Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Iwo90_S82RVlnhQvycFCMi7ENBk.roa
File: Iwo90_S82RVlnhQvycFCMi7ENBk.roa (raw, json)
Hash identifier: zYq/ME1hyNGUi8LXHT8pnj12zMrQkuS0/GA6ODws1ig=
Subject key identifier: 23:0A:3D:D3:F4:BC:D9:15:65:9E:14:2F:C9:C1:42:32:2E:C4:34:19
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 278E2311
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Iwo90_S82RVlnhQvycFCMi7ENBk.roa
Signing time: Sat 01 Jan 2022 16:08:18 +0000
ROA not before: Sat 01 Jan 2022 16:08:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43875
IP address blocks: 185.67.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 663626513 (0x278e2311)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=230a3dd3f4bcd915659e142fc9c142322ec43419
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3e:cc:de:88:f6:51:bc:be:60:0b:c8:fb:5c:
d6:cc:19:31:2b:a0:66:47:0a:bc:1e:4f:ea:57:21:
7b:99:37:6d:ec:79:6c:84:bf:c4:4a:b5:1a:9b:c2:
bc:ad:89:33:36:d5:ab:b3:46:74:4c:c1:c3:d6:ae:
d2:2b:3a:e0:35:31:7a:e0:f2:72:8e:67:4d:71:a3:
17:e2:eb:58:96:fe:28:18:f7:6a:f1:c4:dd:af:f3:
14:72:c1:b7:72:51:05:b7:6a:89:05:91:ad:f9:99:
9f:e9:b2:f6:2d:65:ea:a3:a3:e9:2d:e8:c6:e8:dc:
9b:c7:b3:19:bb:03:f5:2d:78:99:9b:18:8e:3e:ff:
2f:dd:e3:49:12:b1:0f:38:4f:be:b6:2b:60:52:51:
f3:dc:07:08:a6:a3:5a:44:d8:b5:4d:eb:0f:7f:da:
74:ca:d4:d1:58:41:fc:e9:ff:93:36:7d:7f:2f:46:
66:4f:de:ea:ff:8c:09:9d:f1:4f:46:85:86:13:21:
e9:70:59:7a:b5:09:56:b1:8f:47:e7:6b:c6:18:41:
86:c7:02:78:ce:6e:a5:91:36:70:2a:e2:d7:76:a6:
79:b3:b9:c7:de:85:d9:16:08:b5:03:d4:7a:df:e0:
64:12:6b:a5:f5:2b:66:7d:a8:f1:b7:35:91:29:4f:
d9:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:0A:3D:D3:F4:BC:D9:15:65:9E:14:2F:C9:C1:42:32:2E:C4:34:19
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Iwo90_S82RVlnhQvycFCMi7ENBk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.67.252.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:a5:1d:ce:ef:02:65:93:fe:78:e9:43:14:bc:d2:1d:53:27:
f0:bd:45:db:65:bc:01:7d:5e:14:96:aa:76:c8:e4:d6:b0:17:
b8:ea:a8:ce:7b:99:e4:79:5a:fb:fd:d0:32:b7:a4:cb:e8:67:
66:dc:bb:c3:67:9c:7c:54:22:a3:a7:e0:f0:d3:c5:fb:d8:b6:
1e:24:9a:bd:33:bc:b1:50:71:06:27:b7:fe:a5:f7:be:7f:c3:
e3:c3:76:a0:d7:a4:c5:5f:74:39:c1:3e:d6:74:d8:6a:a3:9a:
bf:80:0f:c8:89:92:3d:ef:94:e4:c9:72:14:64:87:57:84:7b:
eb:db:60:4a:c9:96:d8:2c:38:6d:16:bf:db:78:4e:f2:97:f4:
ae:47:91:0c:e9:3f:f7:0a:b5:9e:d5:39:ee:44:0a:76:2a:5e:
35:47:6e:77:e6:7f:53:7b:5e:5f:8e:86:ee:3a:05:99:33:38:
49:9c:9b:3c:86:c6:03:a1:e6:6a:7f:b4:39:4c:b6:b2:45:c1:
94:24:e6:10:5b:93:2e:d3:91:78:d2:93:92:54:96:d0:10:28:
a1:9c:ba:80:44:c6:55:25:e8:f6:60:f0:07:81:63:c7:9d:f5:
34:f5:9e:d2:dd:8b:f8:29:d6:48:b6:c0:57:29:cd:c5:8a:28:
74:17:ad:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:08:20 2025 by rpki-client