Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/iCzOChuAjyovg3ho3i2Y3OfQerw.roa
File: iCzOChuAjyovg3ho3i2Y3OfQerw.roa (raw, json)
Hash identifier: zqsuCCBslnGyT1YzsuOO7ybmlyFhJFzzr1jOTW8Uq7c=
Subject key identifier: 88:2C:CE:0A:1B:80:8F:2A:2F:83:78:68:DE:2D:98:DC:E7:D0:7A:BC
Certificate issuer: /CN=a366f35bac61a0abf71d18d6b1063d5c933a24ab
Certificate serial: 05D03F24
Authority key identifier: A3:66:F3:5B:AC:61:A0:AB:F7:1D:18:D6:B1:06:3D:5C:93:3A:24:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/iCzOChuAjyovg3ho3i2Y3OfQerw.roa
Signing time: Sat 01 Jan 2022 09:59:36 +0000
ROA not before: Sat 01 Jan 2022 09:59:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201535
IP address blocks: 185.71.164.0/22 maxlen: 22
2a05:34c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97533732 (0x5d03f24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a366f35bac61a0abf71d18d6b1063d5c933a24ab
Validity
Not Before: Jan 1 09:59:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=882cce0a1b808f2a2f837868de2d98dce7d07abc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:6f:b6:b6:a3:72:bd:37:c1:47:1b:ea:88:c7:
cf:a4:44:8e:a0:4e:52:7d:d2:51:ac:73:d6:34:e5:
66:01:53:90:87:0b:f2:a8:88:9e:e5:91:46:a2:1e:
af:38:7f:1b:47:9c:34:f9:3d:ca:9d:61:fb:d5:51:
1f:6f:4d:49:bc:10:54:a5:d7:09:c3:fc:c8:f7:b0:
28:a1:af:87:84:20:9f:55:a9:5a:5b:64:f4:39:34:
96:15:60:6a:ea:8d:94:1b:18:77:d6:72:db:df:54:
b1:39:2e:94:4a:dc:14:aa:a8:c7:3b:7b:1c:10:b1:
98:d5:d6:34:34:34:c0:b8:3f:43:b6:65:26:84:1a:
90:24:9a:c9:4c:fe:cb:b3:e8:ee:d6:be:9e:2f:6b:
85:2c:c9:40:be:53:93:21:39:66:fc:d7:52:fb:51:
f7:81:13:0a:ca:59:a5:29:77:ad:bf:4b:13:9c:72:
5e:da:a5:6e:de:83:5c:06:88:13:7e:41:81:fa:ce:
aa:82:a6:e8:d2:5b:8d:ae:64:27:a9:e7:76:f4:dc:
27:b8:ec:37:54:95:f2:07:07:b3:d0:04:51:1f:3a:
b4:c3:a1:4c:f1:13:d4:e7:9a:5b:fc:07:6c:80:28:
c5:87:e7:ec:15:5a:2c:d2:fd:88:c6:0f:27:45:63:
83:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:2C:CE:0A:1B:80:8F:2A:2F:83:78:68:DE:2D:98:DC:E7:D0:7A:BC
X509v3 Authority Key Identifier:
keyid:A3:66:F3:5B:AC:61:A0:AB:F7:1D:18:D6:B1:06:3D:5C:93:3A:24:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/iCzOChuAjyovg3ho3i2Y3OfQerw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.164.0/22
IPv6:
2a05:34c0::/29
Signature Algorithm: sha256WithRSAEncryption
2c:b9:1d:7b:ce:04:7f:3e:04:ed:52:c4:2e:47:15:02:9b:56:
13:44:f9:3a:ef:1b:c2:32:32:91:3b:ef:15:69:b5:b6:f1:d1:
d8:de:66:d6:fe:71:c5:7d:3d:02:8c:d5:33:31:bc:2e:0c:a3:
c2:96:c4:46:99:df:0a:2f:ac:80:50:f1:08:ba:8b:4b:19:e0:
91:8b:ee:8d:67:5c:67:a2:a2:90:e4:f9:8c:b6:b4:f1:cd:b6:
61:82:cb:bf:79:5a:39:c3:40:9a:e9:2f:c0:fd:3b:cb:c4:46:
35:fe:f2:f4:2e:ce:fd:28:31:10:3f:3a:d0:88:cc:a3:fe:db:
53:65:2f:47:25:8e:fe:92:c2:ac:ab:2b:9e:ca:c1:81:d3:ce:
fa:71:e5:99:ec:53:05:96:ad:4e:6c:85:de:fc:1c:fc:c4:50:
d1:02:83:cd:7e:e1:43:72:14:aa:28:8a:3f:9c:47:6c:ef:53:
6b:26:95:f5:03:3a:5f:ce:4c:0b:bc:0f:fe:90:49:fd:94:c7:
f1:6d:a7:29:61:4f:82:8f:18:10:e9:01:68:fb:08:f7:14:f5:
9e:e5:b3:3e:22:0b:24:3c:ea:73:3e:ac:27:ea:f0:cf:68:40:
b0:d2:3e:d5:00:30:4c:39:67:55:c2:38:0d:71:f5:34:73:6f:
9b:9e:8b:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:28:09 2025 by rpki-client