Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/KYhG6AItimsyHuOpoHS7PiOBODw.roa
File: KYhG6AItimsyHuOpoHS7PiOBODw.roa (raw, json)
Hash identifier: RIeHF6hXyZHhXKSpplUTU5O/oN+WQoLPaahkMD9GJhg=
Subject key identifier: 29:88:46:E8:02:2D:8A:6B:32:1E:E3:A9:A0:74:BB:3E:23:81:38:3C
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 018412F5DAC95820C6D37408731AA7319B6E
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/KYhG6AItimsyHuOpoHS7PiOBODw.roa
Signing time: Wed 26 Oct 2022 06:23:32 +0000
ROA not before: Wed 26 Oct 2022 06:23:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198821
IP address blocks: 5.8.179.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:12:f5:da:c9:58:20:c6:d3:74:08:73:1a:a7:31:9b:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Oct 26 06:23:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=298846e8022d8a6b321ee3a9a074bb3e2381383c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:fb:9e:c9:e2:67:42:e2:d2:ee:c0:96:c8:d0:
5f:91:99:63:45:b1:18:b9:42:7d:bb:c5:4a:ad:c3:
63:69:f4:a0:87:63:aa:d6:0a:db:f5:63:28:7b:20:
45:7b:cd:81:6d:6d:a8:13:98:14:98:85:07:ee:f9:
de:39:cd:7b:9b:cc:c1:4c:53:3e:b6:16:ec:66:0e:
24:e1:1b:4b:5e:77:dd:ed:0b:ef:87:ff:f4:6a:b9:
58:42:90:6a:17:f0:c8:48:5b:fb:28:9b:b0:fb:fb:
3b:b7:e4:55:b0:d6:1b:a9:6f:83:41:a8:e6:87:65:
62:38:3b:55:a2:26:3d:73:34:a1:f3:b0:82:82:32:
cd:e6:88:b5:94:33:1a:05:bb:4e:ce:76:3d:e1:d3:
33:8e:cc:d7:b4:ec:71:82:21:8f:9e:f3:97:59:8d:
8c:8d:4f:09:2a:13:25:cf:43:cc:d7:5c:8e:ec:04:
f2:8c:b8:6d:61:94:63:f9:08:8e:d8:3e:56:40:2b:
e6:13:09:d8:2a:a7:84:66:0e:70:ac:e8:35:60:e0:
d0:77:72:a6:86:a3:6a:db:e8:c1:a3:4d:03:d5:58:
5e:2e:5c:30:59:67:e0:d0:31:8e:5e:cb:69:58:92:
9f:a7:83:7c:04:30:38:56:1a:da:6a:68:f3:5d:0d:
59:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:88:46:E8:02:2D:8A:6B:32:1E:E3:A9:A0:74:BB:3E:23:81:38:3C
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/KYhG6AItimsyHuOpoHS7PiOBODw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.179.0/24
Signature Algorithm: sha256WithRSAEncryption
40:5b:f4:da:8d:21:4c:16:19:37:3f:62:07:7b:19:d2:10:42:
20:de:8f:6f:4f:9c:a4:86:74:1a:61:b2:59:00:54:77:09:2e:
d5:1a:54:6e:39:e9:95:33:3e:5e:41:1b:a7:c4:7b:da:7a:15:
0b:d8:bc:06:30:d9:c7:07:1c:90:8a:01:2e:23:71:ff:9d:0c:
de:16:5b:eb:3b:c9:d4:fe:43:ec:a5:14:79:5c:f1:71:34:68:
95:98:ca:2e:22:01:7c:4f:3f:6d:38:47:98:66:a9:7f:fc:2a:
78:e7:1f:48:b4:95:6d:dc:d6:29:65:c6:d8:4a:03:84:e4:f3:
30:00:c1:39:94:f9:36:dc:b9:65:43:73:49:16:12:6f:bc:61:
6c:d7:33:3a:e0:41:0d:a7:b9:37:ab:3a:a9:db:a2:77:a7:f0:
4d:c7:f6:79:3f:5f:d4:6d:14:bf:47:14:56:27:e3:61:b3:09:
51:4b:34:3d:63:1f:9f:d3:10:b3:f8:51:cb:ef:44:65:86:fd:
6f:6f:21:b3:17:5b:22:6d:7f:84:2e:a0:7b:16:f1:90:5e:f8:
6b:c9:c7:17:53:8e:54:c2:b1:0e:ef:4a:06:f2:3e:29:8d:99:
a3:f1:05:62:6e:d6:dd:fc:a9:fc:c2:9c:89:b5:3b:ce:5b:e5:
f1:a0:ad:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:25:48 2025 by rpki-client