Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/05d8ba-9433-4a2e-bfe6-37b21bab3b00/1/Fi8Kd0WDM6TFDtU3uMMtACbYDYM.roa
File: Fi8Kd0WDM6TFDtU3uMMtACbYDYM.roa (raw, json)
Hash identifier: 95yR7qQ9p3uSi5gUUrqT2obT4xUAdVPnhjFEOiRFbNs=
Subject key identifier: 16:2F:0A:77:45:83:33:A4:C5:0E:D5:37:B8:C3:2D:00:26:D8:0D:83
Certificate issuer: /CN=82d7fe7312efb42bd8d1ecd82ac76191ea26c356
Certificate serial: 020E6F
Authority key identifier: 82:D7:FE:73:12:EF:B4:2B:D8:D1:EC:D8:2A:C7:61:91:EA:26:C3:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gtf-cxLvtCvY0ezYKsdhkeomw1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/05d8ba-9433-4a2e-bfe6-37b21bab3b00/1/Fi8Kd0WDM6TFDtU3uMMtACbYDYM.roa
Signing time: Tue 15 Feb 2022 15:12:24 +0000
ROA not before: Tue 15 Feb 2022 15:12:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29684
IP address blocks: 92.43.168.0/23 maxlen: 23
92.43.168.0/24 maxlen: 24
92.43.169.0/24 maxlen: 24
92.43.170.0/24 maxlen: 24
92.43.170.0/23 maxlen: 23
92.43.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134767 (0x20e6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82d7fe7312efb42bd8d1ecd82ac76191ea26c356
Validity
Not Before: Feb 15 15:12:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=162f0a77458333a4c50ed537b8c32d0026d80d83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:55:b8:08:21:9b:a0:09:a7:56:24:0e:14:13:
12:4a:29:55:47:8e:37:ec:ed:9a:49:3c:b8:d6:7b:
10:81:1d:21:65:43:30:49:50:dd:dc:35:ca:88:54:
2b:9a:09:78:62:26:94:3a:96:19:b9:d9:54:7f:d7:
8a:0b:6c:6b:d0:e9:0d:25:f6:63:2c:84:77:f2:70:
fd:3c:9a:a0:9e:b7:d8:cc:85:9d:e3:f6:6f:55:c5:
72:00:49:98:db:40:ff:ff:6e:27:6c:cb:c5:b7:fa:
99:90:2b:06:b4:33:5b:01:74:0f:0e:14:02:ef:27:
ff:e3:2b:b5:ab:d0:dc:3e:ff:9c:d8:26:34:ff:ef:
84:6a:08:8d:6d:25:8b:14:40:99:09:12:1d:67:5e:
ec:a2:92:ba:68:66:e9:d2:87:71:f4:d3:19:83:bd:
b9:e7:42:e1:b7:c1:95:90:d4:a1:10:5b:ec:2f:1c:
81:55:f8:a1:2f:28:10:79:f8:28:37:0a:93:13:40:
dc:80:71:e8:0e:03:2c:d3:42:cd:e7:ef:ca:6f:8f:
74:9f:d6:ab:eb:4e:28:be:cb:49:3f:28:b1:36:21:
ca:92:a4:58:45:63:ef:be:36:d3:de:5b:f6:98:7b:
e5:39:84:6c:27:81:f6:2f:c6:aa:93:73:77:82:76:
51:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:2F:0A:77:45:83:33:A4:C5:0E:D5:37:B8:C3:2D:00:26:D8:0D:83
X509v3 Authority Key Identifier:
keyid:82:D7:FE:73:12:EF:B4:2B:D8:D1:EC:D8:2A:C7:61:91:EA:26:C3:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gtf-cxLvtCvY0ezYKsdhkeomw1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/05d8ba-9433-4a2e-bfe6-37b21bab3b00/1/Fi8Kd0WDM6TFDtU3uMMtACbYDYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/05d8ba-9433-4a2e-bfe6-37b21bab3b00/1/gtf-cxLvtCvY0ezYKsdhkeomw1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.43.168.0/22
Signature Algorithm: sha256WithRSAEncryption
a5:f3:0b:21:5e:37:9f:9b:5a:44:06:70:e4:2d:a6:fb:34:60:
a9:ae:8c:a0:1a:3e:44:76:4b:9f:ee:27:99:36:66:84:a7:46:
f3:57:8b:5e:f1:d7:48:67:b9:e3:59:1b:8a:7d:c2:62:07:b4:
3a:f4:89:d3:ac:d0:cf:e2:8b:ec:fa:64:34:1a:76:a8:dc:11:
80:1c:46:e9:8d:df:11:11:70:9b:e3:46:cc:fb:55:28:b4:7d:
b0:f8:89:5a:98:f1:35:44:4c:0e:0f:cf:1b:67:0d:97:43:c4:
1f:57:f7:d7:f5:27:b5:b0:2f:5d:36:49:5c:4c:1e:74:72:c1:
d5:db:b1:a9:8c:56:1b:1a:36:76:bf:9a:cf:ec:33:8b:6b:a3:
f0:8c:b7:2e:3c:d1:5f:33:1a:05:43:71:17:b9:53:61:d6:0b:
7c:40:37:f9:bb:c9:d3:93:99:1a:66:b0:d0:32:3e:67:1a:b2:
23:e6:b8:de:17:3a:a7:3b:cb:08:bc:a0:75:20:a4:08:33:af:
4a:97:5f:ff:7e:52:e5:bb:42:72:df:95:ff:19:63:f7:56:75:
70:e6:73:0f:ab:9f:d4:16:7e:62:6d:ed:ed:9a:50:dd:7b:fb:
1f:e6:12:7e:ba:48:da:50:69:3b:62:2a:f7:cf:dc:53:d1:2e:
5e:60:82:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:30:04 2025 by rpki-client