Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/RMyK5Kgwc9woLGgK_8vI-MObDd8.roa
File: RMyK5Kgwc9woLGgK_8vI-MObDd8.roa (raw, json)
Hash identifier: LeKlXqugX4D4r6r/23zWrvo1+ckp+zgO4zM92oJfvN4=
Subject key identifier: 44:CC:8A:E4:A8:30:73:DC:28:2C:68:0A:FF:CB:C8:F8:C3:9B:0D:DF
Certificate issuer: /CN=22373571c90249bf2aa948e78bed13e08528b87e
Certificate serial: 0194126D99F4E133484307C93E5FA02E55AF
Authority key identifier: 22:37:35:71:C9:02:49:BF:2A:A9:48:E7:8B:ED:13:E0:85:28:B8:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ijc1cckCSb8qqUjni-0T4IUouH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/RMyK5Kgwc9woLGgK_8vI-MObDd8.roa
Signing time: Sun 29 Dec 2024 12:39:20 +0000
ROA not before: Sun 29 Dec 2024 12:39:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200554
IP address blocks: 5.160.10.0/24 maxlen: 24
5.160.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:12:6d:99:f4:e1:33:48:43:07:c9:3e:5f:a0:2e:55:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22373571c90249bf2aa948e78bed13e08528b87e
Validity
Not Before: Dec 29 12:39:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=44cc8ae4a83073dc282c680affcbc8f8c39b0ddf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:fa:89:a5:f7:23:b4:8c:00:ce:fd:b9:f9:a1:
c9:1a:5f:ff:2f:9a:36:38:db:ad:17:78:b4:ce:82:
2f:c6:4b:b1:53:26:d9:59:03:40:08:76:47:c7:23:
9d:f7:f9:a7:28:18:f9:c5:fb:c0:c6:5a:3f:cd:24:
be:60:a2:5a:10:db:32:60:61:18:5f:11:37:a9:2d:
68:d8:9a:4d:65:80:08:a4:ee:49:6f:54:e1:ba:19:
e7:27:76:26:ac:cb:8d:d1:f1:85:ec:e7:3b:4d:45:
d8:cc:29:1b:06:f7:e7:9a:72:49:c7:93:a6:50:35:
30:ec:ca:62:bd:40:60:e7:a7:ea:d2:15:1f:92:41:
4e:eb:eb:1c:85:b1:23:ce:e2:fb:32:17:cd:9c:fd:
e3:9d:09:1c:5d:2b:a7:bc:3a:41:8e:86:c0:0c:80:
1f:aa:e5:3d:86:59:5b:e6:5a:80:8a:ea:ef:b9:42:
07:c4:a4:73:ac:99:b8:d9:d5:f2:b7:77:0a:7b:5d:
93:c3:36:d1:7a:38:de:12:fa:60:1d:1c:a8:6e:79:
d4:a7:16:1e:0b:cb:7c:74:ab:d3:40:9d:5d:5b:86:
ac:30:4d:84:b3:77:55:5c:7e:67:c8:44:84:e7:e9:
06:57:5b:ec:29:c9:9e:30:47:25:fb:e8:78:c8:41:
53:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:CC:8A:E4:A8:30:73:DC:28:2C:68:0A:FF:CB:C8:F8:C3:9B:0D:DF
X509v3 Authority Key Identifier:
keyid:22:37:35:71:C9:02:49:BF:2A:A9:48:E7:8B:ED:13:E0:85:28:B8:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ijc1cckCSb8qqUjni-0T4IUouH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/RMyK5Kgwc9woLGgK_8vI-MObDd8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/Ijc1cckCSb8qqUjni-0T4IUouH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.10.0/24
5.160.196.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:96:3f:42:ff:43:32:5c:21:1a:31:77:7c:fb:f3:fd:37:ea:
e3:78:98:b1:25:41:e0:1c:e3:aa:0b:b8:0b:f8:2c:3e:92:90:
d2:2c:c2:4f:92:d3:80:6b:a3:4a:70:bd:c2:69:61:1d:44:b0:
fc:54:b3:dc:e0:07:26:5a:61:e7:69:06:c7:af:a0:a9:e8:70:
53:b3:8f:ad:2b:a7:36:af:3d:66:1b:c8:5c:75:dd:1d:17:53:
d6:b0:e2:25:f5:1e:12:8b:11:f5:a3:cc:0c:fd:1c:38:62:d1:
3a:61:e4:37:9a:ce:d1:75:d4:bb:a4:ec:bc:6d:2a:18:f5:32:
5c:17:49:72:74:c6:2a:94:ed:71:d0:1a:df:40:28:f4:91:33:
fb:23:31:3c:dc:7b:3c:06:3b:a5:3e:00:fb:ac:7c:5a:ca:b1:
3a:46:fb:62:b5:eb:e3:02:e4:3e:f6:2e:bc:b8:97:5a:84:92:
a0:da:cb:27:0d:e4:a2:ee:fe:40:ca:3a:15:7b:48:42:56:7d:
e7:b4:ff:a4:2e:fd:58:22:f5:86:df:e2:d7:93:48:d3:6c:1f:
a1:ef:6e:fd:35:09:1f:15:75:33:39:14:5a:72:b9:b3:d6:94:
da:1a:4a:8e:cd:18:b7:23:3a:16:e3:4c:f7:f6:d8:16:f6:1a:
d1:ea:76:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 05:10:06 2025 by rpki-client