Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/loaZns1j7wSxwN2jaWgH19cJJCQ.roa
File: loaZns1j7wSxwN2jaWgH19cJJCQ.roa (raw, json)
Hash identifier: ntpplqJkK/S3EWuYx6IHUSMcTV0lZwh8b6hrBmvrZFg=
Subject key identifier: 96:86:99:9E:CD:63:EF:04:B1:C0:DD:A3:69:68:07:D7:D7:09:24:24
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 018C13FB3E788BF50D51E4C20F68A281F4BD
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/loaZns1j7wSxwN2jaWgH19cJJCQ.roa
Signing time: Tue 28 Nov 2023 03:31:21 +0000
ROA not before: Tue 28 Nov 2023 03:31:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400402
IP address blocks: 185.245.1.0/24 maxlen: 24
185.245.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:13:fb:3e:78:8b:f5:0d:51:e4:c2:0f:68:a2:81:f4:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Nov 28 03:31:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9686999ecd63ef04b1c0dda3696807d7d7092424
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:72:83:93:fa:e1:91:dc:96:cb:32:33:c3:3e:
19:bc:1e:33:55:97:c1:91:3f:96:2f:1b:c1:b6:f1:
67:be:63:59:6a:0f:a6:3b:75:10:9c:07:1b:32:1b:
e6:ec:79:1e:22:36:a1:46:57:27:8e:46:b9:01:4e:
36:46:fe:e1:71:ec:22:b3:8f:0c:e3:62:0c:ba:84:
02:e2:55:21:a9:a0:87:40:26:21:2d:56:c3:92:9b:
f3:f5:56:cb:79:03:9b:98:09:2e:70:6d:41:0a:f2:
f7:75:96:d7:60:fe:ab:3a:51:69:dd:00:21:48:7e:
d2:82:05:0b:2c:31:77:22:e2:1a:92:19:cc:50:a4:
5a:0f:dd:3a:ed:75:47:2a:b3:83:3a:c1:5b:57:5a:
a8:d1:95:2a:d0:51:f0:6d:46:61:6f:0d:58:40:c4:
2d:51:db:a2:e7:78:98:65:22:cd:96:06:f6:52:e2:
78:94:35:6f:f5:25:09:99:01:cf:d4:c8:c4:d3:97:
e6:4c:be:1a:f1:ae:7a:ea:44:83:10:99:7c:99:63:
d4:a4:20:70:59:b3:63:64:3e:8f:53:de:ec:45:c4:
d2:c9:47:26:c5:bb:89:06:ea:51:3e:59:26:de:4e:
60:d5:6c:b3:07:1f:44:44:34:69:5a:cc:23:f0:73:
51:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:86:99:9E:CD:63:EF:04:B1:C0:DD:A3:69:68:07:D7:D7:09:24:24
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/loaZns1j7wSxwN2jaWgH19cJJCQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.245.1.0/24
185.245.3.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:40:5c:ef:97:d4:15:76:37:ac:b4:8e:94:db:f6:56:95:98:
46:80:54:a1:8f:82:35:1d:a8:e3:9e:40:78:46:a2:09:49:ff:
df:e8:11:dc:2b:a2:2e:d7:31:29:e4:14:d8:37:76:1d:92:f2:
45:c2:66:a9:ba:54:37:33:90:df:97:59:2b:5e:8d:be:43:28:
be:2f:99:bc:25:d9:7f:83:ad:db:14:f4:c8:39:70:fe:62:55:
88:d7:4b:49:96:71:bd:b9:ec:b4:81:c1:f4:9b:c8:a1:f8:79:
f5:fe:a6:10:87:9f:79:82:50:8c:c3:9c:5d:70:ec:ac:88:55:
22:ae:21:36:75:8e:aa:d3:d6:61:5a:91:95:b5:1d:73:0a:f8:
a6:77:7a:e3:b2:bc:8f:c2:67:2d:76:de:cd:68:e6:38:d5:74:
3f:ce:8d:60:33:e1:40:06:2c:39:4b:3b:c0:e2:3d:ce:c4:0f:
b5:e1:de:c8:0a:90:b5:f3:20:ba:88:b1:48:e4:b2:c7:80:3d:
ab:be:db:8f:86:ca:98:8d:bd:8c:42:18:17:7e:39:8e:56:fd:
5e:ad:07:2a:e0:af:7f:67:92:16:d3:69:ba:09:c9:bd:8d:22:
0f:12:17:db:7e:e2:29:1f:17:f7:99:6b:5e:5a:d6:06:10:c8:
6d:bc:6c:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:14:54 2025 by rpki-client