Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/0d006d-ab7a-41c9-97f3-995c369da672/1/dTcxl8jOGIQV_BoCZucnreG1z7M.roa
File: dTcxl8jOGIQV_BoCZucnreG1z7M.roa (raw, json)
Hash identifier: lm4V0GYFLJWMwVE1n3mXindyip8NTiEAA9BkrWqhWJM=
Subject key identifier: 75:37:31:97:C8:CE:18:84:15:FC:1A:02:66:E7:27:AD:E1:B5:CF:B3
Certificate issuer: /CN=b24cf9f6d034f46760f4f59b1739de127b8adff3
Certificate serial: 01856FF96A90DE6785DD7B054B83B44A7313
Authority key identifier: B2:4C:F9:F6:D0:34:F4:67:60:F4:F5:9B:17:39:DE:12:7B:8A:DF:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/skz59tA09Gdg9PWbFzneEnuK3_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/0d006d-ab7a-41c9-97f3-995c369da672/1/dTcxl8jOGIQV_BoCZucnreG1z7M.roa
Signing time: Mon 02 Jan 2023 00:54:54 +0000
ROA not before: Mon 02 Jan 2023 00:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13896
IP address blocks: 185.155.146.0/23 maxlen: 23
185.155.144.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:6a:90:de:67:85:dd:7b:05:4b:83:b4:4a:73:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b24cf9f6d034f46760f4f59b1739de127b8adff3
Validity
Not Before: Jan 2 00:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75373197c8ce188415fc1a0266e727ade1b5cfb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ff:48:f8:76:90:f5:f1:04:f7:a9:3c:10:ba:
85:9b:2f:ae:b9:42:a1:fe:7a:3d:d0:7d:74:2d:a9:
4a:4a:33:c2:85:99:6d:5d:40:d8:5e:e7:c7:61:12:
ab:cc:2b:60:8d:b8:e6:52:62:83:27:af:db:f7:00:
db:d8:bb:4e:62:11:2b:7f:a3:61:ee:84:f5:1b:ed:
79:7c:e9:cc:48:45:52:35:92:ad:96:85:96:3a:bb:
86:ac:2e:ea:e3:4f:f5:e6:02:43:9e:e3:01:6d:ec:
57:e8:3d:6d:46:6f:2f:7b:0a:bd:ef:af:d5:e8:7d:
0d:32:e8:d1:35:3a:0e:0e:b4:5a:89:00:cb:fa:c6:
92:dd:d2:a8:ef:67:e0:44:c4:38:a7:c9:11:78:7b:
b9:8e:a0:e5:f6:f4:04:50:66:2c:a3:ae:3f:94:aa:
08:69:84:f0:90:f3:8d:75:43:9a:e8:e5:70:5f:5c:
1a:cf:3c:cd:0d:4c:55:0a:5d:77:38:2e:6f:43:fe:
c1:f3:41:d1:ac:87:f7:d8:70:8e:db:7f:d1:26:43:
1a:bb:1b:03:a4:de:1c:d4:0d:25:65:53:99:6c:42:
1d:29:81:c5:09:08:c3:0b:af:f3:33:37:1e:55:4a:
7b:0f:ee:f6:1b:ce:ec:75:23:67:d8:17:90:bb:fd:
c3:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:37:31:97:C8:CE:18:84:15:FC:1A:02:66:E7:27:AD:E1:B5:CF:B3
X509v3 Authority Key Identifier:
keyid:B2:4C:F9:F6:D0:34:F4:67:60:F4:F5:9B:17:39:DE:12:7B:8A:DF:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/skz59tA09Gdg9PWbFzneEnuK3_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0d006d-ab7a-41c9-97f3-995c369da672/1/dTcxl8jOGIQV_BoCZucnreG1z7M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0d006d-ab7a-41c9-97f3-995c369da672/1/skz59tA09Gdg9PWbFzneEnuK3_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.144.0/22
Signature Algorithm: sha256WithRSAEncryption
5c:fd:ee:09:6f:67:de:b7:d9:0b:05:f2:11:88:0f:18:44:aa:
a8:64:ab:1a:b8:95:f5:60:0f:7f:dd:eb:ae:15:cc:64:b4:80:
29:ca:97:ea:f4:88:16:f6:ce:59:c2:f1:81:92:f7:bc:27:cf:
d0:17:54:8d:21:f8:b6:13:b7:15:32:3b:2a:4e:a1:f8:76:80:
84:37:0a:6d:b7:88:cf:07:c6:ad:58:1b:fa:bb:18:26:0d:f4:
14:de:b7:29:d7:2e:a3:d3:09:ce:e6:54:fe:81:c1:63:19:65:
67:e0:55:f2:93:b1:40:3f:50:8f:1e:fc:76:cd:8e:97:43:f7:
d1:ba:02:63:f2:0e:63:17:5e:fc:16:44:fa:40:da:09:f6:a5:
37:de:7a:55:e1:fb:ca:b6:4f:c3:d8:dc:b8:35:86:c8:36:69:
89:f0:d3:ff:7f:cf:86:98:8c:d4:db:67:16:a5:67:78:c9:8a:
e6:7b:a5:de:45:a0:c5:f3:1f:8f:63:64:23:36:17:0d:90:bb:
2e:42:64:59:b4:63:7c:1b:87:93:49:af:67:f2:e6:2c:02:29:
a0:a2:cc:6a:46:82:03:69:81:bd:d3:ee:83:5e:4e:75:5f:99:
2a:2e:c0:65:7b:9c:ff:79:d5:64:bc:83:97:7a:0a:cd:7d:68:
ba:48:26:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:18:13 2025 by rpki-client