Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/514aa5-c51d-48b1-ae06-19808bf44471/1/7niuNQTL39F-rvwn_H-gQwS__4E.roa
File: 7niuNQTL39F-rvwn_H-gQwS__4E.roa (raw, json)
Hash identifier: DqMqMzXJ5wZyrO5mdN7IN4CPZdAq3exAdi73y1Lcnpk=
Subject key identifier: EE:78:AE:35:04:CB:DF:D1:7E:AE:FC:27:FC:7F:A0:43:04:BF:FF:81
Certificate issuer: /CN=cb6f2040d94c995b0461dc5114a4c087351e99f2
Certificate serial: 16827414
Authority key identifier: CB:6F:20:40:D9:4C:99:5B:04:61:DC:51:14:A4:C0:87:35:1E:99:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y28gQNlMmVsEYdxRFKTAhzUemfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/514aa5-c51d-48b1-ae06-19808bf44471/1/7niuNQTL39F-rvwn_H-gQwS__4E.roa
Signing time: Sat 01 Jan 2022 06:52:58 +0000
ROA not before: Sat 01 Jan 2022 06:52:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34226
IP address blocks: 185.81.20.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 377648148 (0x16827414)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb6f2040d94c995b0461dc5114a4c087351e99f2
Validity
Not Before: Jan 1 06:52:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee78ae3504cbdfd17eaefc27fc7fa04304bfff81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d7:4f:5d:e5:af:2b:22:af:aa:3b:c1:64:b6:
99:e6:32:b6:1b:5c:ad:27:bb:e7:f4:e5:46:5f:1b:
e2:a5:1e:d6:fd:35:01:0d:4c:30:57:6d:82:f4:a7:
26:ec:c6:8f:b3:93:37:b1:3a:40:cc:65:c3:c9:3b:
37:db:b2:bf:e4:64:76:86:57:fb:58:8b:02:1f:02:
98:84:8f:fa:67:84:b2:df:25:44:f4:ce:97:e8:4f:
52:b6:fe:71:32:d0:08:6c:4b:8c:f5:01:a2:94:c1:
c8:23:31:68:77:a2:15:85:fc:17:67:0d:fd:86:58:
16:dd:38:f1:10:bc:7f:e8:bf:de:18:f3:6c:bb:53:
ce:de:f5:06:b6:ff:c0:e7:77:1b:d8:4d:e0:3d:00:
fd:64:f8:85:ed:76:a1:e4:24:48:e3:fd:07:05:07:
0e:88:dc:ed:1e:60:27:6a:a5:c1:58:b1:a8:a1:71:
68:e6:8a:ff:6b:66:fc:45:31:74:7d:a3:be:03:05:
2f:91:b2:bd:29:ff:6f:43:2b:3a:7a:c3:11:73:ec:
93:5b:a4:1f:be:89:ca:e5:f4:ac:e2:46:bf:36:17:
e1:fa:f2:69:e1:4d:b1:6f:cd:d6:af:f4:51:29:9b:
a2:87:4a:2f:3b:c6:1b:1f:59:a4:a4:6d:ff:13:cc:
72:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:78:AE:35:04:CB:DF:D1:7E:AE:FC:27:FC:7F:A0:43:04:BF:FF:81
X509v3 Authority Key Identifier:
keyid:CB:6F:20:40:D9:4C:99:5B:04:61:DC:51:14:A4:C0:87:35:1E:99:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y28gQNlMmVsEYdxRFKTAhzUemfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/514aa5-c51d-48b1-ae06-19808bf44471/1/7niuNQTL39F-rvwn_H-gQwS__4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/514aa5-c51d-48b1-ae06-19808bf44471/1/y28gQNlMmVsEYdxRFKTAhzUemfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.20.0/22
Signature Algorithm: sha256WithRSAEncryption
43:e9:e5:c6:29:c4:4c:78:42:2f:0f:0c:3b:21:45:61:07:db:
39:97:a2:41:d3:0a:cd:a0:02:1d:31:7f:a3:01:83:7b:5a:96:
de:e4:f9:e1:b1:d0:8f:e8:f6:e7:31:06:d4:a4:f1:67:57:43:
e1:9e:f6:fe:e1:95:a0:af:9e:03:83:20:1b:ae:82:26:f4:1e:
f8:c1:25:55:9e:de:cf:82:85:4b:f0:96:1d:be:49:75:e7:ac:
03:10:16:79:21:f5:e9:a8:b0:6e:c0:39:1c:18:e6:35:19:e1:
8a:e6:2e:38:1a:0d:a9:fb:3a:b1:f7:ec:3d:08:2e:6d:03:10:
31:d3:b7:7b:77:ec:3a:d7:83:a8:44:3a:33:fd:3e:23:af:58:
fe:d0:97:68:85:3f:c8:85:7a:e9:23:24:fb:e9:cc:b6:c7:17:
55:51:5d:3b:92:b0:c5:39:b7:b9:2d:26:be:42:4d:be:d7:7d:
1e:94:40:c6:29:82:60:e2:f0:80:40:bb:14:cf:5d:88:6d:2b:
92:ee:59:f8:b7:87:16:68:2a:e4:95:78:a2:37:1e:b7:c2:b9:
b0:50:70:9a:0e:7f:9d:ed:19:09:71:21:4f:c5:31:41:28:81:
a4:4d:d6:f5:21:4f:d3:a4:31:c8:c3:3c:c0:e6:38:68:3f:4d:
20:c3:55:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:10 2025 by rpki-client