Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/d24bc2-42f3-46d9-bdd9-1c9492245cab/1/nejqVcMhDxYKC6IfKttpyKYnI24.roa
File: nejqVcMhDxYKC6IfKttpyKYnI24.roa (raw, json)
Hash identifier: SlOMKodCsd0k6x6pMFqAp54b2tUR6HBQe/1u6MQhXlQ=
Subject key identifier: 9D:E8:EA:55:C3:21:0F:16:0A:0B:A2:1F:2A:DB:69:C8:A6:27:23:6E
Certificate issuer: /CN=deb046b6e309e9a866522c2a40c66ffc42fbb843
Certificate serial: 3770F6CE
Authority key identifier: DE:B0:46:B6:E3:09:E9:A8:66:52:2C:2A:40:C6:6F:FC:42:FB:B8:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3rBGtuMJ6ahmUiwqQMZv_EL7uEM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/d24bc2-42f3-46d9-bdd9-1c9492245cab/1/nejqVcMhDxYKC6IfKttpyKYnI24.roa
Signing time: Sat 01 Jan 2022 04:55:52 +0000
ROA not before: Sat 01 Jan 2022 04:55:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24713
IP address blocks: 80.248.160.0/20 maxlen: 20
81.22.160.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 930150094 (0x3770f6ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=deb046b6e309e9a866522c2a40c66ffc42fbb843
Validity
Not Before: Jan 1 04:55:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9de8ea55c3210f160a0ba21f2adb69c8a627236e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:4d:20:67:3e:69:50:e3:40:00:05:b5:e2:b0:
0a:b6:20:46:ce:94:2e:b3:4d:7c:11:ee:9c:8a:6f:
1c:e3:ee:ba:4c:0a:f3:ee:0e:68:7a:2f:ff:fd:ae:
da:92:de:8b:f2:57:68:b3:ca:cc:81:1d:44:f4:aa:
76:16:46:ce:5e:00:e8:e3:2f:7b:ab:c2:6d:14:f5:
2f:9a:33:44:e0:0d:95:84:ca:5d:e0:11:d6:31:b3:
5f:6f:ba:8d:8f:37:91:f6:bf:72:e0:f8:8e:85:38:
5a:c5:6e:15:1e:de:e4:09:ac:f4:2a:df:b1:a8:83:
77:55:80:d8:84:11:ab:34:b0:9a:cd:33:79:d7:df:
f8:48:6b:f8:52:1d:15:6a:a1:42:53:b6:f5:a0:13:
bc:98:46:8e:0e:91:ca:f6:3d:46:12:cc:1e:43:c6:
9c:18:53:14:32:81:0d:a5:ee:3d:63:5f:78:a3:0d:
40:aa:dc:a5:71:cf:43:62:e0:c4:be:7f:4d:3d:4c:
43:45:84:c3:dd:68:3d:1e:f9:04:47:7a:7f:6d:e8:
fa:fc:0f:31:1d:41:a9:6c:c1:cc:b8:36:b7:4d:ce:
db:e3:92:7a:78:ba:83:18:a5:38:f0:f2:d3:f3:93:
a2:a6:cc:7e:b9:a4:1e:a5:17:b2:cb:6e:1d:47:31:
82:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:E8:EA:55:C3:21:0F:16:0A:0B:A2:1F:2A:DB:69:C8:A6:27:23:6E
X509v3 Authority Key Identifier:
keyid:DE:B0:46:B6:E3:09:E9:A8:66:52:2C:2A:40:C6:6F:FC:42:FB:B8:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3rBGtuMJ6ahmUiwqQMZv_EL7uEM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/d24bc2-42f3-46d9-bdd9-1c9492245cab/1/nejqVcMhDxYKC6IfKttpyKYnI24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/d24bc2-42f3-46d9-bdd9-1c9492245cab/1/3rBGtuMJ6ahmUiwqQMZv_EL7uEM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.248.160.0/20
81.22.160.0/20
Signature Algorithm: sha256WithRSAEncryption
1a:c6:d1:02:d8:02:ea:6c:f8:f4:95:e4:4d:8c:e6:2f:e1:d5:
c6:b9:90:dd:66:21:4b:cc:5c:77:97:a5:a7:ee:5b:37:70:31:
e2:26:51:cc:50:90:84:69:61:b1:43:39:c0:e4:03:b4:f2:b3:
88:2a:8c:17:eb:21:99:1d:a6:8a:98:cf:29:ce:e9:b1:50:4f:
1e:a1:f0:f6:06:d7:b4:38:38:ea:e1:26:fb:02:1d:ab:b1:d6:
07:63:54:bc:78:2e:9a:05:40:c6:cc:45:81:51:bf:99:a2:28:
b9:cb:79:be:81:61:80:d0:5f:65:c9:33:84:e6:69:9b:1b:fe:
36:13:1f:22:50:57:ef:6a:22:66:8a:cc:2c:f0:03:f3:cc:52:
30:12:a8:f7:de:6f:89:80:3a:f4:80:c8:c5:26:9a:9a:f2:7e:
80:fa:93:53:33:41:1a:47:17:56:dc:29:95:09:6e:8d:88:a1:
47:f7:7b:4a:3a:81:21:ff:a9:82:01:44:d7:be:db:64:25:2d:
9f:22:a6:69:4b:88:18:93:f6:29:17:2c:1f:70:22:d6:ed:95:
f3:61:3b:bc:b6:07:e3:5e:94:ef:56:45:c4:ab:f7:0a:ad:c5:
8d:da:4e:8a:0c:51:20:4c:9b:4d:22:57:8f:3b:77:15:a7:68:
62:a2:66:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:39:29 2025 by rpki-client