Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/FoTaUEHO1XoiibkK_iaACZ-QPdU.roa
File: FoTaUEHO1XoiibkK_iaACZ-QPdU.roa (raw, json)
Hash identifier: T5M0h5Ig6a4RYsKJeP4tHAJf+QuqTircA9mtPTK4FkQ=
Subject key identifier: 16:84:DA:50:41:CE:D5:7A:22:89:B9:0A:FE:26:80:09:9F:90:3D:D5
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0188E817D7ECF3283210206B67BA3E66A76F
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/FoTaUEHO1XoiibkK_iaACZ-QPdU.roa
Signing time: Fri 23 Jun 2023 11:50:56 +0000
ROA not before: Fri 23 Jun 2023 11:50:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.90.19.0/24 maxlen: 24
185.210.234.0/24 maxlen: 24
193.58.144.0/24 maxlen: 24
193.58.145.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
45.147.226.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
194.147.16.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e8:17:d7:ec:f3:28:32:10:20:6b:67:ba:3e:66:a7:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jun 23 11:50:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1684da5041ced57a2289b90afe2680099f903dd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:94:50:3c:89:00:b0:89:8a:b3:39:17:29:f8:
cb:63:a7:3e:a6:2e:b2:1b:ad:45:12:e6:e1:0d:2a:
c9:56:59:3f:a9:9b:f3:88:2b:20:ea:4b:c0:98:c0:
f7:6f:a3:a0:2e:de:a0:59:d9:a0:ff:18:9c:6a:0e:
27:65:04:14:de:9b:97:96:01:6f:e0:bc:a2:cc:7d:
2f:43:8a:4c:49:71:1f:07:b9:68:f8:c9:fd:7b:4b:
0e:bf:71:3d:f1:bd:30:8f:52:a0:0d:14:61:53:ba:
8a:cf:93:25:8c:f4:43:4d:61:02:f1:34:5d:09:25:
02:58:92:22:25:c9:cc:ce:7a:4f:bb:db:cb:65:0e:
bb:a5:6d:09:3b:10:b3:7f:be:ac:30:21:d1:ea:d9:
af:36:76:16:80:0f:bb:ff:a5:77:95:00:ab:77:59:
06:da:4d:38:44:59:98:86:57:15:10:99:12:56:4a:
ee:0b:14:58:c0:64:c2:0a:07:65:f8:85:3a:5a:9e:
1f:a2:8b:a8:1d:c2:f4:81:bb:5f:98:2d:f3:d0:4d:
8f:c5:96:48:33:56:9b:11:28:3c:51:0f:f1:d8:46:
12:8b:27:bb:d0:38:7c:c4:7c:b7:07:93:11:4b:05:
c7:66:99:fb:4f:29:2e:51:55:ed:ff:04:50:23:29:
c9:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:84:DA:50:41:CE:D5:7A:22:89:B9:0A:FE:26:80:09:9F:90:3D:D5
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/FoTaUEHO1XoiibkK_iaACZ-QPdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.90.19.0/24
45.147.224.0/24
45.147.226.0/24
185.210.234.0/24
185.225.0.0/23
193.58.144.0/22
194.147.16.0/24
Signature Algorithm: sha256WithRSAEncryption
27:a3:66:a2:f7:a4:1b:f9:df:37:d9:3d:f9:0c:f0:fd:42:dc:
3d:f4:54:38:92:4f:92:12:dc:bc:33:62:c0:f2:93:7b:90:a7:
51:a4:48:71:54:64:95:a7:b5:10:6d:10:7b:7d:bc:3b:1e:b5:
5d:99:5b:09:71:4e:0d:01:9c:de:94:33:ef:29:a6:ad:67:28:
9c:01:eb:25:50:a2:48:2a:4e:c3:9d:c6:b7:c6:38:b7:00:c2:
44:b5:35:89:b5:9e:37:cc:04:04:1a:3a:5f:3f:de:83:aa:b1:
c9:a2:67:cd:72:89:e2:bf:e7:45:cc:be:05:d5:fb:d6:78:94:
93:2b:67:c9:1b:b2:68:70:27:15:55:71:fe:68:1a:d3:15:13:
50:ae:f6:b5:cf:38:82:65:08:39:c9:0b:cd:5d:4d:90:ac:1c:
15:78:01:95:d5:1f:b3:bf:47:aa:fb:1f:d8:30:bc:9b:de:27:
8d:74:92:88:34:00:21:e8:0f:6a:9b:9e:64:85:54:64:b2:f1:
bd:5a:4c:4f:ad:ee:84:05:fa:0f:93:f3:1a:39:7f:ed:b0:61:
de:c8:d5:bb:3c:92:b0:7b:f8:27:26:82:38:fb:19:c8:c3:48:
70:af:79:38:4b:a9:36:55:e2:25:5d:33:b8:7f:5e:06:81:a5:
54:fe:0e:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 04:04:59 2025 by rpki-client