Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/CcYh9hMyNufykPJLWQHDUycHfj8.roa
File: CcYh9hMyNufykPJLWQHDUycHfj8.roa (raw, json)
Hash identifier: qSpS9AEiPNa/XbMGMCFZXKja2kKJtdNV8vXjQ5vM6kw=
Subject key identifier: 09:C6:21:F6:13:32:36:E7:F2:90:F2:4B:59:01:C3:53:27:07:7E:3F
Certificate issuer: /CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Certificate serial: 10BD19E2
Authority key identifier: 17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/CcYh9hMyNufykPJLWQHDUycHfj8.roa
Signing time: Sat 01 Jan 2022 13:02:19 +0000
ROA not before: Sat 01 Jan 2022 13:02:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199910
IP address blocks: 82.160.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 280828386 (0x10bd19e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Validity
Not Before: Jan 1 13:02:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=09c621f6133236e7f290f24b5901c35327077e3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:e9:e2:7d:6b:1a:87:1e:d9:e7:5d:d6:d5:d3:
cf:d8:54:3f:37:53:cb:b5:4d:c4:8e:a3:8c:74:69:
27:6a:5f:d4:4e:1b:8a:0b:fb:b2:a1:ca:01:e2:a8:
2b:f1:42:97:3a:42:9c:e9:61:d3:cd:69:82:60:7b:
ef:04:80:1b:b9:0a:a5:d6:35:08:c4:d9:bc:db:6b:
38:22:82:28:2c:b6:cf:58:97:f7:ba:e2:0b:c4:53:
40:44:43:23:d9:d9:dd:9b:64:f6:ae:8b:cd:ac:a8:
a3:af:85:c5:2c:cc:f4:40:79:1b:38:a2:ec:14:16:
8b:c0:f3:2c:da:ad:b1:0e:d8:5b:93:a8:08:3d:90:
af:b3:6f:1b:d4:7c:fd:69:5b:c0:00:d5:5e:04:0e:
44:0e:26:f4:dd:12:9a:21:3d:46:d4:bf:a4:5c:4a:
be:6d:ec:4f:04:60:95:8a:4c:f0:6e:66:40:eb:f4:
f4:e7:3e:97:de:65:97:3f:01:4f:42:c7:02:f1:4f:
79:c3:27:1f:2c:9f:43:e8:05:ca:fb:df:41:a9:cf:
d5:7f:1e:83:27:a5:7c:23:81:18:de:e8:c7:5c:9b:
bc:eb:5e:a8:d5:ed:53:ea:cf:dc:0b:4e:6a:74:1a:
2a:b0:bd:a9:ce:57:51:ff:a4:0c:fe:46:ff:91:30:
f1:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:C6:21:F6:13:32:36:E7:F2:90:F2:4B:59:01:C3:53:27:07:7E:3F
X509v3 Authority Key Identifier:
keyid:17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/CcYh9hMyNufykPJLWQHDUycHfj8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/F5MB3Mf65PfOAeSYenfLgqM2q_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.160.97.0/24
Signature Algorithm: sha256WithRSAEncryption
84:2f:93:12:3a:ae:90:f1:98:a6:26:11:98:1b:bb:06:80:24:
d5:c5:df:3d:b3:a5:68:04:a2:91:3c:5f:ce:fd:b9:11:62:1f:
3b:5e:c5:47:f3:9c:4f:1c:5c:c3:ca:da:2f:55:40:1c:cc:aa:
9c:33:43:ec:cf:29:8f:5e:44:67:4e:92:da:a9:85:ea:30:da:
85:7b:a1:c1:1a:08:33:50:1a:9f:74:bb:9d:04:d7:b8:9c:91:
6b:95:6a:5d:c2:08:6b:6a:2f:12:22:06:90:06:b4:b8:e7:3d:
1d:2f:bd:ce:03:95:7c:17:cf:aa:e2:e4:5e:33:a3:c9:2f:0f:
eb:aa:44:2f:7c:1a:29:2b:e6:ac:63:1a:ed:a5:f5:b5:3f:a5:
38:8f:57:fb:2d:b2:dd:98:fb:fd:db:be:17:27:0f:d7:48:d8:
d6:50:6b:61:69:51:b3:db:ed:8c:08:77:e1:ef:c5:d8:8d:a8:
16:de:a4:0a:7e:7f:c2:5a:cc:42:64:21:70:db:41:a6:1e:bb:
da:3c:7c:27:4e:9c:d5:07:25:20:03:68:b0:0c:66:76:4d:87:
8f:a5:9e:5f:26:c5:f1:fe:d8:67:d5:82:61:82:11:d4:9d:e1:
26:48:1a:ec:8c:4f:97:48:dd:fb:bf:e3:c2:f1:33:e7:4e:42:
61:a4:c7:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 01:07:29 2025 by rpki-client