Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/e1f09a-b49f-4f69-8eb9-5cac94b836b6/1/EOqy4O_PYwzcx5P_6sz2IjOwr-s.roa
File: EOqy4O_PYwzcx5P_6sz2IjOwr-s.roa (raw, json)
Hash identifier: qTEt+4YMIA06VXPEBA1iEXmb3kvEgMbnw6/8rj9n3Gc=
Subject key identifier: 10:EA:B2:E0:EF:CF:63:0C:DC:C7:93:FF:EA:CC:F6:22:33:B0:AF:EB
Certificate issuer: /CN=f35f3f2ebf80c77669250a759be1e5c91e388435
Certificate serial: 13670D31
Authority key identifier: F3:5F:3F:2E:BF:80:C7:76:69:25:0A:75:9B:E1:E5:C9:1E:38:84:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/818_Lr-Ax3ZpJQp1m-HlyR44hDU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/e1f09a-b49f-4f69-8eb9-5cac94b836b6/1/EOqy4O_PYwzcx5P_6sz2IjOwr-s.roa
Signing time: Fri 25 Mar 2022 10:15:58 +0000
ROA not before: Fri 25 Mar 2022 10:15:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20504
IP address blocks: 217.118.160.0/24 maxlen: 24
217.118.160.0/20 maxlen: 20
217.118.166.0/24 maxlen: 24
217.118.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 325520689 (0x13670d31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f35f3f2ebf80c77669250a759be1e5c91e388435
Validity
Not Before: Mar 25 10:15:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=10eab2e0efcf630cdcc793ffeaccf62233b0afeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:11:96:a2:01:d8:a6:81:0a:53:5c:f1:f9:b1:
01:4c:39:2c:e7:41:b3:4e:7b:36:e7:c9:09:26:10:
29:9a:75:14:d9:60:87:39:1d:e1:85:35:05:3e:14:
2b:ed:fb:cf:70:40:e2:f7:b9:be:52:cc:64:f3:cb:
50:ee:c2:2e:38:86:0e:a7:64:51:bd:89:cf:76:fa:
b3:88:07:75:ff:97:77:cd:5c:3d:08:7c:12:b7:e8:
3e:6c:a5:c3:7d:22:d4:3d:cb:5b:0a:1d:73:48:59:
e7:51:2c:00:c9:1a:e0:76:d0:eb:79:39:91:98:21:
c9:a6:6a:e0:6e:a8:ff:26:fd:b7:14:50:dd:51:15:
70:90:c5:b2:49:07:0f:28:1e:83:8f:ae:18:9b:f7:
bb:e2:14:17:f1:74:3d:bb:cc:3a:3a:40:b5:dd:8f:
04:ac:32:dc:53:c6:d7:16:81:75:fd:25:12:e5:47:
4b:92:6d:ec:3d:3c:bc:2d:ec:1a:a8:66:70:5a:28:
75:6e:1f:02:51:5f:02:c9:59:d3:95:c0:b0:c9:b3:
5c:5e:ef:bf:8d:2a:da:c6:d7:20:63:4e:d1:34:eb:
bc:32:e0:05:26:e6:ef:26:24:11:28:ec:64:f4:cd:
ac:1c:17:c7:dc:97:01:a4:2d:14:33:fa:fb:0a:ee:
ce:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:EA:B2:E0:EF:CF:63:0C:DC:C7:93:FF:EA:CC:F6:22:33:B0:AF:EB
X509v3 Authority Key Identifier:
keyid:F3:5F:3F:2E:BF:80:C7:76:69:25:0A:75:9B:E1:E5:C9:1E:38:84:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/818_Lr-Ax3ZpJQp1m-HlyR44hDU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e1f09a-b49f-4f69-8eb9-5cac94b836b6/1/EOqy4O_PYwzcx5P_6sz2IjOwr-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e1f09a-b49f-4f69-8eb9-5cac94b836b6/1/818_Lr-Ax3ZpJQp1m-HlyR44hDU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.118.160.0/20
Signature Algorithm: sha256WithRSAEncryption
c3:10:74:1e:43:ed:f7:59:52:27:9a:57:88:ee:bf:ab:ad:7c:
2f:3c:69:bc:2e:8f:cd:ca:d7:9f:77:30:fa:79:9a:21:d1:bb:
69:33:d3:da:26:21:44:31:73:1f:53:18:dd:7f:1d:73:38:69:
fc:33:c2:00:3b:24:12:12:57:fa:6f:24:7a:eb:75:eb:ac:39:
dc:4f:8e:04:6c:9a:8f:2e:e0:8f:7b:fd:a3:c7:67:f8:01:4b:
df:3a:9c:82:97:c1:72:f1:45:1e:08:f4:7e:70:58:fe:5b:af:
1f:18:71:da:fa:ea:2f:57:0f:17:ae:c0:72:39:68:95:26:89:
e6:a6:b6:c8:80:27:cb:a8:96:f8:8d:db:86:18:0e:1f:4f:1a:
a5:ac:2e:0c:e0:2e:f9:39:86:08:59:32:ef:60:d5:05:d7:24:
03:03:b8:23:de:bd:9e:7a:27:18:c6:89:fe:3f:1b:97:60:43:
30:a9:be:52:34:d7:8d:dc:da:9b:66:92:2e:6c:ee:8c:b9:4b:
21:70:75:c1:6f:fa:da:01:38:54:5c:6e:60:97:18:de:25:50:
82:24:21:8d:38:3d:eb:8a:55:de:05:f3:c6:59:7f:d0:f8:9a:
a2:61:3c:42:f4:88:d8:af:3f:de:2f:90:1e:f9:a2:1a:5c:38:
1b:df:d0:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:55:29 2025 by rpki-client