Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/kEQiC2tBeuYGCrR2r6iacGEu4Yk.roa
File: kEQiC2tBeuYGCrR2r6iacGEu4Yk.roa (raw, json)
Hash identifier: vn0Qqtfg4fLt/DeLx7WQTzQSw3YyVaBx/kBPRYJwvlA=
Subject key identifier: 90:44:22:0B:6B:41:7A:E6:06:0A:B4:76:AF:A8:9A:70:61:2E:E1:89
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 08DF4D35
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/kEQiC2tBeuYGCrR2r6iacGEu4Yk.roa
Signing time: Sat 01 Jan 2022 07:01:27 +0000
ROA not before: Sat 01 Jan 2022 07:01:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211252
IP address blocks: 85.92.113.0/24 maxlen: 24
193.107.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148852021 (0x8df4d35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Jan 1 07:01:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9044220b6b417ae6060ab476afa89a70612ee189
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:09:54:ee:5f:65:d4:a5:04:86:fc:c0:a2:b3:
e4:0e:fb:f4:8f:d1:f4:59:8b:80:00:a3:58:41:2d:
6d:73:6e:01:db:47:95:51:e0:fb:ca:76:e8:78:35:
25:65:a2:c1:1a:40:ee:51:5f:76:b4:fe:43:2f:6b:
e7:70:9d:6b:4f:02:8a:45:3c:3c:01:47:3a:25:cf:
98:9f:72:b6:bf:e9:56:6d:c8:5e:aa:e0:09:07:07:
d1:9b:68:7b:83:9c:34:87:81:cc:48:b7:22:d3:40:
8c:88:24:52:67:91:2b:a9:66:c8:d6:12:02:86:cb:
13:d9:b0:d3:8d:53:23:c6:73:62:08:79:9d:73:fb:
69:85:61:c0:f3:82:73:e0:22:20:cc:4b:0d:0a:af:
c6:d9:f7:e6:9c:32:f2:9f:84:43:9b:c8:63:f6:b5:
da:3b:65:d1:a5:e1:9b:f3:00:28:08:0e:24:b9:ef:
96:1b:74:46:8f:d6:34:ac:8c:95:4d:30:87:ed:b3:
43:43:59:d9:63:7f:47:79:26:0d:ed:18:34:66:cd:
9a:a1:79:64:ac:60:cb:92:ed:b9:87:40:75:11:61:
88:c3:25:7d:97:ef:86:56:45:54:55:cf:43:71:95:
39:a9:ec:74:46:16:8a:ea:a6:e2:ef:30:d1:be:ea:
4e:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:44:22:0B:6B:41:7A:E6:06:0A:B4:76:AF:A8:9A:70:61:2E:E1:89
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/kEQiC2tBeuYGCrR2r6iacGEu4Yk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.92.113.0/24
193.107.217.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:97:a9:d0:b0:8f:5f:a9:39:5d:fa:16:5c:46:e6:40:33:12:
93:e9:49:4b:e2:d8:cc:c6:79:61:b8:92:f3:86:75:82:77:a0:
ac:69:b8:8c:eb:d9:fa:4a:44:17:ff:bd:82:c3:8a:dc:63:93:
4d:db:4b:f0:dd:24:3b:0d:a8:6f:7b:6f:80:f8:19:a8:5d:2f:
42:f1:15:70:fb:45:6c:b8:94:04:5e:0b:30:0e:ff:ac:72:e7:
35:42:65:e4:a4:a3:14:1b:5d:5d:4a:0c:cb:d3:6d:19:79:f1:
e7:49:c6:98:75:52:30:d9:a2:7d:f3:0c:dd:21:2b:fc:c2:64:
90:79:54:b2:17:8a:42:30:5f:2d:cd:a0:49:1d:85:11:9b:40:
29:71:4e:11:e5:33:95:b6:d7:8d:0b:b9:16:0c:40:7c:b1:69:
a0:b6:1b:80:5f:9e:39:9f:c0:34:fa:36:14:dd:cc:44:80:58:
57:f1:ea:66:45:8f:0e:08:94:b0:47:fe:8b:a1:36:43:1b:10:
63:09:ff:a4:95:46:08:9b:3c:0e:bf:6d:0c:cc:51:10:9d:7c:
52:02:2f:3a:77:30:d7:97:eb:92:25:14:81:63:c2:93:a3:a9:
16:a4:dd:6b:ee:e8:29:13:65:f4:a5:b3:4e:7f:b0:b8:e2:e2:
f9:52:dd:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:15:23 2025 by rpki-client