Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/03beb4-240b-4cbf-aa3f-9fdc106c8153/1/9J_JCZcciAXwtR8NdzxhxrtsXg4.roa
File: 9J_JCZcciAXwtR8NdzxhxrtsXg4.roa (raw, json)
Hash identifier: N8297w9s8h83r7b+U161m4BEbHslXPIvvgmiTK3NgJY=
Subject key identifier: F4:9F:C9:09:97:1C:88:05:F0:B5:1F:0D:77:3C:61:C6:BB:6C:5E:0E
Certificate issuer: /CN=03eca793245752b67a881f78e35ab8ff49dd3ec1
Certificate serial: 18C86EFB
Authority key identifier: 03:EC:A7:93:24:57:52:B6:7A:88:1F:78:E3:5A:B8:FF:49:DD:3E:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A-ynkyRXUrZ6iB9441q4_0ndPsE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/03beb4-240b-4cbf-aa3f-9fdc106c8153/1/9J_JCZcciAXwtR8NdzxhxrtsXg4.roa
Signing time: Sat 01 Jan 2022 09:02:36 +0000
ROA not before: Sat 01 Jan 2022 09:02:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50903
IP address blocks: 178.23.32.0/21 maxlen: 22
185.118.92.0/22 maxlen: 23
2a00:ab80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 415788795 (0x18c86efb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03eca793245752b67a881f78e35ab8ff49dd3ec1
Validity
Not Before: Jan 1 09:02:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f49fc909971c8805f0b51f0d773c61c6bb6c5e0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:5b:fc:6d:67:fa:56:f9:d3:10:9f:f0:ef:9f:
a1:d8:00:69:05:19:34:64:93:e5:7b:4a:b3:00:a3:
f9:b8:38:3f:78:2c:3a:90:1a:20:79:b7:f9:1b:17:
0b:dd:98:76:1b:04:35:23:29:46:f9:b5:af:41:ee:
dc:0c:14:f8:9b:11:48:cf:55:66:4f:3a:bd:7b:a7:
ac:5f:38:32:4e:f8:3f:ea:7d:5b:28:27:5d:06:bb:
fd:e9:be:7c:f9:8c:1b:2e:5b:c3:d5:6c:a9:1e:97:
fd:5c:08:be:86:6c:12:42:61:d0:b5:2f:32:1a:62:
a6:a5:b4:35:c5:ff:74:96:f6:8a:62:de:0d:e6:03:
ab:ef:f6:31:43:b6:bc:b1:9c:04:02:6f:4f:ec:03:
ee:fe:11:10:08:17:78:1e:72:f6:a8:86:17:d3:51:
1a:4a:f7:07:55:d1:e7:f0:b3:6f:be:6d:c0:47:b1:
48:c3:c8:f5:75:64:c4:7e:ff:b6:ac:5c:80:d6:ae:
e1:04:ec:05:92:45:98:44:80:70:fb:66:53:e4:21:
0a:58:70:2f:8e:6c:57:dc:bc:bc:78:ca:4a:6e:9f:
39:ec:ef:02:32:ac:4e:ec:39:dc:77:65:bc:c2:ad:
f9:60:da:29:5f:42:12:07:7e:8b:d7:13:71:10:41:
cd:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:9F:C9:09:97:1C:88:05:F0:B5:1F:0D:77:3C:61:C6:BB:6C:5E:0E
X509v3 Authority Key Identifier:
keyid:03:EC:A7:93:24:57:52:B6:7A:88:1F:78:E3:5A:B8:FF:49:DD:3E:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-ynkyRXUrZ6iB9441q4_0ndPsE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/03beb4-240b-4cbf-aa3f-9fdc106c8153/1/9J_JCZcciAXwtR8NdzxhxrtsXg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/03beb4-240b-4cbf-aa3f-9fdc106c8153/1/A-ynkyRXUrZ6iB9441q4_0ndPsE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.23.32.0/21
185.118.92.0/22
IPv6:
2a00:ab80::/32
Signature Algorithm: sha256WithRSAEncryption
e4:0d:91:28:0d:9e:b5:e2:f6:62:ea:fb:43:34:b7:19:ea:04:
2b:86:b5:bb:0f:9c:c8:5c:5d:e9:f3:fd:69:4c:7b:1f:3c:85:
66:b7:ee:8d:b5:02:10:7b:ff:ae:10:b7:76:fd:0e:7d:bc:2a:
bf:d8:1f:aa:a8:65:8d:d5:33:2b:77:84:6e:84:4c:56:f4:5f:
81:06:57:47:42:67:2f:ab:ea:33:e9:ae:96:33:ca:db:82:fe:
a9:91:54:b8:16:26:40:83:e0:95:c2:f6:c6:b3:a3:86:61:69:
26:66:49:ec:ed:54:3f:23:19:2c:64:23:27:31:38:c3:6d:d7:
bc:63:1a:43:ac:48:09:f6:ac:59:5b:38:4a:77:0e:d5:60:b8:
79:03:f1:59:b8:94:b0:cb:4c:f5:1c:a7:71:48:c2:b0:84:11:
86:de:d2:e3:be:0b:b5:dc:b8:95:46:28:89:12:a3:8f:e7:44:
10:3e:24:33:70:06:80:ca:ad:3b:14:7c:8e:26:1f:16:b2:5e:
f5:89:ce:7c:46:6d:f0:3b:01:10:10:47:0c:20:e9:41:e5:97:
4d:0a:d4:b6:59:4f:0f:f2:56:25:22:b0:74:3f:94:5f:7c:1c:
83:98:a9:36:8e:ca:06:ab:b2:1d:71:f1:03:70:62:d6:1a:bb:
75:8c:fc:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:31 2025 by rpki-client