Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/f498a2-d86d-4c75-bfd3-e8c559c71d66/1/Aamy6jXvb6N1apjeJMrEzpOYyos.roa
File: Aamy6jXvb6N1apjeJMrEzpOYyos.roa (raw, json)
Hash identifier: EDJOxhB2RuEhIafEtRJCjCW95FtGwuhWWuX9yq9P/n4=
Subject key identifier: 01:A9:B2:EA:35:EF:6F:A3:75:6A:98:DE:24:CA:C4:CE:93:98:CA:8B
Certificate issuer: /CN=26bd5ffbce6bf8707fa3e5967e0d38b455d9d4e1
Certificate serial: 018239C3B52809485089B13E7E9A2AA55123
Authority key identifier: 26:BD:5F:FB:CE:6B:F8:70:7F:A3:E5:96:7E:0D:38:B4:55:D9:D4:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jr1f-85r-HB_o-WWfg04tFXZ1OE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/f498a2-d86d-4c75-bfd3-e8c559c71d66/1/Aamy6jXvb6N1apjeJMrEzpOYyos.roa
Signing time: Tue 26 Jul 2022 09:08:23 +0000
ROA not before: Tue 26 Jul 2022 09:08:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5602
IP address blocks: 185.169.176.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:39:c3:b5:28:09:48:50:89:b1:3e:7e:9a:2a:a5:51:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26bd5ffbce6bf8707fa3e5967e0d38b455d9d4e1
Validity
Not Before: Jul 26 09:08:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=01a9b2ea35ef6fa3756a98de24cac4ce9398ca8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:94:f6:34:2f:69:73:d9:53:e2:4b:4d:e4:8e:
75:80:42:71:5c:46:c2:3c:a9:c8:f0:8e:3a:bb:38:
52:98:3f:7f:7a:ac:24:ea:1a:e9:18:be:c6:29:ec:
05:7f:77:68:0d:9c:f6:ba:54:66:fa:29:1d:9d:68:
8f:86:c6:07:ea:f4:f0:1b:8c:06:4a:6d:88:05:0c:
6e:96:35:72:06:50:82:00:c2:1e:36:88:c0:3d:93:
f1:d2:cb:e5:b8:be:87:a5:9b:44:52:3b:56:9a:a5:
38:2c:6e:c8:a9:c3:03:3c:79:5c:7d:d0:43:2a:46:
f9:53:5e:23:7b:23:71:f1:11:22:61:ef:ad:4b:31:
97:15:75:85:95:71:04:04:40:32:1f:e5:1e:92:7e:
2f:ac:9b:73:48:ae:96:71:a3:08:37:65:08:7c:ae:
82:92:6f:cf:d5:88:20:a0:3e:b9:46:fd:fa:38:07:
27:2b:e5:8b:55:31:43:ec:bb:dd:4a:d4:6e:ad:0b:
9a:98:04:11:de:6a:fe:07:23:de:20:98:0a:a5:e0:
fd:82:a0:b1:c2:a0:c4:22:f4:f7:fd:c9:50:67:98:
70:e4:4c:7a:81:27:10:9c:c9:c9:0c:32:e2:57:aa:
82:77:52:30:28:ea:84:13:58:21:90:fe:3c:c4:3f:
f4:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:A9:B2:EA:35:EF:6F:A3:75:6A:98:DE:24:CA:C4:CE:93:98:CA:8B
X509v3 Authority Key Identifier:
keyid:26:BD:5F:FB:CE:6B:F8:70:7F:A3:E5:96:7E:0D:38:B4:55:D9:D4:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jr1f-85r-HB_o-WWfg04tFXZ1OE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/f498a2-d86d-4c75-bfd3-e8c559c71d66/1/Aamy6jXvb6N1apjeJMrEzpOYyos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/f498a2-d86d-4c75-bfd3-e8c559c71d66/1/Jr1f-85r-HB_o-WWfg04tFXZ1OE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.176.0/22
Signature Algorithm: sha256WithRSAEncryption
8f:a6:bb:1a:16:4c:ee:55:dc:dd:6b:69:64:1d:fc:de:3b:9f:
a7:98:20:91:c7:72:c6:0d:f6:56:b4:66:6b:64:91:58:fd:bd:
a6:5b:0c:08:12:41:ce:1b:9b:1c:f6:1d:e3:86:8c:9d:82:4d:
e0:d0:8a:1d:90:81:98:c5:6d:c2:8e:67:d0:b8:59:ef:bc:26:
75:2f:e7:9e:d4:cf:0b:5a:ca:69:68:1a:09:82:f4:5c:ef:88:
cb:bf:3c:f5:af:ed:62:ea:40:6d:98:ed:ff:c1:19:83:16:81:
18:ee:ea:7b:b4:8b:97:48:55:50:6c:a1:7a:50:53:18:d1:fc:
ca:76:9d:4f:04:a7:9a:70:fe:39:c7:78:ad:3c:6e:26:4f:3d:
0d:0c:98:c0:ad:99:82:6d:c8:16:f9:30:86:4b:2f:f2:91:2f:
78:44:3d:c3:fa:51:85:b3:e7:5a:b6:e7:43:68:b7:a1:aa:8f:
c3:1d:e0:b3:52:b6:06:1d:54:91:0d:72:d6:50:ab:e5:a1:6e:
87:c2:72:d5:17:3c:b7:f6:6d:d1:ff:eb:3e:4b:8f:21:d2:02:
fa:98:7d:e3:94:32:3c:75:27:36:8e:92:96:19:49:46:17:aa:
b9:d1:ad:7e:92:cd:b3:bf:88:48:d8:5a:7f:d0:68:39:f7:fb:
27:6b:37:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:45:47 2025 by rpki-client