Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/Ib7ardRj5zEGv8sKLOK0ym4V5Kg.roa
File: Ib7ardRj5zEGv8sKLOK0ym4V5Kg.roa (raw, json)
Hash identifier: 1TdTSC6vapr9gcxue9FTPVF0YEdH+uHD9I0zS9NYRdg=
Subject key identifier: 21:BE:DA:AD:D4:63:E7:31:06:BF:CB:0A:2C:E2:B4:CA:6E:15:E4:A8
Certificate issuer: /CN=a016588bd1ccb2dd221c6f87838567475d7ef29b
Certificate serial: 18596B53
Authority key identifier: A0:16:58:8B:D1:CC:B2:DD:22:1C:6F:87:83:85:67:47:5D:7E:F2:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oBZYi9HMst0iHG-Hg4VnR11-8ps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/Ib7ardRj5zEGv8sKLOK0ym4V5Kg.roa
Signing time: Sat 01 Jan 2022 09:57:46 +0000
ROA not before: Sat 01 Jan 2022 09:57:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31388
IP address blocks: 176.105.166.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 408513363 (0x18596b53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a016588bd1ccb2dd221c6f87838567475d7ef29b
Validity
Not Before: Jan 1 09:57:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=21bedaadd463e73106bfcb0a2ce2b4ca6e15e4a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:65:29:32:79:55:bf:48:64:93:9c:d1:65:dd:
c9:e7:a7:ed:39:09:06:a3:2f:e1:48:51:cc:93:3f:
e2:a9:93:c8:11:0e:10:b1:c3:aa:0d:9e:d4:4c:a3:
0b:da:dd:2b:49:08:ef:67:7e:66:2e:d3:2d:8a:e0:
8b:4f:f3:b4:8d:a6:ef:2d:96:cf:db:70:ff:a2:d4:
ef:4c:91:b7:a0:a4:79:8d:19:e2:e3:93:44:2a:73:
35:f8:31:0c:10:c1:47:78:53:c6:6d:d5:c2:a8:88:
e6:a3:be:4a:a4:3e:d0:83:15:7f:f3:1b:4e:39:15:
25:09:c1:ab:25:38:57:2d:1b:ea:30:cd:31:7a:6f:
c3:28:7c:ae:4d:78:94:5e:70:02:1f:ed:a0:af:f9:
c9:82:92:be:d9:11:51:04:30:8d:1e:29:9a:60:88:
96:1a:0d:ad:0e:62:aa:89:fd:46:56:ef:f9:d2:d7:
fb:02:8a:db:8c:68:51:06:ff:39:b9:ca:69:09:57:
fa:03:0a:23:57:c4:3d:ee:8a:04:1e:aa:46:b4:96:
40:e7:c6:0b:f9:34:05:48:81:0b:d1:d2:28:2e:92:
e1:d2:c4:62:ea:f0:09:ba:99:82:0c:46:29:04:8b:
3a:88:4b:78:e8:96:e2:ae:10:88:9f:30:e5:91:7e:
89:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:BE:DA:AD:D4:63:E7:31:06:BF:CB:0A:2C:E2:B4:CA:6E:15:E4:A8
X509v3 Authority Key Identifier:
keyid:A0:16:58:8B:D1:CC:B2:DD:22:1C:6F:87:83:85:67:47:5D:7E:F2:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oBZYi9HMst0iHG-Hg4VnR11-8ps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/Ib7ardRj5zEGv8sKLOK0ym4V5Kg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.105.166.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:24:d7:f9:8c:c4:0f:37:d4:2d:a7:d0:24:6d:14:46:ef:89:
86:57:8d:1b:69:c0:15:ef:a1:f8:ab:1d:66:52:0e:28:3e:fc:
20:f6:d0:6c:9d:47:43:fa:ab:04:81:ae:73:81:8f:c2:6e:48:
1b:8d:99:eb:16:e4:5c:7f:e7:da:55:de:b7:3b:a1:65:c9:9d:
0a:2c:91:ad:7f:21:e7:80:c0:4c:24:95:da:44:c3:60:ea:ee:
bc:1f:11:77:a8:86:d5:82:fe:e4:5a:42:37:9e:5e:dc:6d:85:
10:dc:cf:63:57:78:a9:a1:dc:fa:05:01:d2:69:a7:89:95:9d:
1a:64:62:f7:f2:e9:16:af:72:8d:06:62:cc:89:75:0c:c7:6d:
80:a7:4d:3c:08:15:26:16:c4:0d:b9:a0:46:32:ef:07:db:16:
99:2a:54:50:be:ae:11:9b:8c:ca:04:70:3e:1d:6c:69:d4:b9:
9b:6f:19:26:ed:96:3a:c5:22:d7:4c:6b:60:89:1a:27:73:a3:
c7:a5:a7:87:cd:6f:1d:78:af:a7:83:c3:e1:b4:d0:f7:dc:89:
b8:82:b8:db:9c:7b:1c:e1:00:3c:4e:9b:12:6e:a0:3e:58:6d:
38:52:83:3b:d6:a5:9e:41:09:ad:c1:02:44:bc:b1:7f:92:a2:
7f:da:fe:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:45:24 2025 by rpki-client