Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/41dc75-1f32-4edd-a94c-f5ec403fdacf/1/ecYUWHTsajnKoxAs7WyNPpPkinM.roa
File: ecYUWHTsajnKoxAs7WyNPpPkinM.roa (raw, json)
Hash identifier: EkH1Nt0CwRqxluOc5rRNVSjka8hHH1Y+UX3isP9HweU=
Subject key identifier: 79:C6:14:58:74:EC:6A:39:CA:A3:10:2C:ED:6C:8D:3E:93:E4:8A:73
Certificate issuer: /CN=4766c6d9ad21cd4118a0448264d6fb35d55f14c0
Certificate serial: 39D61DBA
Authority key identifier: 47:66:C6:D9:AD:21:CD:41:18:A0:44:82:64:D6:FB:35:D5:5F:14:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R2bG2a0hzUEYoESCZNb7NdVfFMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/41dc75-1f32-4edd-a94c-f5ec403fdacf/1/ecYUWHTsajnKoxAs7WyNPpPkinM.roa
Signing time: Mon 20 Jun 2022 11:18:47 +0000
ROA not before: Mon 20 Jun 2022 11:18:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20694
IP address blocks: 185.45.110.0/23 maxlen: 23
2a02:22f0:12::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 970333626 (0x39d61dba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4766c6d9ad21cd4118a0448264d6fb35d55f14c0
Validity
Not Before: Jun 20 11:18:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=79c6145874ec6a39caa3102ced6c8d3e93e48a73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f0:0b:71:fb:ff:f0:21:12:57:eb:0a:6f:de:
a2:62:e5:83:c8:5f:83:46:cb:03:c8:f8:29:f0:73:
1b:76:16:48:b2:07:84:50:18:24:ea:d4:4d:41:71:
cf:e5:56:9c:99:8b:93:40:43:f2:ea:09:5c:ef:a1:
28:33:f6:b1:2d:e0:b8:a7:ce:a7:3c:1b:18:45:54:
a7:ec:81:ee:82:be:ce:11:1f:3d:2b:5d:ee:3a:3e:
68:7e:5c:33:3a:49:a2:81:8b:b6:bd:4d:55:36:a8:
57:50:5e:34:e6:f2:0c:83:25:51:29:9f:0e:46:1b:
c4:b6:f6:53:14:04:d0:46:e1:0a:4f:3a:6b:64:0a:
85:89:d3:f5:7e:9a:2f:2f:33:ec:11:f3:1f:21:07:
dd:17:38:37:0d:00:36:c0:90:cb:91:19:91:1a:fc:
48:e0:f2:88:b6:1d:17:5f:84:87:9d:11:0b:72:27:
66:09:16:ef:2b:ac:8b:c9:70:5a:c9:dc:42:af:2b:
05:ff:11:cd:22:e8:d8:56:e4:82:5f:12:27:cb:4e:
a4:6d:e4:5c:32:47:24:a7:ed:f6:5f:b0:f4:dc:7f:
21:de:07:ec:97:e3:71:bd:50:03:f8:9c:ec:b0:d4:
00:f3:04:c4:90:11:77:0c:48:5b:01:10:5f:6a:80:
b5:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:C6:14:58:74:EC:6A:39:CA:A3:10:2C:ED:6C:8D:3E:93:E4:8A:73
X509v3 Authority Key Identifier:
keyid:47:66:C6:D9:AD:21:CD:41:18:A0:44:82:64:D6:FB:35:D5:5F:14:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R2bG2a0hzUEYoESCZNb7NdVfFMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/41dc75-1f32-4edd-a94c-f5ec403fdacf/1/ecYUWHTsajnKoxAs7WyNPpPkinM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/41dc75-1f32-4edd-a94c-f5ec403fdacf/1/R2bG2a0hzUEYoESCZNb7NdVfFMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.45.110.0/23
IPv6:
2a02:22f0:12::/48
Signature Algorithm: sha256WithRSAEncryption
40:3b:87:31:2d:a5:2a:02:82:45:a6:6f:b9:a0:e2:e2:c3:66:
24:b1:bc:9a:59:89:6f:8e:12:9d:27:30:44:bc:b4:47:1c:e0:
ce:68:15:83:01:b8:1a:95:2b:1a:62:31:7d:6b:f3:77:3f:ed:
12:b7:01:08:32:e5:32:1d:53:29:48:0e:55:38:3e:6d:b9:03:
d6:ea:54:fe:7e:9c:68:a0:32:7d:bd:8b:2e:dd:1e:44:98:fc:
3c:39:29:fc:ff:66:99:a6:38:fa:0b:c0:e0:33:75:f5:23:d3:
61:4b:12:10:34:56:0f:79:ca:0d:3f:e8:a5:6a:e9:74:1e:a0:
0b:a9:f1:b9:4f:67:98:7e:11:e7:55:5e:0c:bc:bf:c4:f1:be:
9e:98:a0:f5:e6:91:37:41:d4:1c:f5:e2:47:5e:e6:18:fd:ce:
f4:a7:26:f0:a8:68:6c:98:36:fa:ab:8e:a7:53:47:96:ea:78:
05:4d:48:bc:71:08:f2:c0:a4:6c:9d:09:54:45:dc:50:ab:1b:
14:c7:07:4a:8e:66:a4:7c:39:91:63:83:07:50:82:18:59:ba:
3d:87:b2:5f:96:c3:b0:4d:ae:9a:a0:6f:a0:89:75:9d:01:4f:
d5:e5:58:58:13:10:91:2b:34:64:45:32:38:5a:58:98:f0:24:
d7:3e:c2:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:51:21 2025 by rpki-client