Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/b75de2-b997-4bd3-b1ef-c7571ee1d99b/1/Ln9__diYuNDz-Ndcnsim7UxHBeQ.roa
File: Ln9__diYuNDz-Ndcnsim7UxHBeQ.roa (raw, json)
Hash identifier: 5+FR0pYY4p1cnzCgWVgcBZTpxi8f53NZLL6/1rb9Dl0=
Subject key identifier: 2E:7F:7F:FD:D8:98:B8:D0:F3:F8:D7:5C:9E:C8:A6:ED:4C:47:05:E4
Certificate issuer: /CN=0199bfbb331f270932ef3f82f03add0c0b2f1572
Certificate serial: 018573684BCF03F9ABF1973526033266EA60
Authority key identifier: 01:99:BF:BB:33:1F:27:09:32:EF:3F:82:F0:3A:DD:0C:0B:2F:15:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AZm_uzMfJwky7z-C8DrdDAsvFXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/b75de2-b997-4bd3-b1ef-c7571ee1d99b/1/Ln9__diYuNDz-Ndcnsim7UxHBeQ.roa
Signing time: Mon 02 Jan 2023 16:54:52 +0000
ROA not before: Mon 02 Jan 2023 16:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56911
IP address blocks: 185.159.48.0/22 maxlen: 24
2a07:b2c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:68:4b:cf:03:f9:ab:f1:97:35:26:03:32:66:ea:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0199bfbb331f270932ef3f82f03add0c0b2f1572
Validity
Not Before: Jan 2 16:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2e7f7ffdd898b8d0f3f8d75c9ec8a6ed4c4705e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:c9:d1:75:01:91:4e:c1:9d:f7:06:45:18:49:
15:9d:b4:74:3c:85:f7:29:52:32:69:b0:73:52:01:
e5:c5:26:09:98:a5:b2:05:fb:39:75:fb:a1:8b:eb:
e4:4e:82:f9:e0:d3:25:f1:b4:23:2a:89:af:11:01:
18:04:91:eb:40:d8:74:e9:ac:e2:05:f2:1a:30:a7:
e2:d0:ae:b3:b3:d6:22:46:2f:cb:c9:7d:ed:d9:03:
f6:62:fd:bc:ad:36:75:6b:7a:60:19:80:bb:68:4c:
59:c3:d2:ce:5c:66:4a:a6:06:b4:62:27:e4:2c:3f:
d5:2b:16:ca:c4:ab:fd:78:2a:4b:e4:dd:07:93:e6:
46:ee:89:3f:3f:50:8a:f0:32:89:fd:e3:d0:15:88:
be:39:a9:04:f9:95:76:86:39:3d:b0:c4:9c:fb:50:
1f:5e:d5:d2:71:3c:cb:fc:61:26:67:fa:94:82:7e:
3b:0a:46:6f:07:a2:38:6c:2c:76:81:33:f8:1e:b8:
61:4c:23:e7:f6:a8:16:79:c5:6b:17:35:0c:e1:6d:
26:ce:6e:04:53:45:ee:14:93:32:13:c1:b2:17:1f:
ea:05:cd:23:c3:00:a0:b6:4a:fd:c3:66:bb:5a:8b:
59:7f:8d:d8:5d:cc:df:90:c1:92:8d:bd:40:c4:45:
c0:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:7F:7F:FD:D8:98:B8:D0:F3:F8:D7:5C:9E:C8:A6:ED:4C:47:05:E4
X509v3 Authority Key Identifier:
keyid:01:99:BF:BB:33:1F:27:09:32:EF:3F:82:F0:3A:DD:0C:0B:2F:15:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AZm_uzMfJwky7z-C8DrdDAsvFXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/b75de2-b997-4bd3-b1ef-c7571ee1d99b/1/Ln9__diYuNDz-Ndcnsim7UxHBeQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/b75de2-b997-4bd3-b1ef-c7571ee1d99b/1/AZm_uzMfJwky7z-C8DrdDAsvFXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.159.48.0/22
IPv6:
2a07:b2c0::/32
Signature Algorithm: sha256WithRSAEncryption
05:6c:21:ff:3b:ab:87:49:1c:d6:ec:49:21:c3:72:c7:92:bd:
a6:c3:2c:31:34:8f:bf:d9:2e:bf:b6:dd:67:9d:9a:ce:15:9a:
46:96:e4:d7:35:13:cb:e7:df:a5:3b:0c:22:b0:e8:c3:af:e8:
cd:46:b2:88:c6:57:dd:35:12:52:50:20:91:3b:77:ec:a1:fa:
71:b5:9c:6c:21:25:22:57:2d:61:5d:e9:ca:9c:e5:5d:d7:b8:
17:96:82:04:e1:0d:59:87:11:e9:b3:6d:2a:00:22:88:7d:c6:
94:79:c5:42:ee:c0:eb:3c:65:37:22:3e:a5:a2:ac:71:ec:d4:
4c:52:63:c1:38:28:e4:b2:b2:e7:5d:fd:bc:bf:ae:1b:40:4f:
e5:09:d3:5f:05:68:2a:cc:02:46:df:c1:db:c2:73:e5:fa:cc:
70:eb:32:dc:89:75:3b:f4:f2:ff:03:2a:a5:7b:67:fb:9a:8c:
c0:26:83:71:0d:cc:9c:0e:f3:eb:19:ed:67:63:fc:71:80:05:
c1:60:2c:43:1a:7d:f5:65:cb:f7:36:3b:0d:06:03:5a:cb:0b:
34:5b:0e:e4:84:5c:47:53:81:4c:e4:01:4d:fc:92:2b:a1:ec:
87:99:79:d8:60:53:33:a5:ef:32:bd:ae:2c:f0:c9:d3:a5:04:
ea:d8:70:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:16:33 2025 by rpki-client