Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/TeOZnXUm_x1p8XXA4zb2SmCwFeU.roa
File: TeOZnXUm_x1p8XXA4zb2SmCwFeU.roa (raw, json)
Hash identifier: 6ZRUJhy+NbzIpLDNMuDUBszyG9eDMiqRRv7A9FPGsk8=
Subject key identifier: 4D:E3:99:9D:75:26:FF:1D:69:F1:75:C0:E3:36:F6:4A:60:B0:15:E5
Certificate issuer: /CN=992b86095ce558d2e9618728a44228a27be9098f
Certificate serial: 018505A8B55C1C7D318476281A07159D01AC
Authority key identifier: 99:2B:86:09:5C:E5:58:D2:E9:61:87:28:A4:42:28:A2:7B:E9:09:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mSuGCVzlWNLpYYcopEIoonvpCY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/TeOZnXUm_x1p8XXA4zb2SmCwFeU.roa
Signing time: Mon 12 Dec 2022 09:27:00 +0000
ROA not before: Mon 12 Dec 2022 09:27:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200019
IP address blocks: 166.108.176.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:05:a8:b5:5c:1c:7d:31:84:76:28:1a:07:15:9d:01:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=992b86095ce558d2e9618728a44228a27be9098f
Validity
Not Before: Dec 12 09:27:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4de3999d7526ff1d69f175c0e336f64a60b015e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:19:bd:c3:93:5a:1b:f6:85:8b:e2:63:1d:94:
af:c6:19:99:1d:fe:d7:9d:a6:06:61:a2:7c:53:03:
e8:1e:d3:2d:95:ec:ef:51:e0:a8:9b:1e:74:c5:91:
8b:55:58:93:80:b0:bc:49:8e:55:6e:fc:64:3e:17:
6e:15:33:b3:72:69:37:38:0e:e4:1c:5d:35:e3:79:
3d:73:b2:57:e2:a8:0a:a7:9b:65:20:f4:38:65:d9:
f7:7b:24:ff:3f:a6:77:b7:83:c4:51:36:c7:1f:bf:
3c:04:06:00:27:db:f4:aa:46:d2:64:08:1a:2b:38:
5e:55:59:01:ee:59:d6:d3:66:79:73:13:1f:30:85:
38:67:c1:52:35:4e:4b:a8:66:d1:c6:e4:1c:0e:53:
52:74:e3:90:fe:20:58:ff:ca:21:88:7f:f6:0c:9e:
f6:57:2b:8e:e1:11:79:21:9f:f7:f9:cc:74:d8:ca:
70:90:f5:96:e4:0d:b1:1b:8f:0d:74:18:e6:47:9f:
e6:6b:ef:71:33:75:c5:81:ce:19:bb:99:4e:4c:6a:
37:4a:ed:9f:12:fc:f9:81:ba:63:1d:65:a7:fb:af:
5b:57:50:8c:1d:47:d0:5f:c0:0d:fc:8e:d4:8e:3a:
01:53:98:9a:79:3c:a5:30:e7:c2:5a:96:1a:f7:64:
9b:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:E3:99:9D:75:26:FF:1D:69:F1:75:C0:E3:36:F6:4A:60:B0:15:E5
X509v3 Authority Key Identifier:
keyid:99:2B:86:09:5C:E5:58:D2:E9:61:87:28:A4:42:28:A2:7B:E9:09:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mSuGCVzlWNLpYYcopEIoonvpCY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/TeOZnXUm_x1p8XXA4zb2SmCwFeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/mSuGCVzlWNLpYYcopEIoonvpCY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
166.108.176.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:51:3b:59:fc:ee:cb:2f:88:c9:0d:90:1c:b6:70:1e:90:23:
a1:cd:92:c1:9a:6e:ed:1a:7c:98:09:90:4a:d6:1b:f8:ae:18:
76:e1:74:b5:98:93:e5:68:7f:cf:36:94:6e:9a:d8:dc:a2:18:
f7:d0:6f:2e:2e:bb:84:ca:65:72:dd:69:6f:ae:2b:a9:f9:b3:
43:b3:15:47:10:b5:47:db:42:fa:88:a6:95:e0:e7:75:0e:e9:
4a:88:e1:aa:49:80:53:00:e2:5f:56:59:94:90:10:85:d4:88:
11:44:ab:cd:f4:56:62:bb:b2:66:a4:0b:1e:11:87:c5:23:77:
ab:5e:20:c1:98:f0:45:aa:15:a1:36:79:31:e0:82:9d:58:d9:
b1:e0:1f:41:ed:0c:29:82:10:cd:1a:99:cb:a8:47:33:cc:89:
0c:f1:63:15:36:5a:9f:4f:32:ee:89:2d:51:60:ee:5d:a4:8b:
31:98:9e:ca:2d:96:f1:1a:5a:58:a3:10:4b:55:29:8c:6f:9e:
5e:29:63:0a:34:7c:5b:0c:56:96:a1:73:0c:d9:bf:1f:e8:3e:
8b:80:55:d7:29:3e:32:90:d3:57:d0:1c:ef:61:14:ac:0c:ca:
4f:4b:63:34:0d:fa:2c:05:bb:f4:a6:de:96:b2:f1:c7:80:a7:
99:a2:d6:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:33:11 2025 by rpki-client