Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/36177f-7cd8-4bd3-8689-213d64beff71/1/liMk7smWkZElLfApcdHH2kgOABo.roa
File: liMk7smWkZElLfApcdHH2kgOABo.roa (raw, json)
Hash identifier: JLs/5AcmAG82QOLDBWHfAp6KLfUZs32J7TzZUBBjgS0=
Subject key identifier: 96:23:24:EE:C9:96:91:91:25:2D:F0:29:71:D1:C7:DA:48:0E:00:1A
Certificate issuer: /CN=ab9f84c6a48d5c6dfe64149873b148d1120b009b
Certificate serial: 018B81FF5422BC1219A9D840F7BA9045783E
Authority key identifier: AB:9F:84:C6:A4:8D:5C:6D:FE:64:14:98:73:B1:48:D1:12:0B:00:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q5-ExqSNXG3-ZBSYc7FI0RILAJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/36177f-7cd8-4bd3-8689-213d64beff71/1/liMk7smWkZElLfApcdHH2kgOABo.roa
Signing time: Mon 30 Oct 2023 19:11:15 +0000
ROA not before: Mon 30 Oct 2023 19:11:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216066
IP address blocks: 185.187.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:81:ff:54:22:bc:12:19:a9:d8:40:f7:ba:90:45:78:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab9f84c6a48d5c6dfe64149873b148d1120b009b
Validity
Not Before: Oct 30 19:11:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=962324eec9969191252df02971d1c7da480e001a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:bc:8a:84:4a:8d:3b:44:27:ac:94:fc:64:48:
5d:14:ca:c6:a4:df:b5:e3:b1:24:aa:71:67:c4:59:
47:82:6f:b2:6a:f6:25:6e:80:a7:e6:0b:ec:5a:a8:
d9:1e:66:27:5c:72:99:1b:3b:dd:38:c4:28:62:c4:
b2:7d:ea:85:40:69:cc:10:82:62:88:a9:59:c4:d7:
fa:76:67:71:5c:20:16:45:ae:91:1e:55:c6:aa:fb:
8f:7a:64:b2:9c:fe:ca:66:4e:e4:6a:c8:1d:77:9c:
7e:1b:d7:5c:12:d4:7a:0a:b4:f2:82:e2:86:47:d0:
5d:6d:ac:93:64:06:6b:9c:8c:f8:4d:c1:1b:cc:ab:
b4:00:65:54:32:2b:1d:c1:fd:a7:82:67:a9:4d:d7:
42:27:c5:12:da:22:7a:56:a8:22:57:bd:ec:ec:8a:
97:4d:9b:1d:b5:6b:08:bf:bf:df:ee:12:ef:db:50:
83:58:5c:e9:c6:58:7b:42:27:ba:ac:77:23:16:c5:
8e:ac:c7:da:bb:9a:50:e7:8d:f4:24:be:e0:ed:1e:
4b:a3:1b:44:35:a2:4f:6c:57:2e:8d:90:7a:25:a2:
eb:97:91:42:b6:c0:b6:7c:4f:c0:1e:7f:89:e3:a9:
ce:62:ee:19:a2:75:07:fc:6f:90:94:20:c4:cc:5e:
82:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:23:24:EE:C9:96:91:91:25:2D:F0:29:71:D1:C7:DA:48:0E:00:1A
X509v3 Authority Key Identifier:
keyid:AB:9F:84:C6:A4:8D:5C:6D:FE:64:14:98:73:B1:48:D1:12:0B:00:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q5-ExqSNXG3-ZBSYc7FI0RILAJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/36177f-7cd8-4bd3-8689-213d64beff71/1/liMk7smWkZElLfApcdHH2kgOABo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/36177f-7cd8-4bd3-8689-213d64beff71/1/q5-ExqSNXG3-ZBSYc7FI0RILAJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.101.0/24
Signature Algorithm: sha256WithRSAEncryption
73:d0:2c:bd:8f:0c:60:24:e9:47:c0:4d:61:b1:28:1f:fe:42:
94:e6:8e:80:5d:6d:06:97:c5:55:d4:e8:dd:2c:83:18:af:3c:
8b:27:4b:5b:24:75:89:44:c9:54:ac:5d:d5:ac:97:06:08:8a:
46:3d:7f:8a:fa:e5:18:ed:21:49:63:e9:65:1e:53:90:7e:4b:
4d:3f:7a:7b:15:4e:53:ab:8d:79:30:a3:19:73:d7:fb:e4:74:
44:ff:a5:a8:e1:3d:b9:de:72:dc:88:8f:eb:03:96:4b:05:7a:
8e:13:22:8c:bb:62:22:82:11:98:c1:67:7e:4f:49:10:70:e2:
9c:6c:d9:87:71:39:c7:9b:86:00:cc:27:25:c5:e9:cc:02:9f:
e9:73:36:07:0a:fe:35:49:65:26:23:2c:a9:80:7b:0b:7c:67:
b9:40:d9:39:4d:b1:b6:a9:bf:37:9e:25:3a:9f:1c:27:9f:30:
3f:ff:08:7c:4e:4b:7a:43:11:0d:26:f5:9b:0f:0f:0f:d6:3e:
c4:fc:da:db:1b:59:8c:c9:71:b5:93:95:b4:d6:19:75:70:24:
06:0b:f3:dc:7a:79:4f:43:84:c6:78:04:1a:30:61:7a:b4:e8:
0e:6a:fa:85:13:ac:15:02:5f:f1:52:93:dc:2e:89:84:02:26:
70:55:20:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 04:00:13 2025 by rpki-client