Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/k-ozWvP-kAMJ6QTFG4muRz8puLg.roa
File: k-ozWvP-kAMJ6QTFG4muRz8puLg.roa (raw, json)
Hash identifier: J0F9pwYtUy7aEbDuXgMcaHxUweN1wIxtV5suYSVKlF8=
Subject key identifier: 93:EA:33:5A:F3:FE:90:03:09:E9:04:C5:1B:89:AE:47:3F:29:B8:B8
Certificate issuer: /CN=67499595a65aab0b53768def08091e31061e9e65
Certificate serial: 01872DC8D54AB9EB458CC9F387F59D63A471
Authority key identifier: 67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/k-ozWvP-kAMJ6QTFG4muRz8puLg.roa
Signing time: Wed 29 Mar 2023 14:32:29 +0000
ROA not before: Wed 29 Mar 2023 14:32:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42745
IP address blocks: 185.160.192.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:2d:c8:d5:4a:b9:eb:45:8c:c9:f3:87:f5:9d:63:a4:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67499595a65aab0b53768def08091e31061e9e65
Validity
Not Before: Mar 29 14:32:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=93ea335af3fe900309e904c51b89ae473f29b8b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:4b:1a:51:cd:fa:ec:ce:c2:6a:67:cd:a9:56:
57:1b:8b:97:86:09:0f:e6:b2:a5:e7:3c:7a:9d:c0:
ac:2c:15:b4:30:d0:c6:90:0d:ab:1b:46:90:aa:0c:
14:85:e8:22:e8:b0:54:ba:51:c1:24:43:89:f8:96:
d9:c5:cf:27:cb:ab:3e:6e:04:e2:7d:34:bb:3c:a5:
ea:4f:44:54:49:d4:a0:bd:a3:6c:2c:54:88:dc:71:
35:ed:20:f8:99:0b:65:52:d2:01:18:b1:c5:f6:69:
b6:19:17:53:c5:34:87:c3:50:db:52:43:e2:58:af:
f3:77:9a:b3:e2:2c:8f:e2:37:e3:86:0b:87:49:29:
04:92:56:c9:9c:51:64:28:41:29:1d:6c:cb:cb:c2:
ae:50:84:b2:36:1d:38:8c:85:ec:9a:31:20:9e:4b:
d2:79:26:41:f6:29:41:5d:5d:f0:c9:4b:ab:ab:d3:
71:c8:15:1f:55:cc:6f:4c:ab:bd:7b:ce:e3:f3:54:
5a:01:6f:70:69:4f:31:02:10:e7:50:03:d7:ee:a0:
23:46:04:bf:ae:63:ab:03:fb:b4:43:3e:35:f1:55:
2c:80:60:15:fe:16:38:a9:04:06:5b:8c:76:33:93:
b3:35:b3:0b:6e:b7:c6:03:a1:5f:54:5f:5c:9a:6d:
ee:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:EA:33:5A:F3:FE:90:03:09:E9:04:C5:1B:89:AE:47:3F:29:B8:B8
X509v3 Authority Key Identifier:
keyid:67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/k-ozWvP-kAMJ6QTFG4muRz8puLg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.160.192.0/24
Signature Algorithm: sha256WithRSAEncryption
59:88:55:c0:81:69:a4:d8:77:7d:cc:4c:32:66:41:58:fb:07:
08:d4:02:eb:ad:a6:12:98:bd:f3:01:87:42:20:94:59:48:c0:
e1:ee:82:ea:ad:8c:fc:a5:83:ec:de:48:fb:2f:df:0d:19:d6:
8a:29:45:bf:ee:30:7f:20:b1:a0:09:93:a3:26:8b:86:90:9a:
a6:87:77:3f:0b:e0:5c:0e:1f:2c:6e:4b:99:2f:3a:a6:bc:86:
71:a1:f8:46:a5:9f:25:59:d9:b3:78:fe:f2:4b:13:e2:1d:5d:
3e:26:cf:8b:b9:22:12:a8:fb:7e:9f:c3:c1:04:bc:90:99:5f:
bb:f1:b2:38:ae:6f:f5:22:65:c6:63:3e:a2:b4:b5:50:05:f1:
ea:a0:44:bb:0f:9f:24:d4:96:9a:a8:21:32:e5:ee:ff:1b:b3:
7e:90:71:ae:10:29:65:31:59:19:b2:a9:b3:8c:96:8d:42:82:
0e:85:48:25:27:c2:2d:05:34:4a:89:91:af:9f:4e:f0:76:8d:
ce:57:43:f6:2e:5c:b5:83:a5:78:e4:d9:d5:e4:19:42:ea:ac:
69:88:39:a2:0b:bf:44:bb:a5:9f:0e:5a:c6:8c:01:ae:24:0f:
00:5a:d8:34:14:f3:2d:0f:be:d6:73:f1:bc:1a:42:24:7d:fc:
10:92:62:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:14:38 2025 by rpki-client