Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/0c4ad1-439a-4e61-a8b6-3fdd61f6852f/1/75QOZPgsJv6mPhICtURSBJiPLrI.roa
File: 75QOZPgsJv6mPhICtURSBJiPLrI.roa (raw, json)
Hash identifier: ARPK3zXeiNhnRwh3eM+k1sU6TiB+MTKX8RpnsU+Wr1g=
Subject key identifier: EF:94:0E:64:F8:2C:26:FE:A6:3E:12:02:B5:44:52:04:98:8F:2E:B2
Certificate issuer: /CN=00105478defd513b7d8822a7d9204f875ed547d8
Certificate serial: 01856DC1B1C587292D20DB0B51C9EA8BEC95
Authority key identifier: 00:10:54:78:DE:FD:51:3B:7D:88:22:A7:D9:20:4F:87:5E:D5:47:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ABBUeN79UTt9iCKn2SBPh17VR9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/0c4ad1-439a-4e61-a8b6-3fdd61f6852f/1/75QOZPgsJv6mPhICtURSBJiPLrI.roa
Signing time: Sun 01 Jan 2023 14:34:48 +0000
ROA not before: Sun 01 Jan 2023 14:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34909
IP address blocks: 185.190.98.0/24 maxlen: 24
185.190.96.0/23 maxlen: 23
185.190.96.0/22 maxlen: 22
185.190.99.0/24 maxlen: 24
91.238.106.0/24 maxlen: 24
2a0a:7c0::/29 maxlen: 29
2a0a:7c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:b1:c5:87:29:2d:20:db:0b:51:c9:ea:8b:ec:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00105478defd513b7d8822a7d9204f875ed547d8
Validity
Not Before: Jan 1 14:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef940e64f82c26fea63e1202b5445204988f2eb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ff:ff:47:8d:4c:66:cf:96:3f:50:d1:2e:b4:
3c:c7:1b:a0:e1:56:e6:26:d5:6a:92:97:e0:c9:ba:
80:0b:b9:5a:66:6d:8d:f1:e3:ce:86:01:de:3c:ca:
65:11:49:42:09:5f:ff:27:9a:5d:79:ca:6e:b3:d2:
aa:a4:1d:ea:35:d9:6d:58:78:c9:9d:f9:00:08:18:
27:13:19:b5:5d:c5:c9:5e:b7:30:76:a1:43:55:40:
5c:e4:bd:24:49:37:59:e5:c3:54:9a:a8:97:a6:0f:
28:33:12:a5:a2:03:09:bc:6b:9f:57:2e:58:dd:95:
2e:85:f9:76:75:91:11:3c:1d:0c:5c:06:2d:c7:ae:
c7:f9:74:74:28:bf:59:47:f6:fa:0a:c1:dd:6f:80:
1f:43:33:a7:da:7d:c3:25:7d:30:68:39:ba:a0:1f:
35:88:45:75:bb:8f:63:f0:d1:65:52:fe:f0:b4:0c:
02:bd:80:2a:e1:4d:07:43:c3:0a:76:30:88:c9:38:
f5:6f:b8:32:b3:51:be:f2:6a:6e:81:6f:99:df:c1:
2c:ba:57:7c:dc:96:e2:91:eb:fe:ee:06:43:eb:6d:
bd:46:c4:3a:49:eb:2e:6f:10:3d:cf:d2:aa:63:b3:
c7:22:f7:9f:56:d9:ab:83:0d:4c:a9:b5:b2:e5:02:
cb:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:94:0E:64:F8:2C:26:FE:A6:3E:12:02:B5:44:52:04:98:8F:2E:B2
X509v3 Authority Key Identifier:
keyid:00:10:54:78:DE:FD:51:3B:7D:88:22:A7:D9:20:4F:87:5E:D5:47:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ABBUeN79UTt9iCKn2SBPh17VR9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/0c4ad1-439a-4e61-a8b6-3fdd61f6852f/1/75QOZPgsJv6mPhICtURSBJiPLrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/0c4ad1-439a-4e61-a8b6-3fdd61f6852f/1/ABBUeN79UTt9iCKn2SBPh17VR9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.238.106.0/24
185.190.96.0/22
IPv6:
2a0a:7c0::/29
Signature Algorithm: sha256WithRSAEncryption
c3:e7:c2:14:71:a4:a5:48:ed:c4:a2:e7:d6:6f:18:51:1f:6b:
2d:1e:74:cd:ef:55:0b:99:85:71:46:f2:7d:3c:54:af:4b:71:
20:1c:8a:ac:1e:f7:54:a5:64:d4:db:06:aa:45:3e:bc:63:61:
2a:e9:ec:dd:d4:6f:1d:c2:52:19:6d:20:c7:74:de:c7:93:26:
63:15:2b:77:af:a2:1f:73:87:79:e2:98:9a:99:fd:7e:cf:06:
ec:9f:68:8b:59:b1:a6:6d:3e:0b:16:00:3c:6c:a5:88:eb:c3:
cf:18:fc:e6:96:62:30:4b:11:69:e8:a0:ec:7d:8d:ef:e9:42:
fc:52:e3:98:fd:b6:4a:fd:f3:d9:ad:30:38:f3:dc:c0:29:ed:
92:d3:51:79:6d:e7:23:aa:50:66:ad:f3:e6:26:bb:3f:5a:f1:
70:bf:c7:28:2e:fe:77:a8:a4:d7:f4:45:7b:38:cf:0a:12:13:
4a:b8:81:09:a9:8c:a9:48:fe:ab:ec:42:a9:9d:4f:91:ec:18:
55:f9:dd:9c:d0:ed:54:82:74:6c:1d:97:21:dc:f0:df:b4:c5:
cb:cd:97:ac:7c:15:6f:23:b2:41:b9:3d:a9:6a:e8:9a:68:47:
a3:e8:12:31:78:cc:97:c5:6f:20:b4:a9:16:48:6a:cd:0d:71:
b7:11:bd:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 11:50:00 2025 by rpki-client