Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/9c6546-5811-4194-bfeb-2ab9046ebc11/1/m-A6t8bIB9uDmRpmrHhhzTndmxA.roa
File: m-A6t8bIB9uDmRpmrHhhzTndmxA.roa (raw, json)
Hash identifier: afs4DglXnVGZBGp6mhZpkLC2DTH1Y4CNe7kb4egXbsM=
Subject key identifier: 9B:E0:3A:B7:C6:C8:07:DB:83:99:1A:66:AC:78:61:CD:39:DD:9B:10
Certificate issuer: /CN=524e5f7961225fbfe341f6bfd6be8e1a21ef8c0f
Certificate serial: 011522
Authority key identifier: 52:4E:5F:79:61:22:5F:BF:E3:41:F6:BF:D6:BE:8E:1A:21:EF:8C:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uk5feWEiX7_jQfa_1r6OGiHvjA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/9c6546-5811-4194-bfeb-2ab9046ebc11/1/m-A6t8bIB9uDmRpmrHhhzTndmxA.roa
Signing time: Tue 07 Jun 2022 18:02:08 +0000
ROA not before: Tue 07 Jun 2022 18:02:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204515
IP address blocks: 185.230.76.0/22 maxlen: 22
2a0c:700::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70946 (0x11522)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=524e5f7961225fbfe341f6bfd6be8e1a21ef8c0f
Validity
Not Before: Jun 7 18:02:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9be03ab7c6c807db83991a66ac7861cd39dd9b10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e3:e2:a7:58:be:5b:f6:ec:35:0f:a4:19:d2:
ce:55:b0:05:b7:c8:fa:15:20:b2:c9:d4:4c:ff:2c:
5c:c0:22:14:71:20:bf:ed:db:4a:40:4c:51:13:0b:
12:96:fb:8c:a2:2d:50:c1:1c:26:12:3d:f5:f8:06:
ae:14:cd:04:f1:84:86:7d:ae:33:cd:45:c8:b7:f4:
1b:e6:b6:a7:6c:5f:2e:55:86:71:eb:37:28:43:72:
41:b6:7d:8c:f0:4a:67:3f:35:7b:8f:2b:1d:c0:e0:
c5:d4:e8:a1:ee:56:cf:e7:f3:15:98:02:03:7a:4f:
d1:2d:cf:e3:d7:92:a2:93:28:fd:ff:40:f5:6c:09:
0c:e5:a9:80:6a:b8:6c:ba:7a:66:bf:c2:fc:41:93:
b7:d2:9f:b4:17:18:f1:37:67:62:15:0c:d6:e6:c1:
b1:2f:83:da:dd:ad:de:e9:42:1d:55:b4:25:d1:74:
c3:2c:5d:e8:e0:fb:9a:b8:67:19:bd:e4:1b:61:88:
ae:5b:1f:5e:db:2c:84:0c:4f:a7:cd:45:9d:82:b5:
8e:a4:97:63:e3:41:6d:c8:54:1d:68:54:ab:24:d9:
fc:ed:62:5c:8c:ed:00:78:f0:cf:d8:48:89:0b:6f:
ae:41:76:24:81:91:0d:4f:a0:af:8f:ec:ff:5e:cd:
96:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:E0:3A:B7:C6:C8:07:DB:83:99:1A:66:AC:78:61:CD:39:DD:9B:10
X509v3 Authority Key Identifier:
keyid:52:4E:5F:79:61:22:5F:BF:E3:41:F6:BF:D6:BE:8E:1A:21:EF:8C:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uk5feWEiX7_jQfa_1r6OGiHvjA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/9c6546-5811-4194-bfeb-2ab9046ebc11/1/m-A6t8bIB9uDmRpmrHhhzTndmxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/9c6546-5811-4194-bfeb-2ab9046ebc11/1/Uk5feWEiX7_jQfa_1r6OGiHvjA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.76.0/22
IPv6:
2a0c:700::/32
Signature Algorithm: sha256WithRSAEncryption
79:f9:27:54:cb:22:0d:77:da:34:3c:f1:c9:fa:3f:5e:2e:7c:
b0:1f:03:97:01:2d:1c:51:b5:9c:4f:a6:e1:f8:10:f1:cc:6b:
29:8f:8a:88:58:f7:3e:ad:b6:b2:94:62:4b:08:dd:09:69:37:
10:3f:da:b5:d6:9a:b0:40:b4:4a:d7:19:9d:e0:c8:0f:b9:9e:
dd:33:56:06:20:31:ed:ab:0f:da:19:83:45:f2:88:5d:38:99:
e0:64:f2:65:7f:a6:ca:a8:3a:85:91:a8:16:bb:3d:dd:2d:2e:
05:af:c8:f1:c7:99:25:9d:cb:8a:14:df:f7:f2:c3:53:32:8a:
58:3b:04:7b:9a:de:f9:8d:6f:04:fb:80:9b:5d:3c:3f:0c:09:
de:fc:01:c5:3a:ca:da:81:e5:21:c6:32:0a:01:e5:2b:cb:d1:
ea:e7:15:08:00:03:70:9b:86:5a:b9:48:1d:02:a5:0e:8d:dd:
3a:d0:b5:65:b1:06:0f:fb:22:4c:01:6f:21:5e:1d:73:0f:1d:
0a:06:8e:ca:75:9c:8d:58:83:70:8b:70:6d:99:08:67:f1:24:
39:36:50:78:eb:ae:b7:d1:ad:15:0a:f8:87:02:79:3c:1a:76:
a2:45:59:80:e0:4c:02:8e:1e:60:5e:9d:ff:7e:0c:76:e6:79:
dd:15:83:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 15:15:03 2025 by rpki-client