Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/IxV1UdXd5eYjUaWtcjBg2_Pji-4.roa
File: IxV1UdXd5eYjUaWtcjBg2_Pji-4.roa (raw, json)
Hash identifier: H5iTNB9971yFLuQUfX5mmTxqx+AFCLuzhNiL+k0lc5Y=
Subject key identifier: 23:15:75:51:D5:DD:E5:E6:23:51:A5:AD:72:30:60:DB:F3:E3:8B:EE
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018AE176E5AE0B3ADAE49282CD2C633605AF
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/IxV1UdXd5eYjUaWtcjBg2_Pji-4.roa
Signing time: Fri 29 Sep 2023 15:03:00 +0000
ROA not before: Fri 29 Sep 2023 15:03:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399073
IP address blocks: 185.222.30.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:e1:76:e5:ae:0b:3a:da:e4:92:82:cd:2c:63:36:05:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Sep 29 15:03:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=23157551d5dde5e62351a5ad723060dbf3e38bee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:cb:be:d1:4c:d7:96:d9:ed:80:6e:6a:48:3a:
14:6b:39:00:32:9d:e1:99:2f:d1:8c:5d:e1:6f:d5:
5b:7d:ea:dd:a3:46:eb:19:d2:df:8f:d4:ee:93:47:
0a:e4:77:f9:1a:d7:44:7a:12:b7:dd:21:b1:ea:22:
4a:79:4a:e2:79:77:30:67:b2:99:30:23:be:0c:7a:
8f:fa:e2:61:52:2b:91:25:ae:d2:cc:85:c5:75:42:
91:0c:45:ec:9a:e3:0b:e8:30:1b:e8:08:76:47:32:
8f:4c:a8:60:f2:13:0b:e4:d2:79:7e:62:31:63:96:
fe:b1:c3:c8:33:52:43:25:4a:61:51:aa:3c:8c:ae:
f8:4b:f0:09:8f:51:8b:a1:3c:05:38:99:20:16:f7:
d6:a8:52:19:02:d0:99:00:cd:0c:48:dd:65:a6:80:
2a:65:f0:da:a1:00:fa:be:a7:49:08:a5:43:25:fb:
e1:a8:de:f7:23:d7:5a:c3:d4:42:1d:12:10:0f:9d:
42:2d:ec:f9:6c:bd:55:8d:40:ee:fd:30:81:dc:c0:
02:d4:d4:60:db:f6:d9:f6:3c:f6:74:83:76:3a:6f:
2e:dd:65:cd:10:fa:35:64:d2:2e:ae:b6:22:3e:cb:
06:7b:f3:38:60:c8:ed:fb:d0:5b:90:8c:d7:2c:20:
fa:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:15:75:51:D5:DD:E5:E6:23:51:A5:AD:72:30:60:DB:F3:E3:8B:EE
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/IxV1UdXd5eYjUaWtcjBg2_Pji-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.30.0/23
Signature Algorithm: sha256WithRSAEncryption
85:14:b7:c7:b6:81:79:db:98:c7:b4:93:8a:2c:5d:c1:e8:53:
18:b8:ac:7f:7b:02:9e:c8:42:3b:47:f8:a7:5f:06:31:36:5c:
dc:3b:c8:68:9c:d3:fb:7c:a0:be:c4:b0:6a:41:45:c1:31:0e:
ee:17:cb:86:8c:5f:b8:5a:3e:60:27:fd:25:bd:5c:f5:20:ff:
5c:e0:42:5e:2a:25:c2:cc:50:0e:80:3d:58:98:b0:ae:cf:b2:
c8:3f:1e:d7:91:62:63:bc:86:72:17:8e:15:07:3b:c7:8e:8e:
39:1d:22:c2:f8:58:bc:12:80:b0:74:05:c3:58:cd:ad:f3:3d:
ba:be:1b:73:4e:f5:3a:49:22:58:ab:f4:ae:f5:c7:0a:43:ec:
a9:e1:9c:16:9e:ef:75:82:2a:c4:78:f8:4a:0d:70:ec:08:24:
15:cc:6d:8a:80:ee:05:cc:70:7a:62:28:24:19:84:73:2e:12:
b9:c9:e2:69:2a:b6:bd:59:c4:e8:e1:67:ab:02:66:88:db:f3:
86:01:fa:58:1e:4e:48:22:73:45:8c:be:92:fc:7b:8e:5b:95:
5f:8c:b2:09:8a:85:ec:b6:1c:7a:e4:ba:b1:20:93:42:bb:67:
54:58:52:ba:1a:75:a9:76:66:94:14:6f:40:98:1f:66:db:c2:
af:7a:7c:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 22:06:02 2025 by rpki-client