Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/9a78e6-3bf7-42b6-8cbf-119942f3d7a7/1/IU6oBHqZwmB-eA8Iff-IPZO1x9w.roa
File: IU6oBHqZwmB-eA8Iff-IPZO1x9w.roa (raw, json)
Hash identifier: KOpdjO784K/xEml29/Vtz187q8sdhePnrVPjMpejhVU=
Subject key identifier: 21:4E:A8:04:7A:99:C2:60:7E:78:0F:08:7D:FF:88:3D:93:B5:C7:DC
Certificate issuer: /CN=10af800ce95bfbb1f473b0b5f9f7b93175930e89
Certificate serial: EB5DD1
Authority key identifier: 10:AF:80:0C:E9:5B:FB:B1:F4:73:B0:B5:F9:F7:B9:31:75:93:0E:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EK-ADOlb-7H0c7C1-fe5MXWTDok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/9a78e6-3bf7-42b6-8cbf-119942f3d7a7/1/IU6oBHqZwmB-eA8Iff-IPZO1x9w.roa
Signing time: Sat 01 Jan 2022 07:53:28 +0000
ROA not before: Sat 01 Jan 2022 07:53:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24971
IP address blocks: 185.32.160.0/22 maxlen: 22
2a00:a5a0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15424977 (0xeb5dd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10af800ce95bfbb1f473b0b5f9f7b93175930e89
Validity
Not Before: Jan 1 07:53:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=214ea8047a99c2607e780f087dff883d93b5c7dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:14:5f:6a:9d:23:c8:56:23:a5:0b:82:9e:81:
fb:26:09:13:ce:9d:da:61:bd:15:40:0f:67:15:70:
5f:fd:23:f2:74:a4:ed:a8:67:04:a9:55:65:ba:6e:
c0:10:fe:f2:7f:25:7c:2f:9b:d0:8b:ba:b4:b5:9e:
a8:ac:03:f4:59:2b:37:62:55:6d:3b:51:90:06:22:
2c:b6:6d:ea:f9:c8:1b:56:32:2e:30:d0:7d:3c:c3:
e6:0c:f8:79:c0:6d:1b:b2:eb:2f:1b:69:7c:4f:28:
07:a2:33:89:5e:ab:14:6f:9f:c1:a8:bc:bb:eb:a0:
2f:5e:3e:4d:8c:fa:7b:4f:c7:99:68:c6:5e:4e:b6:
0e:08:14:50:96:bd:7e:e2:bf:43:57:be:dc:ca:8a:
10:49:4e:70:45:7c:77:9d:d1:37:c5:4b:82:b2:05:
1b:48:21:86:41:e4:42:84:48:96:23:70:64:46:12:
4b:17:9e:c4:e1:d2:64:b7:7a:24:b1:85:54:8e:52:
3c:4a:1e:a5:26:c6:26:1f:3e:3d:d9:25:22:00:59:
2c:22:b9:a9:49:58:b2:59:a7:36:3e:26:a3:9e:d3:
14:6a:87:07:c2:47:24:9d:f1:5b:16:86:62:ec:5b:
9a:e8:54:4f:51:83:3a:5b:cc:8f:58:05:24:e0:c4:
b4:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:4E:A8:04:7A:99:C2:60:7E:78:0F:08:7D:FF:88:3D:93:B5:C7:DC
X509v3 Authority Key Identifier:
keyid:10:AF:80:0C:E9:5B:FB:B1:F4:73:B0:B5:F9:F7:B9:31:75:93:0E:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EK-ADOlb-7H0c7C1-fe5MXWTDok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9a78e6-3bf7-42b6-8cbf-119942f3d7a7/1/IU6oBHqZwmB-eA8Iff-IPZO1x9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9a78e6-3bf7-42b6-8cbf-119942f3d7a7/1/EK-ADOlb-7H0c7C1-fe5MXWTDok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.32.160.0/22
IPv6:
2a00:a5a0::/32
Signature Algorithm: sha256WithRSAEncryption
8f:22:25:e2:2d:4b:7f:a4:8e:85:56:5e:7f:b8:ef:25:2c:e7:
cc:b0:41:f6:e1:63:5f:a6:c6:22:3d:b1:b9:a6:fb:35:cc:e2:
bc:22:11:bd:ba:94:03:3d:c2:13:75:6b:0f:af:f0:9b:fe:05:
4f:36:6f:58:e9:47:26:2d:f8:1c:ad:d3:b3:7a:ab:7d:ce:82:
d3:98:79:c2:74:37:b0:4b:bc:a8:70:99:97:b2:75:f5:d9:f9:
c7:be:44:4b:94:95:81:8b:2c:de:c3:38:f5:2e:61:d8:d5:64:
54:f2:60:51:0f:a4:96:3f:cf:2c:25:07:a7:cd:5d:fa:31:4f:
f5:33:e0:86:3a:dc:c0:90:c5:5a:fa:70:aa:b8:5e:69:c6:33:
94:fa:5a:f5:a4:2d:c3:ef:6a:be:90:c6:d7:22:70:f9:36:7c:
8b:ac:8c:5b:47:05:ca:c6:65:a6:23:a3:07:82:7b:40:a8:58:
98:10:7b:31:d7:0b:55:3c:6f:b0:58:e5:c0:e0:fb:c7:b0:a6:
a0:29:e2:de:19:38:6e:f3:63:3f:76:96:50:9d:a9:7f:b9:93:
ec:75:85:01:e9:ec:d2:4c:d2:6e:15:5e:87:2a:af:30:71:e5:
2f:06:68:a2:fa:c9:18:38:13:e5:b8:a0:d8:0e:6a:ee:aa:20:
c8:35:c2:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:30 2024 by rpki-client on console-fra.rpki-client.org