Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/2e4e54-0548-4d0c-93f1-75461abbb5a4/1/1Bn48QKRvHBb-S4ExeUgrYXMyqE.roa
File: 1Bn48QKRvHBb-S4ExeUgrYXMyqE.roa (raw, json)
Hash identifier: 2ZJYbHZGQ1QgzSIjpP85HkEdppBj7bB+Fd5qFCX+IGU=
Subject key identifier: D4:19:F8:F1:02:91:BC:70:5B:F9:2E:04:C5:E5:20:AD:85:CC:CA:A1
Certificate issuer: /CN=317b8147503ea19f581ca00d28dbee5e58cb8f48
Certificate serial: 0D49EA9D
Authority key identifier: 31:7B:81:47:50:3E:A1:9F:58:1C:A0:0D:28:DB:EE:5E:58:CB:8F:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MXuBR1A-oZ9YHKANKNvuXljLj0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/2e4e54-0548-4d0c-93f1-75461abbb5a4/1/1Bn48QKRvHBb-S4ExeUgrYXMyqE.roa
Signing time: Sat 01 Jan 2022 06:56:51 +0000
ROA not before: Sat 01 Jan 2022 06:56:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58160
IP address blocks: 185.93.212.0/23 maxlen: 23
2a00:d900::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 222947997 (0xd49ea9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=317b8147503ea19f581ca00d28dbee5e58cb8f48
Validity
Not Before: Jan 1 06:56:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d419f8f10291bc705bf92e04c5e520ad85cccaa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:22:9e:a6:88:42:5d:49:8e:a3:b4:4f:9b:b6:
66:61:b2:cb:dd:1d:f3:c2:32:bd:63:45:99:fb:c7:
23:81:cb:85:fe:20:62:c8:d4:5b:8e:c1:b0:59:6c:
06:2d:ed:22:93:88:4c:c5:b9:56:1c:f8:c1:a6:d2:
c8:56:90:67:4f:e5:a5:82:af:c5:83:c9:2a:c8:a1:
91:1a:63:c5:5f:49:fe:63:53:fc:1a:41:b2:0c:fc:
9f:1d:35:73:4a:ad:de:ff:63:d3:98:24:57:71:b2:
ce:fc:b2:b1:d6:0c:a1:49:a1:3d:db:81:a0:be:48:
ca:20:02:56:a6:a5:59:58:e1:fe:8f:df:d5:a0:d1:
37:28:7a:c7:11:c5:49:66:90:61:73:25:78:a4:bd:
ea:7b:d3:27:3b:42:54:9a:85:c1:39:28:47:93:c1:
e0:26:84:3d:0a:4a:2d:a5:f2:d3:ac:7e:be:61:e6:
70:50:b4:3e:f9:c4:5d:78:df:f0:0f:a1:1a:df:25:
bb:e3:52:63:5e:ba:cb:f5:83:6b:81:68:08:4a:1f:
0a:8f:7a:1e:39:59:dd:d5:6e:02:42:9c:ad:6f:b5:
9d:c2:98:84:fa:d6:cc:e0:4b:cc:ab:6b:02:e6:67:
d8:38:4a:78:c8:6e:ba:84:11:13:bc:b9:67:f6:25:
d2:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:19:F8:F1:02:91:BC:70:5B:F9:2E:04:C5:E5:20:AD:85:CC:CA:A1
X509v3 Authority Key Identifier:
keyid:31:7B:81:47:50:3E:A1:9F:58:1C:A0:0D:28:DB:EE:5E:58:CB:8F:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MXuBR1A-oZ9YHKANKNvuXljLj0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/2e4e54-0548-4d0c-93f1-75461abbb5a4/1/1Bn48QKRvHBb-S4ExeUgrYXMyqE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/2e4e54-0548-4d0c-93f1-75461abbb5a4/1/MXuBR1A-oZ9YHKANKNvuXljLj0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.212.0/23
IPv6:
2a00:d900::/32
Signature Algorithm: sha256WithRSAEncryption
83:a7:b4:a7:8a:1d:91:96:48:45:8b:36:03:0d:af:f8:18:c4:
b6:b6:b5:a1:5b:f5:47:84:a5:2d:50:7a:6b:8e:10:93:b2:aa:
ef:19:c1:fc:99:2f:f3:b1:c1:bb:8b:d2:46:4b:09:27:51:9e:
f3:9d:cf:05:6b:7d:e1:cf:8c:09:73:7f:dc:17:c7:01:a7:10:
88:05:4d:60:69:2a:74:a8:a5:cc:26:f1:3d:35:07:59:95:d5:
ba:d2:d2:bd:14:7d:31:bf:a7:68:fa:bb:fb:5f:68:f1:d5:27:
bd:5d:a0:d9:23:bd:0f:9b:95:4e:37:94:fe:04:4b:ca:8d:ed:
b3:e0:78:47:0b:cd:a5:04:ae:ca:4c:57:ab:8f:95:1d:9e:2b:
b4:86:b0:e3:43:79:93:a4:86:e3:45:06:6c:ff:70:c0:90:e4:
fa:e1:5c:31:22:6c:0a:b1:b6:55:cb:f1:ea:54:a3:ef:c0:55:
5a:66:8b:d1:9e:a6:b1:eb:09:f3:80:d6:71:fd:25:ad:10:58:
ca:81:26:7f:cd:20:1e:0f:92:1e:34:4f:2c:20:95:f4:c0:9a:
03:50:f6:d4:fd:4b:07:ec:6d:3d:05:4a:c2:7c:80:fa:8c:14:
67:67:3b:9b:75:a5:36:1e:f0:8b:5f:35:eb:db:dd:e1:1d:59:
6d:6c:2f:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:04:14 2025 by rpki-client