Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/160f8f-dbab-482d-b39c-ad2fda47988e/1/3d6bEhwu_2AABrCuSfbtYE7JDmw.roa
File: 3d6bEhwu_2AABrCuSfbtYE7JDmw.roa (raw, json)
Hash identifier: 96GTMBSpojNroscqilygAjcdoZTUbfQlk+eIBi9ruok=
Subject key identifier: DD:DE:9B:12:1C:2E:FF:60:00:06:B0:AE:49:F6:ED:60:4E:C9:0E:6C
Certificate issuer: /CN=c0e549fdceeb02912c8a8741c816806bbe19c448
Certificate serial: 0184612E7192D78DE43FC535E1E181EB6B7B
Authority key identifier: C0:E5:49:FD:CE:EB:02:91:2C:8A:87:41:C8:16:80:6B:BE:19:C4:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wOVJ_c7rApEsiodByBaAa74ZxEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/160f8f-dbab-482d-b39c-ad2fda47988e/1/3d6bEhwu_2AABrCuSfbtYE7JDmw.roa
Signing time: Thu 10 Nov 2022 10:55:44 +0000
ROA not before: Thu 10 Nov 2022 10:55:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43160
IP address blocks: 185.240.164.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:61:2e:71:92:d7:8d:e4:3f:c5:35:e1:e1:81:eb:6b:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0e549fdceeb02912c8a8741c816806bbe19c448
Validity
Not Before: Nov 10 10:55:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ddde9b121c2eff600006b0ae49f6ed604ec90e6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f6:1c:57:e6:90:ee:b7:da:04:c7:40:52:c8:
e7:77:cc:0e:98:c8:a1:76:9d:c0:8a:d9:77:cd:95:
e9:9e:ff:ac:08:c5:fb:fe:df:20:47:fb:37:f3:9f:
13:de:53:75:aa:03:0d:d8:c7:93:dd:3c:58:9b:a6:
60:e5:db:4e:aa:e0:e8:c8:21:cc:9f:e0:53:09:86:
18:26:af:18:bd:6d:ac:d7:2b:fd:4f:3e:0c:75:dc:
04:ef:24:18:1b:2b:89:38:0e:0a:c9:ed:2b:78:b5:
f1:c2:7f:1b:a1:59:71:6d:a3:78:f1:c6:bf:71:13:
29:55:ce:f3:00:e5:15:5e:20:25:e8:a9:11:9d:ba:
15:a1:79:3b:ae:32:10:84:3e:43:a7:0b:c0:84:1b:
97:42:fd:31:f0:65:83:33:f2:dc:ae:67:76:24:16:
c7:66:2e:27:d9:b3:92:d7:0a:b5:ee:92:b7:32:42:
ac:f8:eb:a5:a5:cb:f7:7f:cd:01:41:cb:0f:30:6d:
b6:88:a8:2b:3c:fc:9c:13:04:58:05:11:e4:53:68:
7f:bb:d5:01:a4:04:7c:2e:8c:07:b9:28:f1:da:92:
21:14:df:b1:72:08:13:fe:51:54:ec:f6:ff:bf:3b:
e0:d9:2c:74:bf:44:62:12:69:57:a7:0f:01:06:1e:
32:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:DE:9B:12:1C:2E:FF:60:00:06:B0:AE:49:F6:ED:60:4E:C9:0E:6C
X509v3 Authority Key Identifier:
keyid:C0:E5:49:FD:CE:EB:02:91:2C:8A:87:41:C8:16:80:6B:BE:19:C4:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wOVJ_c7rApEsiodByBaAa74ZxEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/160f8f-dbab-482d-b39c-ad2fda47988e/1/3d6bEhwu_2AABrCuSfbtYE7JDmw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/160f8f-dbab-482d-b39c-ad2fda47988e/1/wOVJ_c7rApEsiodByBaAa74ZxEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.164.0/24
Signature Algorithm: sha256WithRSAEncryption
46:bc:ed:35:be:07:6d:aa:fe:bf:68:a8:8d:ce:b3:83:69:2f:
d7:f1:4f:46:e8:73:f2:96:c8:05:4c:0c:4b:e8:97:3a:10:c1:
73:6e:95:40:81:10:26:4c:84:cf:11:88:77:31:52:17:f4:95:
ed:5c:61:3d:77:25:df:50:d2:82:b2:80:59:8b:71:4d:7b:25:
05:a1:d1:ea:a1:c4:6e:d9:d2:06:55:4c:87:c6:1d:c2:9d:55:
32:91:1d:04:19:aa:42:ff:6b:22:77:14:67:41:46:2b:e2:15:
9f:8d:b4:47:57:61:5b:36:ac:ac:0a:e7:81:18:34:13:79:0d:
a0:bb:30:6e:d7:30:db:2a:ca:fd:7a:03:4c:c7:9d:6e:30:a5:
f3:1e:fa:18:ec:34:28:8b:a1:04:0a:61:f5:4a:66:a4:88:44:
b3:a9:08:39:c5:27:a6:f2:58:9a:a7:01:ba:32:22:5d:21:89:
3b:bd:5f:17:fd:a0:3d:5f:5f:7e:ef:6c:93:1b:bd:9c:4a:a3:
b3:e4:8b:65:a9:68:a5:7d:45:33:87:3e:e1:38:f3:f7:c9:0f:
f5:64:c9:ae:93:4a:5b:4d:88:7b:2b:f1:43:ed:61:d3:3a:62:
46:98:38:63:88:c4:a2:11:ab:33:b1:da:2d:42:b5:17:7f:fb:
f2:55:9e:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:03:08 2025 by rpki-client