Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/49a32d-d0f2-481a-9791-c9a49f70e23b/1/W7LfVJu5BfMRYxrzWhhQrejHrGI.roa
File: W7LfVJu5BfMRYxrzWhhQrejHrGI.roa (raw, json)
Hash identifier: 5XnyjRGyj3OGp4kq6gUSTjePQgapoESmMZ3SQcucXBs=
Subject key identifier: 5B:B2:DF:54:9B:B9:05:F3:11:63:1A:F3:5A:18:50:AD:E8:C7:AC:62
Certificate issuer: /CN=b7151f194a3e524c82c677b8e132058143c8ebee
Certificate serial: 02A3FB06
Authority key identifier: B7:15:1F:19:4A:3E:52:4C:82:C6:77:B8:E1:32:05:81:43:C8:EB:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/txUfGUo-UkyCxne44TIFgUPI6-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/49a32d-d0f2-481a-9791-c9a49f70e23b/1/W7LfVJu5BfMRYxrzWhhQrejHrGI.roa
Signing time: Sat 01 Jan 2022 04:04:24 +0000
ROA not before: Sat 01 Jan 2022 04:04:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21293
IP address blocks: 160.68.0.0/16 maxlen: 16
185.97.188.0/22 maxlen: 24
160.67.0.0/16 maxlen: 16
2a00:f980::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44301062 (0x2a3fb06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7151f194a3e524c82c677b8e132058143c8ebee
Validity
Not Before: Jan 1 04:04:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5bb2df549bb905f311631af35a1850ade8c7ac62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:93:57:42:fe:84:01:de:d7:bc:37:66:f0:22:
85:f3:0e:83:38:4b:f5:54:36:6e:15:f6:f4:44:de:
3d:ab:74:cd:dc:c6:89:a2:8b:7a:d4:97:15:97:06:
54:2a:ee:c9:9a:cd:b9:9c:76:09:9c:d6:ae:76:6b:
ce:9f:75:66:3e:8c:4c:d9:21:1a:d8:12:72:57:4a:
89:77:54:e0:fc:17:99:17:bd:5a:eb:03:41:af:5c:
c3:68:3c:5a:d7:7b:a5:5f:95:e3:06:56:eb:93:a8:
b2:a4:dd:b5:4d:ff:0b:15:22:6b:64:26:d6:41:36:
72:9f:76:ff:95:08:3a:b2:bd:c3:f4:8d:4f:35:28:
95:7c:05:f0:32:8a:7b:3c:de:b0:df:98:c2:b0:d7:
20:c1:9e:06:fb:29:8a:c9:23:a3:c6:16:9b:49:92:
f7:54:7d:c5:46:63:4c:2f:b5:49:f4:b9:46:da:36:
36:6a:41:cf:e3:3b:6b:1d:cd:6e:5a:0c:f8:bd:2b:
a7:53:d1:d4:9e:e1:c3:74:fa:bf:c1:a8:00:f7:c1:
5a:cb:81:84:f1:cc:40:8e:b2:6a:d5:29:ae:65:47:
ff:a2:21:91:a8:77:91:49:2c:d8:d4:bd:53:91:c0:
70:70:c0:d9:2a:9c:be:6f:f6:6e:ee:f5:61:0e:c8:
79:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:B2:DF:54:9B:B9:05:F3:11:63:1A:F3:5A:18:50:AD:E8:C7:AC:62
X509v3 Authority Key Identifier:
keyid:B7:15:1F:19:4A:3E:52:4C:82:C6:77:B8:E1:32:05:81:43:C8:EB:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/txUfGUo-UkyCxne44TIFgUPI6-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/49a32d-d0f2-481a-9791-c9a49f70e23b/1/W7LfVJu5BfMRYxrzWhhQrejHrGI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/49a32d-d0f2-481a-9791-c9a49f70e23b/1/txUfGUo-UkyCxne44TIFgUPI6-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.67.0.0-160.68.255.255
185.97.188.0/22
IPv6:
2a00:f980::/32
Signature Algorithm: sha256WithRSAEncryption
2e:cd:4b:d6:68:22:66:e3:ca:7c:97:3a:b3:9c:24:5a:bf:49:
b6:17:c6:ee:4b:97:09:27:a7:ae:1e:bc:a9:ba:06:26:34:03:
0f:83:93:88:2d:cf:06:0d:2a:3a:42:df:b2:f6:98:bd:7e:19:
b3:59:78:4c:b4:ab:7f:60:44:b8:df:62:a3:50:6f:37:5b:2e:
e3:c5:12:19:9b:d5:b8:12:75:36:e9:8e:48:16:36:d8:59:91:
8d:03:f7:12:fc:7b:e2:50:82:2a:b0:59:7e:2f:d8:82:bc:05:
36:36:de:02:d1:19:8a:5a:fb:e5:fc:b4:a1:71:d9:53:37:b8:
01:54:8c:d6:73:47:17:97:f0:f4:ea:ad:c1:77:f0:bd:db:de:
6c:ae:37:d0:a3:1f:5d:f0:44:6b:da:e8:82:72:91:50:b8:46:
fb:5e:24:ef:74:57:fb:5e:e0:c7:64:e5:4c:82:fb:36:51:87:
50:e6:47:86:75:59:d8:a5:40:3b:1c:6f:3d:25:4c:57:15:1c:
55:21:bc:c8:36:31:1c:67:88:3e:d8:b0:33:ce:7c:77:4a:73:
30:2b:8c:99:34:42:24:5c:b7:38:71:d5:c8:43:e3:3f:27:dd:
88:de:60:dc:2c:3d:60:c8:bd:61:8a:93:f9:2f:6d:33:a7:a4:
fa:9f:95:ac
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:08 2025 by rpki-client