Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/KPr4yZK3PRoTE7iDI9SqSZKRjUQ.roa
File: KPr4yZK3PRoTE7iDI9SqSZKRjUQ.roa (raw, json)
Hash identifier: ciAqNzwQXH3OL2OtIKw/2PCq3LyDLYcUawedcKqR3os=
Subject key identifier: 28:FA:F8:C9:92:B7:3D:1A:13:13:B8:83:23:D4:AA:49:92:91:8D:44
Certificate issuer: /CN=b0adf05afef6f65fa19a61c30ae4fb11c7cf25b6
Certificate serial: 17DE1F8F
Authority key identifier: B0:AD:F0:5A:FE:F6:F6:5F:A1:9A:61:C3:0A:E4:FB:11:C7:CF:25:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sK3wWv729l-hmmHDCuT7EcfPJbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/KPr4yZK3PRoTE7iDI9SqSZKRjUQ.roa
Signing time: Sat 01 Jan 2022 06:58:38 +0000
ROA not before: Sat 01 Jan 2022 06:58:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2116
IP address blocks: 185.67.40.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400433039 (0x17de1f8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0adf05afef6f65fa19a61c30ae4fb11c7cf25b6
Validity
Not Before: Jan 1 06:58:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=28faf8c992b73d1a1313b88323d4aa4992918d44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c0:ae:4a:b3:03:c4:da:e0:ca:4c:10:5f:d8:
99:e6:03:8c:6c:8e:88:35:1f:60:34:6f:e7:1b:e7:
6d:fe:7e:93:4f:bf:55:c2:80:60:e6:a8:59:30:d7:
d5:6a:ad:17:ee:be:01:a5:92:a7:cf:08:a0:9f:a0:
d1:f4:a8:ca:1c:00:e9:b5:d4:c9:0a:20:45:9d:5d:
48:16:eb:51:83:63:b8:dd:d2:ce:00:e0:96:97:fc:
2b:be:39:66:c0:c9:38:97:13:3f:df:ad:90:87:1a:
95:8a:37:73:81:49:b1:eb:3a:25:c5:dc:e6:fa:64:
c5:3d:8c:c3:ca:fa:60:99:cb:e3:e7:e7:87:13:a9:
86:ce:f5:9d:98:b3:8d:4b:8c:92:fa:26:51:f7:4a:
22:ea:59:bc:77:c2:85:0b:7c:73:dd:0c:d1:3c:4e:
87:a2:5e:f3:56:8e:e8:37:a5:cf:68:af:55:4d:47:
7e:3c:4e:42:67:76:a5:5f:f4:03:fb:d0:ae:7d:51:
37:0c:b7:fc:da:47:82:9e:68:4a:42:c1:47:cb:90:
bc:38:3c:b1:dd:b1:fa:ca:5d:4c:b8:47:7d:1a:0e:
a1:be:78:63:4c:de:bc:40:dc:95:18:2e:c2:ca:70:
91:c5:c2:4b:ae:86:bb:18:e5:10:b0:d0:a8:9b:fe:
5e:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:FA:F8:C9:92:B7:3D:1A:13:13:B8:83:23:D4:AA:49:92:91:8D:44
X509v3 Authority Key Identifier:
keyid:B0:AD:F0:5A:FE:F6:F6:5F:A1:9A:61:C3:0A:E4:FB:11:C7:CF:25:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sK3wWv729l-hmmHDCuT7EcfPJbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/KPr4yZK3PRoTE7iDI9SqSZKRjUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.67.40.0/22
Signature Algorithm: sha256WithRSAEncryption
74:68:73:c0:4c:9d:30:f6:05:9d:2d:7a:50:93:37:14:24:ba:
4d:17:83:cb:0c:d0:3f:d7:fb:d8:66:d9:74:cb:1f:ed:fa:de:
c2:05:57:27:3e:c8:5d:a5:48:1f:18:51:44:27:74:c3:e5:f4:
4e:15:a0:5c:13:53:a9:aa:bb:51:05:1b:3e:dc:82:e4:64:7b:
cd:aa:8c:81:ff:c9:3a:2d:9e:0c:85:47:10:f7:42:d8:be:0b:
fd:26:01:23:4e:a5:20:35:69:bb:0f:c8:e2:ed:9d:85:a6:dd:
55:dd:76:61:1d:e7:82:be:ff:30:e9:98:f5:51:ed:37:ba:f8:
1d:42:8a:ce:47:79:cd:ac:cc:2f:d6:bf:36:9d:a0:05:da:23:
63:b0:72:8a:58:e8:71:d4:8a:98:da:cc:9b:bb:fc:ef:b6:89:
4f:d1:d3:7b:7c:93:a3:ab:a5:c1:85:a0:fe:5e:2d:e6:7a:ee:
d2:da:8a:cb:26:1c:62:c6:a2:13:3f:4a:36:cb:e3:67:9b:87:
df:49:78:04:2c:eb:cd:df:2c:7e:b8:98:d0:5d:ae:62:3a:f7:
a6:ae:4a:5b:f4:96:9c:15:67:b4:19:de:fa:54:80:a8:7f:52:
3a:72:50:3e:a3:3b:50:99:4d:41:70:5a:b7:3f:41:9a:7c:15:
96:f8:0a:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:32 2025 by rpki-client