Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/o7y-U4le1uMgnaGm0QVRYuYdtLs.roa
File: o7y-U4le1uMgnaGm0QVRYuYdtLs.roa (raw, json)
Hash identifier: O8IIo3tEE9JA7Gm9nantUz5uEKeQQgo0GgovWNLa+iQ=
Subject key identifier: A3:BC:BE:53:89:5E:D6:E3:20:9D:A1:A6:D1:05:51:62:E6:1D:B4:BB
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 018505E113B57242B41E86224C84118CBE25
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/o7y-U4le1uMgnaGm0QVRYuYdtLs.roa
Signing time: Mon 12 Dec 2022 10:28:34 +0000
ROA not before: Mon 12 Dec 2022 10:28:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24767
IP address blocks: 188.162.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:05:e1:13:b5:72:42:b4:1e:86:22:4c:84:11:8c:be:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 12 10:28:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a3bcbe53895ed6e3209da1a6d1055162e61db4bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:64:3a:94:9e:bb:03:86:b8:04:3b:04:e0:87:
04:d3:25:38:ec:a9:68:d6:bc:60:4b:53:59:1e:1a:
67:c4:97:73:d4:ce:ce:16:cd:8c:c0:59:77:4b:9c:
88:23:db:e3:3f:27:f7:e7:7f:4c:8d:90:1a:34:ea:
c2:3c:61:66:f6:6d:73:d1:1a:6a:18:8a:e6:13:58:
d8:70:3d:75:90:96:ef:67:43:e8:e4:98:03:62:27:
cc:e6:96:f3:26:d5:ee:6e:3a:7e:1b:e3:2d:7c:d9:
74:ca:4d:4b:81:cf:aa:5f:16:45:68:61:a8:85:51:
c1:e1:45:63:81:8d:a0:86:3f:d5:fa:c4:57:12:66:
0e:46:60:40:5f:1b:c8:e3:6b:a3:8c:8e:aa:91:e5:
a9:5b:35:6e:f6:06:13:1c:1f:6f:3c:c9:8c:01:17:
aa:b8:00:26:b4:18:85:5a:2b:07:43:e4:73:c7:aa:
f1:e9:3f:37:84:af:87:a4:66:a4:88:11:69:df:87:
28:6d:d1:ac:39:bc:d4:e4:60:6f:c8:65:48:26:7f:
6e:75:39:4e:f1:5c:e9:30:77:81:70:70:75:ef:71:
92:e5:10:ea:26:93:47:e8:33:7e:1b:d2:90:31:6d:
a2:2a:b8:56:85:e2:9d:d1:e2:c9:58:ed:4e:80:59:
da:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:BC:BE:53:89:5E:D6:E3:20:9D:A1:A6:D1:05:51:62:E6:1D:B4:BB
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/o7y-U4le1uMgnaGm0QVRYuYdtLs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.162.0.0/16
Signature Algorithm: sha256WithRSAEncryption
79:98:e9:b8:d1:be:c8:38:70:3c:4b:2a:66:43:ab:ce:be:ec:
e7:3e:47:df:4c:e6:be:11:e2:28:e8:16:d7:14:c2:80:99:10:
33:96:04:8e:9d:78:e2:ec:04:de:b2:41:4d:d8:07:34:eb:c8:
1f:bc:8b:c1:81:84:ad:0e:fc:5e:bc:02:88:fc:4e:3b:64:0c:
f9:69:11:a7:d9:ee:23:b1:f4:e7:ba:5e:01:63:45:91:b2:78:
e8:e0:45:36:d6:cc:6c:00:de:aa:3a:23:4c:fa:76:8b:89:ac:
7a:b5:92:c7:d7:f6:84:e2:7d:f3:52:a0:15:78:79:cc:8f:19:
eb:5e:67:68:15:8a:2f:47:1c:d5:22:66:fe:62:98:d7:d3:45:
43:e3:f5:ff:02:8d:46:06:d1:ea:85:e2:89:38:ba:a2:db:e3:
68:51:82:37:1d:b6:bb:26:9f:9f:01:e4:64:a8:07:b3:3d:ce:
c4:dc:89:a6:52:96:7c:a5:13:2f:cb:f3:47:ad:e5:ce:5a:86:
be:35:b3:fe:48:65:a7:18:6e:94:52:e2:6d:d2:c2:5e:54:af:
0c:c9:d9:97:61:22:13:92:00:df:91:a8:60:33:17:eb:aa:8a:
23:da:11:7c:bf:fa:d5:ca:b8:56:b0:6f:0a:37:83:96:d9:77:
75:1e:78:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:58:42 2025 by rpki-client