Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/2e5a34-5ae3-4cbe-9090-d1fd4da2d5cb/1/kAEmUJVhXmLoKpP4Zv0Tq2_HGr8.roa
File: kAEmUJVhXmLoKpP4Zv0Tq2_HGr8.roa (raw, json)
Hash identifier: 4PMPeyrNYJLprIVKcziYo/nyBQ0TiNW/SrXNWSrPZD4=
Subject key identifier: 90:01:26:50:95:61:5E:62:E8:2A:93:F8:66:FD:13:AB:6F:C7:1A:BF
Certificate issuer: /CN=00d0a95be0e601109cb19884268ba2204455c790
Certificate serial: 0183CCDBBDF7EADFB94085713EB9473CB644
Authority key identifier: 00:D0:A9:5B:E0:E6:01:10:9C:B1:98:84:26:8B:A2:20:44:55:C7:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ANCpW-DmARCcsZiEJouiIERVx5A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/2e5a34-5ae3-4cbe-9090-d1fd4da2d5cb/1/kAEmUJVhXmLoKpP4Zv0Tq2_HGr8.roa
Signing time: Wed 12 Oct 2022 15:41:36 +0000
ROA not before: Wed 12 Oct 2022 15:41:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202363
IP address blocks: 185.255.160.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:cc:db:bd:f7:ea:df:b9:40:85:71:3e:b9:47:3c:b6:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00d0a95be0e601109cb19884268ba2204455c790
Validity
Not Before: Oct 12 15:41:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9001265095615e62e82a93f866fd13ab6fc71abf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:a2:3b:11:c9:35:3d:54:99:45:2b:69:11:37:
63:97:4f:e6:6c:3b:2d:bc:0e:90:0e:a9:c5:7e:84:
5a:2d:fe:8a:e0:20:e6:45:85:9e:4d:55:18:74:f9:
c5:d6:c9:e4:63:d6:36:6a:b3:71:b1:fc:7a:e1:7d:
51:a5:80:6f:eb:84:aa:37:e5:7b:5e:00:90:19:26:
2c:ac:5d:67:09:ef:f0:82:e2:9d:2d:de:da:b7:6d:
b7:37:25:b2:84:52:f2:5e:cc:aa:0b:fe:bd:43:b8:
08:fe:b4:32:74:c5:80:78:58:d9:9e:80:4a:fd:9c:
48:e2:79:11:b3:bb:aa:10:9e:5b:13:84:d2:d2:71:
2f:fe:3f:da:61:ca:8c:3d:b1:e2:24:3e:2b:6f:ba:
89:80:c5:82:30:11:6c:fe:28:bd:80:48:cd:51:50:
24:4f:54:b8:f8:54:fb:b2:45:f7:14:7d:d5:fa:ac:
e8:4a:62:4d:bc:d1:d8:75:e4:91:02:b7:1b:a4:fc:
90:58:51:a6:23:ca:b2:12:c0:34:ab:ad:dc:8c:0b:
5e:d9:32:1f:9b:35:6d:dc:fe:a5:04:dc:82:b2:62:
19:68:28:25:1a:f6:d4:59:5a:d1:c1:e4:e3:4c:27:
59:ed:d4:bf:65:0d:2a:d9:12:06:59:71:4d:aa:23:
83:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:01:26:50:95:61:5E:62:E8:2A:93:F8:66:FD:13:AB:6F:C7:1A:BF
X509v3 Authority Key Identifier:
keyid:00:D0:A9:5B:E0:E6:01:10:9C:B1:98:84:26:8B:A2:20:44:55:C7:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ANCpW-DmARCcsZiEJouiIERVx5A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/2e5a34-5ae3-4cbe-9090-d1fd4da2d5cb/1/kAEmUJVhXmLoKpP4Zv0Tq2_HGr8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/2e5a34-5ae3-4cbe-9090-d1fd4da2d5cb/1/ANCpW-DmARCcsZiEJouiIERVx5A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.160.0/22
Signature Algorithm: sha256WithRSAEncryption
27:fc:12:95:fb:68:04:ad:35:ec:da:f3:c0:b9:40:f2:3b:d4:
ea:5d:b6:99:92:6c:a6:ce:fb:d0:4d:ee:2f:25:14:96:6d:81:
55:b6:35:25:b3:4e:ea:ec:f2:54:58:b3:5a:42:03:2c:23:26:
78:94:5c:74:04:24:ba:ba:d0:70:42:63:37:48:b8:6b:bb:95:
0e:58:5a:10:d5:41:9e:81:42:a9:ca:46:94:e9:27:48:fb:a5:
fe:7a:c7:bf:39:1f:93:94:ac:6f:c8:45:f8:5a:29:34:5c:f1:
18:5b:44:ff:e0:9e:ce:50:b8:86:b4:9d:6d:88:53:a5:82:50:
1b:ce:83:5f:ac:45:42:c0:d4:5b:2a:d7:8f:6a:bb:70:9d:eb:
07:11:ae:ec:91:cc:40:c7:35:dc:3f:64:6f:84:59:90:8a:5f:
df:78:b1:38:90:df:27:8d:5e:68:eb:fa:6e:0d:8a:65:aa:c8:
ad:e4:ba:21:0a:4a:ab:fa:17:92:c8:6a:4a:09:0c:9f:84:6e:
23:ad:0f:4d:08:3f:e4:6b:f7:c5:53:4c:6c:79:e3:ca:7a:cb:
07:34:ba:6b:bb:dc:41:37:27:0e:dc:dd:a3:cc:21:64:e0:aa:
db:42:9b:e7:2d:ea:d4:c1:b1:e1:52:f0:5c:34:f7:e3:1a:9a:
62:6c:a5:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:26:33 2025 by rpki-client