Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/CKvAjgwAo8S-9ZzrbOTZO8DrT3I.roa
File: CKvAjgwAo8S-9ZzrbOTZO8DrT3I.roa (raw, json)
Hash identifier: o0OoNcLRhdGvauihfXYUUi1rojOBF/qKzLRFFdMBTmQ=
Subject key identifier: 08:AB:C0:8E:0C:00:A3:C4:BE:F5:9C:EB:6C:E4:D9:3B:C0:EB:4F:72
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 2DE9E0C1
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/CKvAjgwAo8S-9ZzrbOTZO8DrT3I.roa
Signing time: Mon 09 May 2022 06:18:42 +0000
ROA not before: Mon 09 May 2022 06:18:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34342
IP address blocks: 185.2.112.0/22 maxlen: 22
195.167.156.0/24 maxlen: 24
195.167.157.0/24 maxlen: 24
2001:1a68:19:400::/54 maxlen: 54
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 770302145 (0x2de9e0c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: May 9 06:18:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=08abc08e0c00a3c4bef59ceb6ce4d93bc0eb4f72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:2d:b6:69:5e:13:cb:ea:b6:a8:7f:30:3d:45:
30:70:0d:e6:39:de:29:25:0c:ab:d9:ec:6d:a7:b8:
1f:94:8a:ba:0f:8f:ac:0d:6b:c0:37:a3:8b:c0:f1:
c7:61:87:4c:26:25:c0:57:d8:94:1d:6a:53:44:4a:
0f:a8:3e:77:17:6f:94:6a:a8:fd:6c:fd:4d:c7:77:
f7:70:8b:c8:8d:4b:23:63:b1:67:cd:ef:5c:63:4d:
1c:13:af:da:83:42:89:3c:2f:ed:13:0a:80:9e:4f:
73:3d:d4:0e:9c:23:ab:23:d3:b8:35:f3:21:a5:cb:
6c:61:2a:70:07:b2:7b:b0:57:6a:01:0a:0e:51:d5:
1d:1c:0e:4d:11:e9:f2:fa:16:22:09:17:70:d8:a9:
4d:88:7c:37:ad:21:01:4c:a1:48:c8:40:8e:54:9a:
98:99:bb:2a:f2:4b:16:2a:b9:09:79:25:ec:15:38:
70:e3:2d:16:81:5f:44:ad:7b:da:47:49:a6:11:18:
9f:59:6c:db:71:6c:aa:d1:10:50:d5:bd:42:56:25:
aa:27:bd:e3:6b:fe:3c:2c:ac:0b:e0:ef:d6:6b:39:
cd:2a:ed:d9:11:e6:2d:34:8a:6c:bc:e7:5a:57:f0:
6a:16:04:60:72:6d:8b:fa:48:c5:4d:84:5a:53:a5:
d4:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:AB:C0:8E:0C:00:A3:C4:BE:F5:9C:EB:6C:E4:D9:3B:C0:EB:4F:72
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/CKvAjgwAo8S-9ZzrbOTZO8DrT3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.2.112.0/22
195.167.156.0/23
IPv6:
2001:1a68:19:400::/54
Signature Algorithm: sha256WithRSAEncryption
4b:cc:99:c5:78:0d:47:b0:25:99:96:0a:5f:60:f1:be:c4:46:
49:a5:29:40:f3:a9:e0:d1:59:ec:f3:2f:8a:00:e2:3e:b9:dd:
67:94:5f:4f:99:77:85:ef:27:90:b8:24:1b:f9:06:b5:36:a3:
59:a3:d4:64:67:96:62:a7:51:bd:be:85:fd:e1:a0:55:9e:33:
99:f0:0a:21:bd:47:2d:27:68:06:d6:40:a5:83:2a:0d:a9:1d:
2d:d5:77:e9:de:8c:d6:fb:ba:36:bc:ab:38:c9:a7:12:d2:1e:
cd:c8:2e:33:ed:ac:51:65:60:4c:d1:e9:5e:38:ac:3e:7f:09:
72:fe:3a:02:95:7b:d5:5a:bf:cd:fd:4d:eb:5c:f2:82:14:25:
64:27:5e:30:d1:95:71:bd:b6:e1:ba:87:ab:51:c8:43:ca:88:
4b:2f:16:cc:b0:c2:2e:9a:8f:d7:fb:34:48:6c:64:41:ec:a7:
dd:ce:aa:8d:d7:67:04:05:cc:f9:a4:6e:a6:6e:5e:9d:5f:af:
d1:8d:6e:24:83:2f:71:4d:15:20:81:f1:05:94:2d:1d:34:7d:
fd:54:e2:87:e3:77:cd:b7:ba:c7:db:38:0b:f0:3b:c5:b3:b9:
ba:06:c9:0f:4f:04:2d:aa:e2:fe:54:80:4a:a5:be:9c:ba:b4:
51:d8:1c:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:17:02 2025 by rpki-client