Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/unTajrsckdxq1gy1XBKtk3wYhOU.roa
File: unTajrsckdxq1gy1XBKtk3wYhOU.roa (raw, json)
Hash identifier: q9YziadhzfvJFuQRQ64i5aR/3VD2ct0OSHcWqsJebpA=
Subject key identifier: BA:74:DA:8E:BB:1C:91:DC:6A:D6:0C:B5:5C:12:AD:93:7C:18:84:E5
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0CFC3A78
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/unTajrsckdxq1gy1XBKtk3wYhOU.roa
Signing time: Thu 21 Apr 2022 12:02:27 +0000
ROA not before: Thu 21 Apr 2022 12:02:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398465
IP address blocks: 195.252.160.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 217856632 (0xcfc3a78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Apr 21 12:02:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba74da8ebb1c91dc6ad60cb55c12ad937c1884e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:82:06:fe:e7:04:99:6a:e1:69:c1:93:21:ad:
19:6f:f7:06:d9:99:36:27:6d:22:5c:28:c3:59:65:
62:3f:eb:2b:ca:c0:5b:27:b1:f4:2e:73:9a:82:04:
01:77:0e:95:b2:07:5c:3d:8e:f3:54:b6:68:19:35:
14:46:0f:f8:78:4a:6e:70:64:99:36:61:79:b3:8b:
12:6d:88:39:a6:ab:d7:cb:ae:b8:68:fa:25:dc:f6:
c2:2c:f4:1f:a3:b4:27:bc:21:c1:ec:a1:b2:8f:5d:
6e:ce:0e:8e:e9:3b:af:dd:d3:64:4d:3f:2a:fc:aa:
e4:27:81:2d:28:c2:d0:ec:c2:0e:6b:7d:88:03:ef:
cd:c3:17:35:9c:b7:bc:f6:08:ff:f6:18:16:77:3f:
a0:6b:93:c6:10:29:f6:46:dc:09:c5:af:23:de:cb:
f4:7f:bb:8d:3c:cd:27:6e:a6:81:5e:e9:c7:49:fe:
2e:7e:23:3b:8e:dc:76:50:6e:01:cb:fa:cc:18:f5:
6b:7a:04:21:9c:1f:86:c2:e5:a1:84:b4:a2:29:18:
87:93:fe:44:06:14:34:68:cd:ed:2e:e7:de:6a:c8:
a1:6e:74:85:47:78:b4:5c:7b:8c:7d:27:0b:e4:81:
e2:23:c2:eb:00:95:c2:47:e5:13:1e:c9:27:ad:50:
e4:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:74:DA:8E:BB:1C:91:DC:6A:D6:0C:B5:5C:12:AD:93:7C:18:84:E5
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/unTajrsckdxq1gy1XBKtk3wYhOU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.252.160.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:e1:f1:bc:21:94:1e:ed:70:12:29:54:71:f3:12:61:5c:7a:
77:db:51:01:54:7b:e0:f6:3c:10:98:38:53:22:cb:df:f1:f0:
9e:fb:e0:5b:6e:c1:23:58:15:f1:92:83:e8:db:17:d6:dd:09:
5c:bc:65:7f:02:f1:8b:dd:96:80:9c:36:58:98:e3:58:dd:84:
03:21:75:6f:f4:5c:45:5f:b1:f4:4d:e1:61:af:bb:da:2c:26:
53:33:cf:84:fe:3a:06:f9:f7:a6:0e:e6:42:7f:ed:7f:f7:99:
e6:1a:4e:19:a2:60:84:8d:a9:84:56:1c:a7:e7:4b:95:f8:e7:
de:fe:e7:dc:8e:75:1a:05:56:1f:0a:8f:95:26:4d:e7:9e:9a:
43:19:a9:3d:c6:6b:ae:49:e6:72:9d:3f:5a:3a:60:1d:12:e4:
b0:8e:b5:ae:36:bb:8b:c9:07:f3:07:b4:c6:4f:db:fa:bd:71:
12:21:44:91:41:d8:06:a6:45:f8:07:a6:66:bd:ae:47:fe:97:
d1:4e:2e:33:cf:01:a5:e8:81:ef:50:4d:20:1b:2e:5c:79:90:
87:85:55:f3:85:29:ec:07:36:bb:9f:d0:2a:09:3f:3c:62:8a:
dc:88:8d:2f:04:16:88:ce:53:05:50:b0:95:a6:ab:dd:f5:35:
06:00:78:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:01:34 2025 by rpki-client