Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/oBzkWy0XA0L7i4tNaOhnccE5eNU.roa
File: oBzkWy0XA0L7i4tNaOhnccE5eNU.roa (raw, json)
Hash identifier: g9DBxmgg5RZRvVQB9bD9f1jedawZGvXXgv1OfUrSg74=
Subject key identifier: A0:1C:E4:5B:2D:17:03:42:FB:8B:8B:4D:68:E8:67:71:C1:39:78:D5
Certificate issuer: /CN=21b82fc8ed88f99cab57d76803176eb27a9f0bfa
Certificate serial: 57C0
Authority key identifier: 21:B8:2F:C8:ED:88:F9:9C:AB:57:D7:68:03:17:6E:B2:7A:9F:0B:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/oBzkWy0XA0L7i4tNaOhnccE5eNU.roa
Signing time: Tue 01 Mar 2022 09:55:14 +0000
ROA not before: Tue 01 Mar 2022 09:55:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60845
IP address blocks: 185.113.164.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22464 (0x57c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21b82fc8ed88f99cab57d76803176eb27a9f0bfa
Validity
Not Before: Mar 1 09:55:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a01ce45b2d170342fb8b8b4d68e86771c13978d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:5e:63:7d:10:35:f7:28:e0:c4:db:2f:7c:0c:
8e:ee:6a:6a:3a:6e:c9:4c:8d:86:d1:14:0c:c5:80:
81:80:8d:17:e4:a4:81:48:51:41:3b:13:ba:7a:cc:
83:35:02:be:13:59:dd:e5:cf:83:f6:2b:49:67:8b:
22:a7:78:62:44:a3:81:90:ea:05:78:66:6b:24:4f:
2c:e2:05:a8:b4:8c:1d:d3:5d:e1:aa:e9:78:5d:48:
80:c5:e2:af:bc:b9:d8:3e:1c:28:70:37:fb:15:80:
85:9d:b5:f1:65:e4:f8:09:da:cf:33:58:59:8c:42:
f7:c3:52:04:35:b4:0e:b0:1d:2e:8b:9f:5d:0d:cd:
84:51:40:a4:3e:8a:d9:4e:83:47:da:6e:59:d2:cf:
cc:b5:9e:ad:5e:af:2f:ac:a0:83:2f:02:7e:c3:88:
26:15:9c:19:f5:ce:4c:32:4b:0e:3a:25:fe:e4:3a:
48:6d:57:26:eb:70:48:b9:46:09:53:ae:71:43:22:
a7:33:02:55:9f:14:92:21:e7:30:d0:d2:61:d0:09:
0c:47:d3:91:b6:3e:8a:58:6f:b1:6b:84:fb:1a:48:
0b:e1:38:e7:d3:7a:41:98:66:4b:f9:45:4a:c1:39:
34:c0:a1:e1:2b:61:07:2e:2b:f5:4b:18:d9:f4:35:
21:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:1C:E4:5B:2D:17:03:42:FB:8B:8B:4D:68:E8:67:71:C1:39:78:D5
X509v3 Authority Key Identifier:
keyid:21:B8:2F:C8:ED:88:F9:9C:AB:57:D7:68:03:17:6E:B2:7A:9F:0B:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/oBzkWy0XA0L7i4tNaOhnccE5eNU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.113.164.0/22
Signature Algorithm: sha256WithRSAEncryption
74:16:63:e8:59:d8:6b:78:a5:2b:f9:6b:98:d9:ca:86:bc:15:
53:33:0b:14:6e:01:3a:27:14:01:7d:2a:68:cf:9b:64:77:70:
2d:39:e1:38:e0:a2:8c:de:a4:b1:a2:83:81:40:e0:7e:d0:ea:
a8:d9:a5:14:fe:88:62:b8:ad:da:da:e0:5a:e5:e7:68:d9:aa:
4a:a5:1d:d9:dc:ea:b4:a5:0e:4b:89:00:6d:27:bc:42:c3:d1:
10:49:7b:a2:c7:a3:84:7a:44:0b:9d:aa:a5:24:33:93:5a:1f:
c2:38:7d:c1:0d:9d:83:e6:ac:b6:55:7f:d0:1b:07:18:d0:ff:
c3:1a:33:bb:28:5d:8c:ad:30:9a:de:34:81:1b:1e:0c:27:a1:
37:2a:6a:76:2a:93:f5:9d:f2:f1:8e:09:fa:3d:6d:38:e8:2e:
76:ee:c1:55:ea:82:c1:2e:cb:3a:10:ee:f8:17:b4:1b:87:08:
b9:9e:70:f8:8f:bd:63:7c:77:f6:b5:06:ab:df:e3:c8:fa:46:
b5:05:93:2c:c8:3f:b2:4c:28:97:98:c1:64:bb:63:aa:70:6a:
b6:75:b7:35:ae:cf:ec:a9:bd:39:ac:2c:56:cd:3a:f4:be:f8:
79:22:28:e1:af:a7:56:56:93:c4:2f:35:6b:7f:89:e4:24:d2:
b9:c6:bc:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:31:14 2025 by rpki-client