:1b:13:c1:53:0c:c4:6b:99:13:
c3:c1:c6:58:6d:b6:5a:62:19:ec:9d:5c:c4:b0:44:a2:da:a2:
30:c0:21:21:06:11:2b:0b:e3:dc:e7:92:eb:1a:dc:16:3c:37:
a7:01:1a:a0:5b:48:3e:44:ac:84:f0:41:17:94:2f:76:01:f6:
66:2d:6e:00:61:fc:2c:1f:00:dd:5f:e5:fe:34:c8:ac:e6:8c:
ea:4b:69:ef:78:ea:c0:69:83:67:53:c1:e7:fd:16:04:4f:02:
3e:fc:aa:76:8d:06:3c:c3:08:7a:1c:17:91:db:ff:04:77:78:
8f:d6:71:ef:cc:9a:af:02:35:40:39:3a:8c:d7:49:b3:2a:6b:
bf:7c:23:b2:8d:f2:36:31:3c:30:06:d7:47:5d:0e:e0:80:26:
90:a3:ea:41:f1:a9:71:f3:ba:32:31:cb:6f:42:56:40:d3:97:
30:7b:54:25
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun May 11 01:26:26 2025 by rpki-client