Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/52a10d-d851-40ae-a8b0-a1028eda6383/1/wQOmYE8oTZmoVTIR9pIYq8bH8Bs.roa
File: wQOmYE8oTZmoVTIR9pIYq8bH8Bs.roa (raw, json)
Hash identifier: qK8HHB255txvOiXBAW+f341NqchP8hO7Qp+GrwGFl7A=
Subject key identifier: C1:03:A6:60:4F:28:4D:99:A8:55:32:11:F6:92:18:AB:C6:C7:F0:1B
Certificate issuer: /CN=8d89223c1f335c0cc569359fa2dda349a2236ccb
Certificate serial: 01874E2E11EADAA98F74E05AB3495CE165C6
Authority key identifier: 8D:89:22:3C:1F:33:5C:0C:C5:69:35:9F:A2:DD:A3:49:A2:23:6C:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYkiPB8zXAzFaTWfot2jSaIjbMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/52a10d-d851-40ae-a8b0-a1028eda6383/1/wQOmYE8oTZmoVTIR9pIYq8bH8Bs.roa
Signing time: Tue 04 Apr 2023 21:30:54 +0000
ROA not before: Tue 04 Apr 2023 21:30:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206119
IP address blocks: 185.213.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:4e:2e:11:ea:da:a9:8f:74:e0:5a:b3:49:5c:e1:65:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d89223c1f335c0cc569359fa2dda349a2236ccb
Validity
Not Before: Apr 4 21:30:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c103a6604f284d99a8553211f69218abc6c7f01b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:a8:c3:a8:3c:32:8f:34:17:ff:b2:87:06:49:
ae:7c:db:ce:fa:9f:27:76:c5:26:35:de:78:66:30:
6f:cc:9a:e1:c7:0c:43:0c:c1:34:6c:cf:fc:80:9a:
e6:24:a2:4f:6d:8d:ba:91:3b:dc:d0:f6:c4:48:46:
1e:dc:d5:de:e9:f2:43:47:cf:c7:61:e2:5e:8c:48:
6b:cf:0f:15:4c:e2:4e:4b:df:c2:e1:92:24:28:7f:
de:19:fc:41:40:b7:8d:de:84:bf:e8:b6:8e:b8:9f:
20:79:97:cd:d0:15:6d:76:2d:71:dd:ba:91:a4:16:
c9:c6:f4:11:63:8a:92:2e:80:b9:31:8f:b3:d2:f5:
a7:ed:09:64:fc:46:2a:bb:2e:15:86:48:c7:93:ab:
86:52:d9:20:de:8f:ab:81:b6:a6:3b:70:15:28:67:
39:92:e6:dc:56:b0:02:fe:09:5c:f9:8a:b7:cd:a5:
c2:a7:a9:87:a3:af:42:b5:bc:e6:3a:bb:11:0c:76:
64:e7:12:9a:c8:88:2e:96:c4:1b:a8:ec:15:49:21:
e5:40:af:83:0b:d2:df:af:57:44:2b:47:6a:78:5b:
1e:f6:c8:4d:2a:fa:10:dc:6d:13:01:76:de:5e:30:
db:ff:f8:f5:49:d3:81:8f:7b:31:17:29:4b:1e:ad:
9b:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:03:A6:60:4F:28:4D:99:A8:55:32:11:F6:92:18:AB:C6:C7:F0:1B
X509v3 Authority Key Identifier:
keyid:8D:89:22:3C:1F:33:5C:0C:C5:69:35:9F:A2:DD:A3:49:A2:23:6C:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYkiPB8zXAzFaTWfot2jSaIjbMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/52a10d-d851-40ae-a8b0-a1028eda6383/1/wQOmYE8oTZmoVTIR9pIYq8bH8Bs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/52a10d-d851-40ae-a8b0-a1028eda6383/1/jYkiPB8zXAzFaTWfot2jSaIjbMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.170.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:57:de:fd:73:a5:16:5f:40:2f:a9:f3:4e:40:cc:5b:2a:c3:
3d:81:ec:a5:8d:ba:02:4a:a9:d1:82:d2:6f:a5:36:d5:70:ec:
6d:bb:5e:b4:82:a6:6c:c0:b0:03:75:c7:a1:2c:73:e8:bb:27:
45:bb:80:0e:ff:b8:26:aa:e6:50:6b:df:56:4c:da:cd:b3:6e:
7a:c4:bb:c5:8f:19:49:69:5c:69:83:e9:11:2f:06:bb:99:8e:
8e:85:74:ef:00:5f:57:d2:1c:56:fd:8a:db:8d:f2:36:2a:e3:
c6:59:38:de:fb:d6:1e:91:c4:a5:3a:2f:85:8c:7a:c7:33:ac:
16:f5:2a:3e:5b:d2:7c:dd:e4:7a:02:c9:52:43:38:31:ad:20:
77:8f:a5:00:79:9b:ce:67:0a:b3:4c:10:b8:41:15:d8:26:f6:
0b:55:7e:b2:ae:0c:f8:52:28:e4:d3:75:07:99:5b:8b:80:92:
17:4c:7c:74:20:99:1d:72:30:8d:4e:5f:ed:4e:6f:20:36:91:
81:fd:02:33:3d:dc:38:5e:96:7f:bb:72:74:0a:f5:92:c3:dd:
9d:74:b2:24:26:26:0f:a4:91:ae:18:7a:00:90:3e:fc:b1:ae:
bc:ef:e3:74:8b:f2:3b:a5:1d:5b:8d:4b:59:2b:3b:3c:48:6e:
20:df:df:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:34:10 2025 by rpki-client