Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/q8y_E1Sw5jxgfStzELgrhL6OopM.roa
File: q8y_E1Sw5jxgfStzELgrhL6OopM.roa (raw, json)
Hash identifier: 4SAKIG5QPp4Tqq9SLD2oAsqmPJbxewJSRCZ2DpTQPOk=
Subject key identifier: AB:CC:BF:13:54:B0:E6:3C:60:7D:2B:73:10:B8:2B:84:BE:8E:A2:93
Certificate issuer: /CN=67499595a65aab0b53768def08091e31061e9e65
Certificate serial: 0189F33BEF8F32CB469353870FAAD8772348
Authority key identifier: 67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/q8y_E1Sw5jxgfStzELgrhL6OopM.roa
Signing time: Mon 14 Aug 2023 08:48:58 +0000
ROA not before: Mon 14 Aug 2023 08:48:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.160.195.0/24 maxlen: 24
185.160.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f3:3b:ef:8f:32:cb:46:93:53:87:0f:aa:d8:77:23:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67499595a65aab0b53768def08091e31061e9e65
Validity
Not Before: Aug 14 08:48:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=abccbf1354b0e63c607d2b7310b82b84be8ea293
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:36:af:cd:a1:fd:9d:2f:c5:79:13:95:21:7d:
86:a8:89:52:2f:35:f6:ae:d8:13:39:aa:b0:26:cf:
93:28:e9:d4:90:66:d4:fc:a7:d0:70:e0:91:2e:91:
3b:8b:f4:cf:31:50:61:82:19:8c:a6:cd:17:7c:bd:
ce:3b:6e:d9:10:f4:34:4a:51:5f:98:75:ce:6a:13:
db:1e:d6:e3:04:33:48:90:4d:2b:54:83:48:c0:48:
22:87:63:a9:6e:7c:b8:27:ea:71:a1:36:4f:86:6c:
2f:a9:42:36:e9:aa:07:23:71:62:09:85:22:08:d5:
a8:8a:40:f1:0d:13:68:09:97:77:8f:b3:8a:2c:07:
83:aa:bf:e6:9f:fa:6b:70:8f:d0:ed:89:fd:b1:1b:
63:b5:75:e8:cd:6a:11:f4:57:01:a8:0d:3b:79:ec:
bd:7a:9b:51:71:d0:a2:f9:81:2d:d5:04:a0:95:70:
20:26:98:cf:2e:a6:23:2b:e7:a4:9f:68:07:88:11:
13:ac:ce:5b:66:90:33:1a:7f:4c:af:63:ff:86:f9:
a8:57:c1:84:cf:3b:dd:37:08:1f:47:96:26:62:9d:
d9:ed:0a:b4:89:fe:45:b8:ab:03:0d:5c:5d:83:b8:
fd:73:45:36:37:4d:ee:e4:de:94:24:3a:42:47:72:
d4:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:CC:BF:13:54:B0:E6:3C:60:7D:2B:73:10:B8:2B:84:BE:8E:A2:93
X509v3 Authority Key Identifier:
keyid:67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/q8y_E1Sw5jxgfStzELgrhL6OopM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.160.193.0/24
185.160.195.0/24
Signature Algorithm: sha256WithRSAEncryption
67:e3:5a:8f:d4:52:62:0b:bb:e0:86:f7:1f:05:fa:d0:3d:6a:
04:55:04:93:35:db:ee:09:c7:0c:08:5a:ba:81:ef:77:51:68:
a0:f3:fd:e6:13:a9:77:24:ea:2d:38:46:24:eb:be:a1:4d:cb:
82:7a:f4:8f:68:f8:52:ed:eb:1b:65:99:d3:e3:d6:6b:91:38:
45:3a:34:e6:6e:3f:8a:04:0a:c9:91:08:27:e7:07:33:5c:69:
f5:5e:fe:94:79:43:15:55:fb:b6:62:17:09:9c:b0:c3:d5:8d:
a5:f6:18:4c:fe:86:52:36:45:d8:c9:e1:52:c4:85:4d:f4:8a:
71:cc:04:05:31:2b:44:6c:6a:34:93:ca:ca:85:68:49:4d:f3:
2b:cd:18:69:9c:ef:c0:5d:56:3b:f1:b8:1f:02:b7:c2:03:b2:
d2:bf:f3:d6:2b:35:9d:64:20:de:71:5d:eb:02:5b:60:71:4e:
7e:a2:68:a1:41:62:34:e7:ca:cb:8d:b8:6e:e2:01:1a:98:59:
01:59:ed:82:22:cf:64:bb:04:e4:74:12:12:80:bc:36:9d:c5:
ad:93:27:4a:4d:43:82:43:e3:b1:49:d2:c0:37:55:bb:ba:6f:
8d:ec:52:0d:ef:0f:c8:1b:d7:f4:23:9e:69:73:c9:16:b4:85:
62:e6:fa:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 12:16:26 2025 by rpki-client