Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/2716ec-5657-4f56-8f43-e23103a88052/1/Sn4iGOVP0tIB7JM1tSbfUwxWNWA.roa
File: Sn4iGOVP0tIB7JM1tSbfUwxWNWA.roa (raw, json)
Hash identifier: SmMpD3s/h5sP1yNcvw7eXGuAo+LltxQ/9ODEoeSqTOo=
Subject key identifier: 4A:7E:22:18:E5:4F:D2:D2:01:EC:93:35:B5:26:DF:53:0C:56:35:60
Certificate issuer: /CN=b872da0f9c6c5686a3db9ee124a99042b0a882d1
Certificate serial: 018570150C9E45A56F71986E5B56B77A8738
Authority key identifier: B8:72:DA:0F:9C:6C:56:86:A3:DB:9E:E1:24:A9:90:42:B0:A8:82:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uHLaD5xsVoaj257hJKmQQrCogtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/2716ec-5657-4f56-8f43-e23103a88052/1/Sn4iGOVP0tIB7JM1tSbfUwxWNWA.roa
Signing time: Mon 02 Jan 2023 01:25:05 +0000
ROA not before: Mon 02 Jan 2023 01:25:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8455
IP address blocks: 185.31.144.0/22 maxlen: 22
2a00:bd20::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:0c:9e:45:a5:6f:71:98:6e:5b:56:b7:7a:87:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b872da0f9c6c5686a3db9ee124a99042b0a882d1
Validity
Not Before: Jan 2 01:25:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a7e2218e54fd2d201ec9335b526df530c563560
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:a0:92:0a:38:64:49:ce:9b:60:48:07:3f:17:
a7:c9:b8:62:1f:f2:f6:b6:42:b1:e5:e4:cc:34:3e:
07:c8:37:a5:b3:7c:d2:9c:0f:47:50:45:db:9d:ef:
f5:45:8d:83:95:46:95:31:f0:a3:4e:16:b6:b3:3e:
b7:17:2b:16:ba:88:c5:6e:d5:56:8e:dc:b7:ed:50:
72:89:1b:91:1a:f5:de:c9:e9:af:8e:63:88:39:b2:
0e:c3:31:f3:bb:ed:c7:b4:cd:cb:92:41:30:39:fe:
4f:69:67:76:2b:82:7b:ff:29:4c:f2:65:41:d0:8a:
27:f4:e7:39:fd:47:7b:81:0e:4d:ae:7a:0c:e2:e1:
3a:b4:ea:93:78:fa:34:9a:85:65:0d:d2:e8:d9:71:
2d:57:9b:31:4e:64:ce:5d:c4:4d:fc:da:35:d5:de:
5b:5d:a2:fd:93:6e:d1:da:19:1e:e0:b9:fa:11:2b:
57:48:e5:47:00:e2:4f:38:ac:ab:66:f7:f6:10:83:
4a:71:64:17:83:55:23:2d:cb:fb:20:51:f6:b9:d6:
c4:83:ff:4b:1c:c7:49:7c:d5:46:4f:fe:78:02:22:
ea:92:6f:94:36:79:ee:31:01:5e:4b:3e:bd:1e:45:
53:da:67:3b:78:c4:71:8a:33:26:b9:30:bb:a2:f8:
0a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:7E:22:18:E5:4F:D2:D2:01:EC:93:35:B5:26:DF:53:0C:56:35:60
X509v3 Authority Key Identifier:
keyid:B8:72:DA:0F:9C:6C:56:86:A3:DB:9E:E1:24:A9:90:42:B0:A8:82:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uHLaD5xsVoaj257hJKmQQrCogtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/2716ec-5657-4f56-8f43-e23103a88052/1/Sn4iGOVP0tIB7JM1tSbfUwxWNWA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/2716ec-5657-4f56-8f43-e23103a88052/1/uHLaD5xsVoaj257hJKmQQrCogtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.31.144.0/22
IPv6:
2a00:bd20::/32
Signature Algorithm: sha256WithRSAEncryption
57:60:ce:af:7e:20:01:01:1f:72:52:a9:02:5b:78:71:e6:00:
f7:c8:0f:ec:52:fb:5c:de:d2:26:d6:b1:b3:01:b3:60:34:64:
2f:77:21:4a:38:f9:82:0c:d0:63:88:95:e9:03:c6:20:ad:54:
d3:ae:5e:06:2e:53:01:fc:25:10:2d:59:44:c0:94:ad:f2:7b:
1e:be:26:c4:cf:c6:76:e3:a8:3f:b0:cd:fc:4b:25:6f:ec:ca:
56:90:33:f2:d9:43:26:ab:e3:19:6c:cb:47:fb:e1:83:d4:61:
aa:ab:d7:bf:23:20:b0:f4:e7:bb:b0:ea:d9:90:57:cf:55:5b:
20:66:b1:2f:ae:59:0d:cc:a4:d4:87:3f:7a:84:ba:73:39:4e:
af:c9:03:e1:f5:d6:64:30:0a:f9:d2:ef:df:b5:ba:cc:89:47:
52:15:cb:af:c3:d2:a7:09:1f:24:76:86:e7:da:66:5a:93:fc:
8f:ea:d7:d8:61:1d:0f:7c:1f:31:3a:22:c8:45:dc:8e:86:9a:
25:38:d1:dc:cf:28:8f:c1:06:c0:56:54:79:70:46:f5:fa:54:
c4:00:16:da:ee:ce:1b:59:46:25:cc:c1:5f:e6:1a:62:ae:be:
c1:b5:9d:83:d4:c8:d1:d4:1d:24:c3:3e:62:a5:c9:99:ca:b8:
11:61:c5:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:54 2025 by rpki-client