Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/89ff3b-1263-4cdd-9cad-23df8dddf978/1/0RbT96bHRMeeDZ010RipEYnQCwA.roa
File: 0RbT96bHRMeeDZ010RipEYnQCwA.roa (raw, json)
Hash identifier: QrxEPTNs56ra4zm3dRc4YUaoCAU9qgzanMY9P+oEr14=
Subject key identifier: D1:16:D3:F7:A6:C7:44:C7:9E:0D:9D:35:D1:18:A9:11:89:D0:0B:00
Certificate issuer: /CN=4f152900b0d323d36d94510ab0b01c93f4517c89
Certificate serial: 0744BCD8
Authority key identifier: 4F:15:29:00:B0:D3:23:D3:6D:94:51:0A:B0:B0:1C:93:F4:51:7C:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxUpALDTI9NtlFEKsLAck_RRfIk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/89ff3b-1263-4cdd-9cad-23df8dddf978/1/0RbT96bHRMeeDZ010RipEYnQCwA.roa
Signing time: Sat 01 Jan 2022 04:52:56 +0000
ROA not before: Sat 01 Jan 2022 04:52:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2119
IP address blocks: 185.102.32.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121945304 (0x744bcd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f152900b0d323d36d94510ab0b01c93f4517c89
Validity
Not Before: Jan 1 04:52:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d116d3f7a6c744c79e0d9d35d118a91189d00b00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:90:ff:6c:4f:92:60:d3:a1:3c:ac:ef:ef:8e:
02:e8:a5:4c:6f:1a:45:eb:f2:0d:be:cf:58:6f:e4:
b5:8d:fd:78:3b:d9:1c:1e:e7:ca:01:97:4a:7e:c4:
52:47:73:ac:2c:18:9a:05:52:43:29:24:31:48:c7:
41:d4:84:8c:0f:35:81:87:7b:3a:c4:23:cd:57:7e:
52:15:7a:7d:6d:8a:cc:ab:0e:99:c5:9b:36:ab:fe:
74:89:20:c3:81:65:d6:da:51:47:55:92:4d:01:88:
3e:ab:6b:4d:bf:61:94:bf:ee:2b:43:99:08:e1:eb:
12:b4:f1:fd:0d:61:cf:b5:36:bc:dc:46:27:f6:d0:
b7:e5:8e:72:07:c2:6a:c2:9f:36:95:fe:5e:71:6b:
59:a8:01:a2:63:ed:4c:ca:47:23:a8:ac:df:69:0f:
f7:76:f8:ec:a2:93:b6:c5:1d:3c:71:36:af:b7:11:
93:79:eb:5f:9c:32:81:b3:0d:72:5a:86:e7:93:aa:
cb:83:17:0e:e2:95:d3:d1:01:df:a3:8c:ae:ca:50:
b2:e4:26:45:7f:02:9e:fb:98:1c:53:28:6a:79:e0:
90:23:e7:4f:55:40:28:40:e8:c5:8e:97:13:38:63:
11:61:92:92:b8:b6:a4:12:49:86:c7:4a:d0:0f:51:
f0:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:16:D3:F7:A6:C7:44:C7:9E:0D:9D:35:D1:18:A9:11:89:D0:0B:00
X509v3 Authority Key Identifier:
keyid:4F:15:29:00:B0:D3:23:D3:6D:94:51:0A:B0:B0:1C:93:F4:51:7C:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxUpALDTI9NtlFEKsLAck_RRfIk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/89ff3b-1263-4cdd-9cad-23df8dddf978/1/0RbT96bHRMeeDZ010RipEYnQCwA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/89ff3b-1263-4cdd-9cad-23df8dddf978/1/TxUpALDTI9NtlFEKsLAck_RRfIk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.102.32.0/22
Signature Algorithm: sha256WithRSAEncryption
25:cc:4e:66:33:4c:0f:1d:68:0e:53:0a:84:94:ed:e8:ea:c0:
75:b2:53:2e:63:6f:f5:11:08:86:3a:a2:76:20:ea:6e:e4:6f:
fe:6c:1b:4b:15:95:dd:6f:0b:08:9c:f5:e9:23:14:79:c5:73:
da:e4:a0:56:23:81:56:c8:fc:98:da:dc:3b:42:0f:b9:f6:28:
61:2b:49:71:ae:0b:08:04:81:07:c4:b3:87:87:db:c1:75:19:
f2:c5:fc:2e:fb:06:93:c4:cd:e7:a5:93:3f:c7:b6:c7:64:f0:
50:19:5a:8f:1e:b7:e7:6f:d8:85:bf:cd:40:a3:23:36:a2:df:
f5:84:18:cc:8f:a7:45:de:6a:71:b0:6d:ef:da:12:a7:00:ce:
d1:15:81:4e:40:f8:8e:19:35:8b:a8:08:89:a0:11:79:0e:a9:
c9:24:70:7d:1b:bf:42:ab:c2:4a:e4:f8:98:3d:d8:e4:96:8d:
d9:d5:b1:4e:ea:56:24:49:bb:47:9f:86:7c:b8:94:0d:04:19:
27:62:be:29:7b:27:f1:25:10:e9:de:2d:1a:5d:b6:78:75:45:
55:f8:4c:d5:c0:4a:94:dc:f1:20:e0:6a:41:12:5c:c8:fd:a8:
20:24:52:d0:c8:89:8b:63:25:80:c1:f9:c4:cf:3d:e4:86:02:
9d:1a:04:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:10 2025 by rpki-client