Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/cce20b-4d5a-48f8-b88e-81039f3cf3fd/1/oS4yKY44G_4xXIokSQ8OFvG32ns.roa
File: oS4yKY44G_4xXIokSQ8OFvG32ns.roa (raw, json)
Hash identifier: lvi8Z0W6P0EoytdLz1M/HGH0i2Bt7bc1cWMS8fR2dWs=
Subject key identifier: A1:2E:32:29:8E:38:1B:FE:31:5C:8A:24:49:0F:0E:16:F1:B7:DA:7B
Certificate issuer: /CN=7d02fa2c5ba2892045e7cd50a5adfd54d6dbb8c2
Certificate serial: 05159B1D
Authority key identifier: 7D:02:FA:2C:5B:A2:89:20:45:E7:CD:50:A5:AD:FD:54:D6:DB:B8:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQL6LFuiiSBF581Qpa39VNbbuMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/cce20b-4d5a-48f8-b88e-81039f3cf3fd/1/oS4yKY44G_4xXIokSQ8OFvG32ns.roa
Signing time: Sat 01 Jan 2022 07:54:06 +0000
ROA not before: Sat 01 Jan 2022 07:54:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205561
IP address blocks: 185.160.220.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85302045 (0x5159b1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d02fa2c5ba2892045e7cd50a5adfd54d6dbb8c2
Validity
Not Before: Jan 1 07:54:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a12e32298e381bfe315c8a24490f0e16f1b7da7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:51:df:82:ce:5b:69:f8:b1:1f:9a:08:db:77:
39:7c:bf:20:73:9f:ae:15:94:12:7f:f1:f6:35:b7:
e4:44:8f:8e:7a:b2:cb:f2:79:a0:cf:38:d9:11:04:
6a:bc:38:b2:a7:79:64:ca:51:df:bf:5f:c5:10:eb:
b2:61:da:b1:cb:66:a5:a1:9e:49:ec:25:66:07:ca:
7d:3b:13:e2:3c:ab:a5:e5:70:fc:f6:ae:8c:49:13:
a2:e1:c9:aa:97:1f:02:12:e9:8e:23:41:de:23:b2:
f7:b0:7d:f6:21:12:e1:c1:02:dc:3a:78:a9:75:6e:
d4:73:f6:0e:1d:9b:7c:20:21:fe:5a:70:0e:de:34:
ab:60:a1:bb:bf:24:76:ca:8a:8c:aa:c8:55:8f:54:
0b:fe:1e:ac:f1:e0:ec:6b:2a:e8:34:e8:fb:b6:30:
0b:01:39:f1:fd:e7:d2:ba:89:14:3a:33:d5:9c:0e:
22:47:a0:7a:e1:29:04:70:6c:f1:d4:30:8f:15:cf:
56:69:69:b9:9e:f6:10:b2:f5:43:99:45:38:07:70:
f3:20:a5:03:c9:6f:fb:26:03:d2:7e:a5:25:dd:9f:
97:3b:19:57:38:24:0f:fc:8a:9d:d0:92:10:bc:98:
62:f4:8d:e2:b9:b0:42:08:41:46:1f:fd:5c:4f:5c:
69:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:2E:32:29:8E:38:1B:FE:31:5C:8A:24:49:0F:0E:16:F1:B7:DA:7B
X509v3 Authority Key Identifier:
keyid:7D:02:FA:2C:5B:A2:89:20:45:E7:CD:50:A5:AD:FD:54:D6:DB:B8:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQL6LFuiiSBF581Qpa39VNbbuMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/cce20b-4d5a-48f8-b88e-81039f3cf3fd/1/oS4yKY44G_4xXIokSQ8OFvG32ns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/cce20b-4d5a-48f8-b88e-81039f3cf3fd/1/fQL6LFuiiSBF581Qpa39VNbbuMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.160.220.0/22
Signature Algorithm: sha256WithRSAEncryption
31:77:85:3b:83:5a:6a:73:b3:e8:6d:44:5b:d0:d2:1b:d1:8b:
15:8b:d0:56:7b:1e:61:b9:53:92:47:08:6e:77:72:14:d3:b2:
8e:d2:e7:62:b3:43:1e:f0:cb:b1:10:b4:b9:8c:dd:dd:24:60:
32:c3:47:00:99:81:97:70:3c:15:f6:6d:85:c7:9c:33:34:2c:
d0:25:02:1f:aa:7d:a0:b8:74:a0:a3:6a:bb:41:dd:13:9c:c7:
16:d2:2b:ee:40:d3:fc:56:c2:c4:9b:d5:f7:e3:a0:db:1f:0c:
56:3e:c1:af:64:fd:a0:9e:c4:8a:98:63:4b:d8:1c:74:c3:c7:
a2:81:e3:74:58:96:24:a4:02:b9:97:3b:8a:3a:3c:f5:33:d0:
26:e5:3f:67:3f:79:ed:a7:c4:93:dc:34:0e:fd:99:c9:b8:2f:
14:c3:a7:a6:d9:64:af:19:72:d2:1b:f4:25:fa:98:50:d8:30:
5a:fe:05:1a:2e:53:98:54:79:6d:9b:f8:7f:40:4f:1b:d2:02:
12:08:5e:19:58:77:61:ee:cf:93:c7:d3:f2:a8:57:30:5d:3c:
3e:67:bc:51:20:1e:c4:cc:db:86:d6:5f:74:84:19:22:76:ee:
34:c6:1c:67:66:0f:2d:c7:c7:c8:af:ef:44:ee:9a:ab:19:d9:
5a:85:b2:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:01:31 2025 by rpki-client