Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/ihKyjhh7E9sadFJeKMgVA_NnOVQ.roa
File: ihKyjhh7E9sadFJeKMgVA_NnOVQ.roa (raw, json)
Hash identifier: M1AzkfdMrEAKznN+uej5CL/WXJjpYmKFB5EWliEOpzE=
Subject key identifier: 8A:12:B2:8E:18:7B:13:DB:1A:74:52:5E:28:C8:15:03:F3:67:39:54
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 0183379E1401498DC0D358FC51B82B5D65EE
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/ihKyjhh7E9sadFJeKMgVA_NnOVQ.roa
Signing time: Tue 13 Sep 2022 16:10:50 +0000
ROA not before: Tue 13 Sep 2022 16:10:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 176.46.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:37:9e:14:01:49:8d:c0:d3:58:fc:51:b8:2b:5d:65:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Sep 13 16:10:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a12b28e187b13db1a74525e28c81503f3673954
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:68:a2:0f:5a:06:10:ac:8b:4f:a2:79:1a:e5:
1d:7f:b0:23:63:5f:6d:f8:54:af:12:b8:be:d5:49:
fe:77:a4:7a:37:8e:24:2a:c0:57:a7:e4:fa:63:9a:
42:29:5d:a8:e7:1c:01:b7:12:a8:83:b9:ca:5f:41:
96:d6:af:8e:61:ac:51:37:c1:dd:a7:ce:b4:82:ad:
13:94:90:fe:ca:98:c7:a4:08:21:85:48:f1:42:9b:
f0:b3:2d:f0:b8:f5:a9:0c:a6:72:2c:5a:c5:96:f2:
0f:35:e1:0b:86:4f:27:09:e3:a8:f2:4c:87:58:26:
be:85:ec:e4:05:6d:b2:8b:de:d6:6a:0e:3d:b4:34:
91:97:f6:56:03:c3:08:7a:d3:45:e3:b0:0d:2d:6a:
09:fa:fb:c1:eb:24:c4:b8:ca:99:d8:74:fa:17:22:
2d:76:1a:03:aa:52:d4:9c:9d:a2:19:f4:d1:c6:25:
dd:e7:a1:ce:1c:86:3f:12:8a:a6:c7:49:4a:09:0b:
d8:57:27:16:fc:52:51:64:d8:bc:65:40:d7:34:f9:
b0:1d:c9:38:02:68:4c:08:3e:08:a5:67:26:19:62:
2f:94:46:d4:f8:f9:81:89:5e:fa:e1:13:38:ff:46:
9e:eb:b5:eb:ed:35:44:e1:0a:bf:66:4c:29:e9:51:
51:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:12:B2:8E:18:7B:13:DB:1A:74:52:5E:28:C8:15:03:F3:67:39:54
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/ihKyjhh7E9sadFJeKMgVA_NnOVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.46.128.0/19
Signature Algorithm: sha256WithRSAEncryption
04:e7:cb:28:eb:1b:e1:fd:db:c8:a5:5e:45:58:91:b8:3e:5e:
ec:1e:aa:ec:c8:26:e7:ed:dc:65:96:11:e8:3e:ae:da:29:01:
f1:3f:13:35:40:06:3c:8c:85:77:8d:dd:59:14:cf:86:9f:13:
ea:3e:86:15:0a:c5:82:9b:e2:ab:b7:f9:f0:d5:dd:c5:c8:49:
20:a1:87:88:b9:6f:8f:36:62:5d:f4:17:49:a0:3f:94:74:c5:
0b:86:58:f5:b5:c8:ae:1a:07:b7:c5:5b:d9:53:14:8f:20:eb:
db:d1:34:89:b7:c7:ed:7f:8f:b3:52:66:35:36:81:64:c3:90:
6e:bf:9e:eb:e1:b3:51:8b:10:c7:b6:c6:aa:56:37:44:80:a8:
9a:f0:5e:9e:5b:d0:a9:71:06:35:4b:a1:41:c4:99:ee:e6:eb:
19:56:69:38:f3:54:1e:6f:1d:39:34:e5:c3:5b:10:7c:a3:93:
1d:37:dd:99:8a:35:84:79:fa:ad:67:20:b1:ea:b4:97:44:a5:
31:f0:89:ad:36:c4:62:f2:bc:c8:40:62:a4:11:d3:6f:68:0b:
84:98:37:c8:4c:39:f5:fc:b7:29:6e:05:49:64:91:b3:f2:b1:
ae:a4:9d:ba:95:d8:66:8c:60:d4:58:ee:7f:77:c1:ea:f9:5e:
02:d3:62:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:07:08 2025 by rpki-client