Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/ed4da0-0647-446f-b065-db0dcc08f452/1/bAosMLDF8A5F2EnED8_5K6iSAsI.roa
File: bAosMLDF8A5F2EnED8_5K6iSAsI.roa (raw, json)
Hash identifier: 7BjGCquRbfFZLtasRu/B/1LT4o8iVeQT5wHpwTkTU9A=
Subject key identifier: 6C:0A:2C:30:B0:C5:F0:0E:45:D8:49:C4:0F:CF:F9:2B:A8:92:02:C2
Certificate issuer: /CN=66ef31adac663855b3ddd1931c44cf8064d6a6eb
Certificate serial: 018572F11FA7ABF7C3FA488275796B51CDB7
Authority key identifier: 66:EF:31:AD:AC:66:38:55:B3:DD:D1:93:1C:44:CF:80:64:D6:A6:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zu8xraxmOFWz3dGTHETPgGTWpus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/ed4da0-0647-446f-b065-db0dcc08f452/1/bAosMLDF8A5F2EnED8_5K6iSAsI.roa
Signing time: Mon 02 Jan 2023 14:44:42 +0000
ROA not before: Mon 02 Jan 2023 14:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 193.160.155.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:f1:1f:a7:ab:f7:c3:fa:48:82:75:79:6b:51:cd:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66ef31adac663855b3ddd1931c44cf8064d6a6eb
Validity
Not Before: Jan 2 14:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c0a2c30b0c5f00e45d849c40fcff92ba89202c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a2:af:d4:ad:d6:db:ea:81:ab:40:58:48:ce:
05:22:77:32:ea:06:d9:90:33:ac:7d:f7:2b:aa:55:
5a:04:4c:e4:2c:c7:ff:4a:fe:29:aa:40:f3:3a:78:
48:41:8a:e6:38:d1:d5:f3:c5:3a:bd:b4:0b:5b:60:
60:7e:10:2a:b5:73:99:1b:ed:79:4c:06:e6:3b:58:
bf:b4:8f:cd:26:4d:c1:9d:82:00:19:86:7c:91:f8:
32:0f:ee:d4:33:f8:94:a6:e2:fc:4a:5b:0b:46:5d:
71:42:9f:81:8d:4d:71:e3:21:e2:e7:02:80:bb:87:
b4:f6:26:e7:6a:53:5a:7b:07:20:e8:3c:67:31:68:
72:53:df:46:04:3b:a1:4b:e8:7a:fa:6e:3b:c3:d0:
db:88:5d:6d:06:a6:f8:0a:90:c5:0c:65:4e:15:cc:
26:dc:a6:93:41:e0:fc:f2:f4:87:65:cd:93:98:a2:
58:20:e2:93:05:2e:6c:2a:8c:ce:07:23:5a:88:0c:
80:2b:64:75:e9:8e:7d:9d:81:07:be:87:0f:bc:24:
5c:99:d1:98:6f:c5:cd:64:c7:b3:83:a4:b8:7e:c7:
1e:8f:06:3a:08:b5:e4:18:1f:7e:6e:75:0b:7f:74:
70:76:68:a5:f4:9a:e1:5b:d2:e4:95:69:9b:45:a7:
e0:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:0A:2C:30:B0:C5:F0:0E:45:D8:49:C4:0F:CF:F9:2B:A8:92:02:C2
X509v3 Authority Key Identifier:
keyid:66:EF:31:AD:AC:66:38:55:B3:DD:D1:93:1C:44:CF:80:64:D6:A6:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zu8xraxmOFWz3dGTHETPgGTWpus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ed4da0-0647-446f-b065-db0dcc08f452/1/bAosMLDF8A5F2EnED8_5K6iSAsI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ed4da0-0647-446f-b065-db0dcc08f452/1/Zu8xraxmOFWz3dGTHETPgGTWpus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.155.0/24
Signature Algorithm: sha256WithRSAEncryption
92:b9:54:91:21:05:af:3c:9a:47:70:09:55:e6:51:ab:96:72:
99:df:e9:46:67:d9:a3:4c:c4:d2:8c:e9:b5:8b:13:db:3d:f2:
23:04:e4:7f:20:f6:44:b6:d0:cd:d8:7a:3b:10:c2:5f:14:19:
60:14:17:8b:8b:13:39:7c:a3:bc:2c:c7:aa:64:0b:12:ef:72:
db:47:9c:07:61:84:62:38:37:f8:60:b5:e7:b7:54:9d:8d:30:
dd:25:a3:51:2f:80:4f:16:6b:00:5e:60:fa:b6:4e:30:20:0e:
63:17:83:80:4b:f0:c1:0c:5e:2b:b4:6e:cf:89:d5:51:2e:49:
ef:bc:ee:fa:89:93:f0:8b:31:82:a7:ba:ad:e3:f5:cd:1d:43:
01:2c:63:c8:7f:8c:10:89:38:6f:56:37:b5:df:3d:4e:4d:48:
0a:38:e8:1c:cb:e4:c7:4f:18:75:d7:6b:e4:d3:a6:ec:4c:15:
0c:c9:36:4b:fc:59:9a:55:47:9d:12:59:5e:53:f6:46:0a:b5:
16:a2:50:ed:54:c3:b8:e8:cc:85:10:56:83:4e:95:f9:5e:8a:
de:58:aa:63:6a:15:0a:2f:bf:ef:a6:c9:25:67:b6:5c:f1:b2:
74:e8:c3:6e:25:47:99:4c:07:9a:f3:bc:e7:e8:f1:21:b3:79:
d4:cf:84:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:03:18 2025 by rpki-client