Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/4ba0dc-4702-47c1-ba9e-4b750bbc6167/1/smYJjIsUyvAOHm8Zeq7JfDto4Yc.roa
File: smYJjIsUyvAOHm8Zeq7JfDto4Yc.roa (raw, json)
Hash identifier: G+kQSIyhWw6VEOWRPPAVDMQtyT47Iax1sS4oGdS87fU=
Subject key identifier: B2:66:09:8C:8B:14:CA:F0:0E:1E:6F:19:7A:AE:C9:7C:3B:68:E1:87
Certificate issuer: /CN=4020199044c54c237903f656f83b2640c2d1df45
Certificate serial: 01856DD3F47D56F8AE4D62DF73FA7A30B975
Authority key identifier: 40:20:19:90:44:C5:4C:23:79:03:F6:56:F8:3B:26:40:C2:D1:DF:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QCAZkETFTCN5A_ZW-DsmQMLR30U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/4ba0dc-4702-47c1-ba9e-4b750bbc6167/1/smYJjIsUyvAOHm8Zeq7JfDto4Yc.roa
Signing time: Sun 01 Jan 2023 14:54:45 +0000
ROA not before: Sun 01 Jan 2023 14:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49175
IP address blocks: 185.138.84.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:d3:f4:7d:56:f8:ae:4d:62:df:73:fa:7a:30:b9:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4020199044c54c237903f656f83b2640c2d1df45
Validity
Not Before: Jan 1 14:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b266098c8b14caf00e1e6f197aaec97c3b68e187
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:7a:7e:6b:66:ce:ff:5e:1c:cf:ab:a1:ee:d0:
f6:a4:88:a5:d2:94:86:5e:cf:f3:eb:a4:7d:84:c4:
96:d9:35:36:11:be:f5:b7:d6:3b:78:12:2a:22:1b:
3b:a1:9d:d8:17:96:35:11:c3:b3:0b:3b:26:be:08:
43:6a:92:b0:3e:5e:c4:b2:3f:68:9a:b3:e4:ae:7e:
8a:6d:ca:99:ba:14:9f:cd:46:63:bb:08:b8:bf:20:
3d:82:bf:9e:1b:f6:ec:9c:b9:65:ce:fa:d1:bf:a9:
2a:a3:4f:5b:e0:21:ce:05:1b:4f:13:d1:a8:75:ac:
4f:0a:e2:c1:08:9f:f6:91:6c:48:63:53:1c:b1:9d:
b5:02:d6:2d:fe:60:40:c1:99:17:6d:50:56:63:26:
53:04:f6:c3:c8:9d:50:3b:86:8b:31:eb:4f:1b:de:
e6:78:26:06:2c:a1:37:d8:ee:21:ba:5c:e1:88:b8:
94:b8:c7:71:7d:73:07:60:51:84:28:ad:58:bf:98:
1d:55:31:cf:2f:02:28:0c:f6:8f:bd:8a:3c:89:2c:
99:5f:96:94:32:0b:50:6a:c6:c0:78:e0:89:40:b0:
87:d5:e5:aa:47:2f:a5:7b:43:8e:69:c7:46:31:59:
d6:7d:8c:05:4b:00:ea:5b:da:56:7d:4a:86:20:ee:
e5:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:66:09:8C:8B:14:CA:F0:0E:1E:6F:19:7A:AE:C9:7C:3B:68:E1:87
X509v3 Authority Key Identifier:
keyid:40:20:19:90:44:C5:4C:23:79:03:F6:56:F8:3B:26:40:C2:D1:DF:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QCAZkETFTCN5A_ZW-DsmQMLR30U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/4ba0dc-4702-47c1-ba9e-4b750bbc6167/1/smYJjIsUyvAOHm8Zeq7JfDto4Yc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/4ba0dc-4702-47c1-ba9e-4b750bbc6167/1/QCAZkETFTCN5A_ZW-DsmQMLR30U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.84.0/24
Signature Algorithm: sha256WithRSAEncryption
62:8d:86:02:46:b7:8b:98:73:48:62:cf:9e:ce:c3:49:9b:61:
34:8d:10:6e:b1:3a:65:ba:37:bd:29:60:9c:34:81:90:90:fb:
c3:76:be:22:ff:4a:42:78:06:39:27:ea:73:e0:28:c5:bc:ef:
cb:c3:ff:56:f9:b8:7a:f7:6c:65:8b:cc:ee:42:d3:0c:e9:1d:
17:93:66:29:f9:f1:d9:38:a8:fe:42:99:9a:88:9a:e7:73:f5:
3d:5b:45:c4:aa:58:c9:bf:4e:85:e5:ff:c5:c4:a9:fa:31:d5:
fb:83:4d:5f:77:f7:81:53:9a:af:f1:49:58:09:34:ae:0c:cc:
12:61:03:5b:f3:11:c5:a7:ba:48:49:ca:27:d9:6b:7f:61:f0:
34:af:89:02:65:91:d4:f2:c5:b7:ea:bd:a2:f4:e0:7e:f4:0d:
3d:24:7a:43:9d:9e:b8:93:5e:76:0c:a8:8b:04:57:0f:71:63:
3c:2a:36:8c:05:1d:82:3d:36:ee:a7:85:31:9e:f1:c5:f4:f7:
4f:72:c4:1e:75:70:cb:fc:a8:88:2e:0a:65:bb:14:64:f6:9f:
5d:91:fa:cf:e4:26:64:0b:e3:58:95:c6:63:04:b4:ec:26:1a:
7e:3d:b5:df:10:b5:f5:26:8a:95:50:1e:f4:41:5e:79:45:4d:
de:ad:90:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:44:39 2025 by rpki-client