Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/4a0cdc-e7fe-450e-97ec-29095ad1cced/1/miSP8n7u3SMsASOa4Hk93nwGpd4.roa
File: miSP8n7u3SMsASOa4Hk93nwGpd4.roa (raw, json)
Hash identifier: K9ByaJ/mt/xPFKiG/x5aapCNHama197E7Waq/GCRyxE=
Subject key identifier: 9A:24:8F:F2:7E:EE:DD:23:2C:01:23:9A:E0:79:3D:DE:7C:06:A5:DE
Certificate issuer: /CN=4bd444c864e9e85d35376e0f68281799f6281f14
Certificate serial: A4DB
Authority key identifier: 4B:D4:44:C8:64:E9:E8:5D:35:37:6E:0F:68:28:17:99:F6:28:1F:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S9REyGTp6F01N24PaCgXmfYoHxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/4a0cdc-e7fe-450e-97ec-29095ad1cced/1/miSP8n7u3SMsASOa4Hk93nwGpd4.roa
Signing time: Mon 24 Jan 2022 18:09:20 +0000
ROA not before: Mon 24 Jan 2022 18:09:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49788
IP address blocks: 185.13.92.0/22 maxlen: 22
2a02:f480::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42203 (0xa4db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bd444c864e9e85d35376e0f68281799f6281f14
Validity
Not Before: Jan 24 18:09:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a248ff27eeedd232c01239ae0793dde7c06a5de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:0b:4a:90:18:ce:d9:9e:87:2e:40:ce:0b:0d:
76:01:a7:bc:cf:04:a3:1e:18:08:e7:1e:65:f8:73:
35:d4:25:a1:8e:71:85:6b:fe:2d:72:77:81:dc:c8:
e5:9f:35:e0:b7:ab:1d:20:45:c3:19:20:aa:02:5e:
45:80:f9:12:eb:22:15:7e:93:be:e0:d3:00:4f:88:
1f:73:a3:b3:9d:72:86:1d:a6:c6:af:68:53:67:2c:
72:c6:22:9e:3a:61:0d:56:3b:9a:2c:c2:cb:9b:94:
fe:51:47:12:87:06:cb:ed:e6:30:58:f2:fe:c2:2d:
24:19:27:35:39:b9:fe:21:03:e3:12:7c:eb:5e:9e:
dd:ad:a0:c6:0a:c5:75:27:ad:c4:d6:e2:bc:fa:19:
bd:7d:e1:ae:a8:e6:f1:85:a1:b5:8f:7b:b2:e1:c9:
7e:c0:b8:60:e9:c8:6d:f2:77:29:59:0b:5e:78:82:
8e:4c:cf:c8:fe:dd:ca:e6:09:e2:a3:3f:62:94:92:
28:d9:0d:5a:ac:c9:ab:72:f3:e8:01:b7:ce:b9:5a:
98:b9:04:38:de:3e:ae:4d:7b:9a:5a:44:10:7d:c1:
e5:77:ee:41:21:de:49:80:dd:56:a7:1b:27:e4:f2:
77:26:5f:7c:05:db:40:96:77:f9:a7:cd:b5:7a:5c:
59:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:24:8F:F2:7E:EE:DD:23:2C:01:23:9A:E0:79:3D:DE:7C:06:A5:DE
X509v3 Authority Key Identifier:
keyid:4B:D4:44:C8:64:E9:E8:5D:35:37:6E:0F:68:28:17:99:F6:28:1F:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S9REyGTp6F01N24PaCgXmfYoHxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/4a0cdc-e7fe-450e-97ec-29095ad1cced/1/miSP8n7u3SMsASOa4Hk93nwGpd4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/4a0cdc-e7fe-450e-97ec-29095ad1cced/1/S9REyGTp6F01N24PaCgXmfYoHxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.13.92.0/22
IPv6:
2a02:f480::/29
Signature Algorithm: sha256WithRSAEncryption
0a:d7:48:32:90:de:cd:2d:ce:ef:7c:03:26:3d:e0:27:b5:42:
70:63:be:38:c9:0e:1d:fc:b9:a7:c1:85:d7:9a:c8:c3:6f:fd:
b8:b9:da:9e:c9:af:55:8f:0b:f2:e9:92:21:57:60:80:50:1a:
43:1f:41:5c:18:7f:03:f7:af:8a:5c:81:c1:31:38:bf:a8:58:
23:a0:eb:dd:b1:5f:46:90:23:0f:30:71:36:52:99:45:53:d7:
68:1c:44:61:9b:21:46:f2:ba:e5:76:32:9a:fc:10:36:bc:0c:
0b:70:c4:aa:02:a4:88:20:1e:25:7e:5b:cd:d8:a8:b6:06:7e:
6c:dc:07:2e:90:7e:68:36:a9:68:76:5c:91:fc:2b:90:71:46:
33:4f:37:e0:0e:69:8b:15:77:ce:06:05:5a:54:49:ff:75:8e:
b8:98:15:3c:03:72:ed:db:88:59:27:1d:80:26:17:1d:d6:d7:
ba:53:00:ff:da:13:ce:e8:82:85:52:72:9b:9e:72:31:d6:85:
ce:17:2d:c5:b6:0a:08:c9:19:45:5e:2f:ac:99:89:ba:d7:ee:
5c:bb:b8:66:0a:cd:6f:7b:b5:1e:c3:84:f1:fd:ff:dd:6a:2e:
7a:05:f4:45:26:f1:08:fb:95:ac:73:dc:56:aa:cf:4e:12:97:
1a:93:5a:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:06 2025 by rpki-client