Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/00e8e1-c235-49a9-9f92-63831ae951ef/1/9U3PtMOmpMZx2H8lYUAzuRkv-3s.roa
File: 9U3PtMOmpMZx2H8lYUAzuRkv-3s.roa (raw, json)
Hash identifier: UdKPLwbGInH4JkSWk1oBHMVCw23vfgXXzJEADs4/+QM=
Subject key identifier: F5:4D:CF:B4:C3:A6:A4:C6:71:D8:7F:25:61:40:33:B9:19:2F:FB:7B
Certificate issuer: /CN=1f5cf6d120e28138b0aa2fc83cba9b0e96796c36
Certificate serial: 0BE0AA72
Authority key identifier: 1F:5C:F6:D1:20:E2:81:38:B0:AA:2F:C8:3C:BA:9B:0E:96:79:6C:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H1z20SDigTiwqi_IPLqbDpZ5bDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/00e8e1-c235-49a9-9f92-63831ae951ef/1/9U3PtMOmpMZx2H8lYUAzuRkv-3s.roa
Signing time: Sat 01 Jan 2022 14:03:46 +0000
ROA not before: Sat 01 Jan 2022 14:03:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1241
IP address blocks: 185.247.160.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 199273074 (0xbe0aa72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f5cf6d120e28138b0aa2fc83cba9b0e96796c36
Validity
Not Before: Jan 1 14:03:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f54dcfb4c3a6a4c671d87f25614033b9192ffb7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a1:d0:74:67:b1:3e:34:e7:e8:f0:5f:cb:c8:
3e:2d:1b:0f:3a:43:b3:06:d8:eb:60:42:69:08:17:
00:0a:f2:e6:6d:aa:e6:f8:04:ab:87:60:e5:44:65:
c5:0b:d7:23:9b:6c:76:21:47:6f:98:8d:93:df:d5:
ff:a2:b0:cb:1a:10:e4:7c:af:8f:d0:c9:4f:08:7f:
26:1b:a1:1d:4e:1e:8f:ef:56:6f:68:fb:83:e6:6f:
8d:d7:37:ce:9b:b7:47:7f:36:0a:21:81:37:56:8b:
58:25:ce:6b:c3:49:36:8a:9c:14:c5:fa:33:bc:14:
5f:af:38:87:c2:33:d5:23:fb:05:6a:ac:33:93:b9:
47:4e:95:82:22:0c:47:bb:1c:18:4d:9d:80:6a:5b:
cc:98:33:43:f0:65:59:d0:54:69:01:77:ca:65:2d:
97:a3:a2:0c:15:24:d9:18:19:14:2f:52:90:fc:30:
6b:76:20:71:51:02:6c:ee:16:6d:00:d7:05:17:ec:
46:73:cb:02:b0:fe:dc:29:49:e8:20:f8:43:8d:42:
38:27:6d:b9:cb:09:1e:84:c2:0c:bb:91:c1:bb:e9:
cb:49:b0:79:99:24:ff:c0:31:40:4a:e4:f5:3f:7c:
50:a0:9b:c1:40:91:8c:b7:01:b0:c2:39:ce:3a:57:
a1:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:4D:CF:B4:C3:A6:A4:C6:71:D8:7F:25:61:40:33:B9:19:2F:FB:7B
X509v3 Authority Key Identifier:
keyid:1F:5C:F6:D1:20:E2:81:38:B0:AA:2F:C8:3C:BA:9B:0E:96:79:6C:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H1z20SDigTiwqi_IPLqbDpZ5bDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/00e8e1-c235-49a9-9f92-63831ae951ef/1/9U3PtMOmpMZx2H8lYUAzuRkv-3s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/00e8e1-c235-49a9-9f92-63831ae951ef/1/H1z20SDigTiwqi_IPLqbDpZ5bDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.247.160.0/22
Signature Algorithm: sha256WithRSAEncryption
51:c0:64:24:f9:64:a5:48:02:c0:d7:32:6f:fd:34:a3:ba:aa:
2b:f4:96:b6:45:2c:f9:48:ae:e6:c9:3e:ce:29:c5:3d:07:6d:
e9:9d:69:75:38:3b:14:c3:3c:85:e4:47:c4:d4:16:0e:e4:97:
99:2c:ec:a3:7a:f8:71:9a:31:47:85:1d:cf:ab:5c:13:8f:50:
6a:2f:b9:73:b0:37:2c:62:2a:8c:62:ee:4f:9e:39:cf:a7:50:
f9:d9:1f:8a:63:77:7f:77:b8:a0:b1:4d:bd:d9:09:ee:18:de:
43:8e:0b:4d:43:bf:95:75:c4:6a:3b:7d:61:a4:a0:3f:4b:3d:
c5:5f:b0:1f:68:b3:26:43:75:0a:db:c8:ed:a5:cc:77:97:0b:
38:67:69:98:e7:e4:46:90:27:3d:b2:6b:eb:7e:e6:d2:b6:5b:
33:cf:8f:20:c7:f5:cb:4c:c9:18:b4:97:29:fa:03:40:a5:f4:
9e:47:f3:e7:ef:0f:29:64:3d:2a:df:29:a5:29:0f:b8:11:a2:
a4:11:eb:bd:f0:f3:86:17:f2:28:85:ba:5e:ef:73:d3:d4:cd:
37:54:4e:9b:cf:6b:11:91:df:81:a9:cc:8a:28:04:9c:89:b4:
2f:28:46:ec:5f:bf:fc:c4:79:97:a3:c8:2e:ac:ce:50:f2:05:
a4:66:aa:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:15:00 2025 by rpki-client