Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/gIX5b6ztvv5ddYGV7f_R3OIKeVI.roa
File: gIX5b6ztvv5ddYGV7f_R3OIKeVI.roa (raw, json)
Hash identifier: vt948Fuyyocqzc+LoCTzVEBQAXh3cftzJGGdwwkqmt4=
Subject key identifier: 80:85:F9:6F:AC:ED:BE:FE:5D:75:81:95:ED:FF:D1:DC:E2:0A:79:52
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018BACB2C34B1821194D5595D46CA424FE69
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/gIX5b6ztvv5ddYGV7f_R3OIKeVI.roa
Signing time: Wed 08 Nov 2023 02:11:18 +0000
ROA not before: Wed 08 Nov 2023 02:11:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 194.50.111.0/24 maxlen: 24
2a0e:b107:1870::/48 maxlen: 48
2a0c:3b87:ff00::/40 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0c:3b87:ffff::/48 maxlen: 48
2a0e:97c0:791::/48 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a10:ccc3:ccce::/48 maxlen: 48
2a0e:97c4:ac00::/38 maxlen: 48
2a0e:97c0:792::/48 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a10:ccc7:9000::/38 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:97c0:76f::/48 maxlen: 48
2a0e:b107:278b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ac:b2:c3:4b:18:21:19:4d:55:95:d4:6c:a4:24:fe:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Nov 8 02:11:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8085f96facedbefe5d758195edffd1dce20a7952
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:95:e7:91:0f:8a:72:33:06:c1:08:f5:0a:a8:
53:7e:26:03:c2:1b:80:4a:0c:b4:2c:04:a9:dd:45:
d4:66:e9:fd:07:df:1d:3c:a0:2e:22:62:1c:d4:a3:
e8:cb:96:5d:e9:e1:3f:34:e9:3e:37:f1:5b:f8:73:
71:0e:3d:36:b7:d2:f4:01:7f:29:0e:31:c6:fa:46:
8a:37:b6:4f:c0:86:88:c5:ba:63:30:f9:03:26:ba:
43:ea:eb:51:7f:a0:73:67:0f:b0:e2:1c:f7:97:d8:
6a:97:0f:2f:f6:47:fa:88:a6:62:7e:fb:46:36:51:
d0:b9:c4:52:0a:0b:5f:ca:b3:db:eb:b6:ca:64:c0:
8c:02:93:61:6a:db:26:68:18:b4:c4:b2:4c:23:ed:
a6:b9:b7:25:04:20:77:78:11:38:ba:12:dd:35:e7:
a0:ea:ee:2a:59:58:55:ff:15:77:5c:9b:9c:42:09:
ee:18:c4:f0:24:ea:7e:0d:04:c9:2a:60:d1:4b:b2:
a5:07:32:76:96:4e:f5:0c:d5:59:31:cf:8b:a6:31:
14:39:67:8b:06:36:71:81:04:5f:cb:df:6a:c4:78:
a1:5e:ad:04:8a:86:e7:4a:d1:ac:70:60:e3:c7:7a:
84:ed:e7:ec:99:00:b1:e5:37:e7:2d:8c:e5:38:03:
2a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:85:F9:6F:AC:ED:BE:FE:5D:75:81:95:ED:FF:D1:DC:E2:0A:79:52
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/gIX5b6ztvv5ddYGV7f_R3OIKeVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.111.0/24
IPv6:
2a0c:3b87:ff00::/40
2a0e:97c0:750::/48
2a0e:97c0:76f::/48
2a0e:97c0:791::-2a0e:97c0:792:ffff:ffff:ffff:ffff:ffff
2a0e:97c4:ac00::/38
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
2a0e:b107:278b::/48
2a10:ccc3:ccce::/48
2a10:ccc7:9000::/38
Signature Algorithm: sha256WithRSAEncryption
53:ba:24:c3:c6:70:62:06:82:5a:4e:36:b3:b6:7b:67:f2:26:
62:ac:49:b8:a6:74:04:e5:58:46:43:30:b3:43:39:6e:d0:8e:
f0:5c:47:ea:2d:ee:e3:dc:10:a1:2a:9e:d6:b8:c4:49:0f:a5:
f9:8c:3e:dd:e4:8d:b8:4b:88:f2:e7:23:88:b9:02:9e:ef:01:
9c:8f:2d:b6:1f:b7:ae:d4:f6:f0:8d:b8:fb:ee:ca:25:14:7e:
e7:ed:b1:b2:d3:c6:43:95:d1:aa:2a:cb:fb:ae:8c:3f:8d:5a:
ae:8f:fc:e2:96:54:5c:96:0e:c5:6d:0f:f4:e0:94:e0:0a:a0:
01:f0:e2:b9:cf:28:bd:bd:56:18:8b:14:ad:94:f7:14:95:db:
02:07:47:bc:8a:c8:c0:50:86:28:fa:02:66:41:53:a2:2e:08:
64:66:a4:a7:26:89:cc:e1:58:6e:38:5e:2b:d8:58:89:8d:cf:
20:67:66:b9:ef:e9:1f:c4:fe:a0:fa:d8:15:3d:23:c4:40:bd:
e3:84:92:5e:91:d0:6d:52:93:62:3c:26:49:e0:a3:c2:62:77:
d1:07:fb:c2:26:fb:56:b7:2f:50:bf:de:03:0e:ac:84:be:32:
76:29:be:a1:97:aa:f8:a8:3d:5e:94:78:ae:3a:1c:03:d8:0d:
69:b1:2b:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 00:49:48 2025 by rpki-client