Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/AlTiHXKbizLviJIDcw4oZecBFJ8.roa
File: AlTiHXKbizLviJIDcw4oZecBFJ8.roa (raw, json)
Hash identifier: tTFuw+VuSd408ZqF6HP8Lk8ofRamLdC9CV88dEFirlA=
Subject key identifier: 02:54:E2:1D:72:9B:8B:32:EF:88:92:03:73:0E:28:65:E7:01:14:9F
Certificate issuer: /CN=0c5140282591f9912f9639ee1412b6d1dcff0861
Certificate serial: 01FE8611
Authority key identifier: 0C:51:40:28:25:91:F9:91:2F:96:39:EE:14:12:B6:D1:DC:FF:08:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DFFAKCWR-ZEvljnuFBK20dz_CGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/AlTiHXKbizLviJIDcw4oZecBFJ8.roa
Signing time: Sat 01 Jan 2022 10:57:16 +0000
ROA not before: Sat 01 Jan 2022 10:57:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211970
IP address blocks: 185.234.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33457681 (0x1fe8611)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c5140282591f9912f9639ee1412b6d1dcff0861
Validity
Not Before: Jan 1 10:57:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0254e21d729b8b32ef889203730e2865e701149f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:c5:ec:70:50:20:a7:d8:f4:e7:6d:26:9d:3b:
34:76:e5:b3:4c:8d:cc:81:a0:a1:51:d2:08:5a:c8:
cc:af:07:ab:94:35:d5:86:f5:20:b7:4a:17:85:d2:
f6:8d:02:5c:32:52:5b:4d:c6:cc:5f:65:69:51:72:
19:90:bf:4e:41:08:13:6c:dd:3e:f6:74:15:90:2a:
15:9a:72:8c:65:48:e1:a3:ba:47:05:ef:c8:fe:b6:
4e:3d:17:c5:af:c0:54:87:17:bd:dd:22:68:28:23:
9a:40:0d:ad:99:78:a5:ae:5f:d6:14:16:65:70:d9:
70:ee:e1:43:fc:58:9c:db:dc:54:07:b5:be:b9:85:
ff:c3:2f:69:4a:cb:95:17:85:5f:2c:e9:75:19:6e:
db:2a:43:c0:18:e4:1e:e4:de:04:19:d2:64:47:36:
c5:02:0b:02:3e:43:46:52:e7:7b:87:ce:1c:4b:87:
0b:94:25:3e:3a:37:5a:29:b8:77:ce:cd:ed:ca:43:
3a:83:ff:3e:de:96:24:a1:0d:64:6a:5f:c4:11:70:
d7:a6:54:da:7e:47:f3:e6:f4:6b:dd:5b:91:c9:61:
6d:6c:3f:03:ba:30:d5:8f:80:76:59:01:0e:37:30:
20:de:db:53:af:b1:48:c4:3b:f5:84:ef:e9:94:8f:
ac:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:54:E2:1D:72:9B:8B:32:EF:88:92:03:73:0E:28:65:E7:01:14:9F
X509v3 Authority Key Identifier:
keyid:0C:51:40:28:25:91:F9:91:2F:96:39:EE:14:12:B6:D1:DC:FF:08:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DFFAKCWR-ZEvljnuFBK20dz_CGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/AlTiHXKbizLviJIDcw4oZecBFJ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/DFFAKCWR-ZEvljnuFBK20dz_CGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.245.0/24
Signature Algorithm: sha256WithRSAEncryption
46:71:a7:a2:32:0b:fd:2c:56:37:80:37:67:b7:44:dd:86:3b:
0a:19:05:4e:08:87:29:82:cf:2c:4c:83:ac:67:0c:95:4e:ee:
51:32:0d:30:ba:7c:a8:98:1f:b7:c6:06:1a:dc:e0:d5:9f:1e:
bf:47:7b:d9:24:13:36:c5:91:ef:c2:ed:98:c1:f0:3a:ff:32:
ea:6f:d2:ae:97:18:33:b9:75:69:b2:77:ab:4f:4a:76:46:6f:
55:6f:ff:37:a6:ce:5b:3e:81:8d:0d:be:6a:1e:fc:94:24:03:
3c:0b:99:04:5c:c6:89:7c:37:c2:2a:56:da:7e:1d:89:3e:ff:
64:e0:95:13:b4:dc:95:76:eb:88:74:50:bb:82:c2:ec:8e:44:
74:60:da:4e:4b:a0:e2:eb:5b:7e:c3:50:b3:a9:30:b2:70:32:
3c:92:e5:da:2f:fd:38:02:ec:e1:9b:69:9e:de:a4:f2:e9:1e:
f2:67:8c:da:79:f3:aa:6b:05:a5:40:bf:72:e6:92:fe:00:fd:
8e:07:33:e1:99:ab:8f:d2:9d:df:df:87:58:51:9e:75:a6:bc:
42:e2:17:56:1d:6a:54:e1:a5:3c:cf:6c:95:1a:db:b4:22:92:
df:a5:f2:2b:cb:14:c9:ac:c9:23:bc:87:be:6e:77:6a:c7:95:
35:db:9b:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 01:31:22 2025 by rpki-client