Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/c6d092-cc60-4a51-b010-0a6e6dfbd2e3/1/LiN965DDdgXLP7krtjO-YTMbaf4.roa
File: LiN965DDdgXLP7krtjO-YTMbaf4.roa (raw, json)
Hash identifier: wPCpgFOY7PDAswuhZZxgrPBV28ZpR6Nvvv6opnhHmzQ=
Subject key identifier: 2E:23:7D:EB:90:C3:76:05:CB:3F:B9:2B:B6:33:BE:61:33:1B:69:FE
Certificate issuer: /CN=454bf58119cfe99f1749bcd9bd124702ba9cb713
Certificate serial: 01CD3153
Authority key identifier: 45:4B:F5:81:19:CF:E9:9F:17:49:BC:D9:BD:12:47:02:BA:9C:B7:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RUv1gRnP6Z8XSbzZvRJHArqctxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/c6d092-cc60-4a51-b010-0a6e6dfbd2e3/1/LiN965DDdgXLP7krtjO-YTMbaf4.roa
Signing time: Sat 01 Jan 2022 00:57:54 +0000
ROA not before: Sat 01 Jan 2022 00:57:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47952
IP address blocks: 185.225.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30224723 (0x1cd3153)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=454bf58119cfe99f1749bcd9bd124702ba9cb713
Validity
Not Before: Jan 1 00:57:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e237deb90c37605cb3fb92bb633be61331b69fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:7b:5e:23:df:00:95:66:fc:39:ac:d4:20:e2:
83:06:d0:20:58:3f:ea:7d:5a:82:9b:6a:62:bb:f9:
49:60:9b:22:a3:26:28:43:d9:c4:36:af:39:72:a8:
e9:e5:49:6c:0e:02:19:64:96:06:3b:e2:22:59:ad:
95:44:45:95:7a:9d:34:fe:8b:f1:a4:54:dc:54:82:
42:e0:38:e4:bc:57:7b:75:14:4f:8b:f9:9f:f7:83:
0d:61:19:72:2d:0c:f8:5e:0e:53:3a:73:5c:90:d4:
b4:01:26:35:1e:37:6f:0a:84:16:3b:db:cf:c6:94:
be:e5:28:a0:22:bf:99:05:f4:93:ce:c1:70:45:51:
ed:65:f6:9f:91:59:9d:f8:71:31:33:b5:bb:f3:21:
08:0a:dd:1d:c4:59:fd:a7:72:3d:4a:4a:57:a5:05:
8b:a5:24:68:15:50:9e:b8:97:62:be:2b:73:96:fd:
c0:9e:45:eb:7d:98:3f:5f:90:69:49:bb:7e:f2:73:
41:23:d2:fd:da:69:ce:aa:bc:16:4a:2e:7c:38:f5:
d7:19:2e:16:aa:fc:20:a3:49:1c:77:b9:e6:20:64:
79:fa:f0:43:8c:01:50:6d:c7:86:20:51:23:dc:16:
e0:97:0b:ba:22:18:e9:6d:f3:5a:31:0f:e1:47:1c:
d3:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:23:7D:EB:90:C3:76:05:CB:3F:B9:2B:B6:33:BE:61:33:1B:69:FE
X509v3 Authority Key Identifier:
keyid:45:4B:F5:81:19:CF:E9:9F:17:49:BC:D9:BD:12:47:02:BA:9C:B7:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RUv1gRnP6Z8XSbzZvRJHArqctxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/c6d092-cc60-4a51-b010-0a6e6dfbd2e3/1/LiN965DDdgXLP7krtjO-YTMbaf4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/c6d092-cc60-4a51-b010-0a6e6dfbd2e3/1/RUv1gRnP6Z8XSbzZvRJHArqctxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.167.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:11:30:a1:0d:67:00:96:52:2d:27:b8:bd:aa:01:af:d4:e9:
0b:5f:5c:09:e0:04:74:62:f0:f9:bb:6b:3a:e9:0c:4c:19:be:
cf:b4:3e:a2:88:56:e2:9a:b9:4d:98:d7:25:5c:56:93:31:70:
94:80:32:d4:dd:b5:89:9b:d9:5d:74:cf:12:0d:e3:50:76:61:
4f:e6:b5:9b:64:d2:21:48:2c:2f:c7:ae:c6:56:eb:6d:2d:47:
ae:2e:1c:e2:34:9d:f8:d1:e1:fc:a2:ba:a1:97:fe:6b:f6:47:
ac:02:93:b9:dc:a2:42:2a:a1:d9:c0:10:58:54:09:1b:7c:11:
12:0f:1c:17:4a:85:bf:c2:e1:2e:65:e9:df:cc:aa:91:15:68:
de:7a:a0:d8:84:02:d2:78:16:b0:20:fd:26:66:8e:3d:29:48:
0c:fe:07:8f:37:93:b3:f5:93:3c:2c:37:d3:3a:11:44:a8:67:
aa:ab:af:c9:2e:76:2d:fa:0a:c8:c7:02:c0:b0:b6:a5:ae:f2:
7f:a0:18:1a:43:b8:0a:d5:8c:9a:ac:9c:a7:62:bc:18:4e:77:
64:78:9c:d9:21:a6:cb:a6:c5:21:b2:34:ff:bc:1d:a9:81:64:
e3:d7:5c:a9:51:cc:3c:f6:4b:07:dc:6c:a1:b9:1d:37:9e:63:
c5:d5:b3:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:19:45 2025 by rpki-client