Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/d69830-ccb1-4675-ad2f-66ac0dba5bf2/1/hLF5T8gEAGW-_TuF2_wSZ7u7Jlg.roa
File: hLF5T8gEAGW-_TuF2_wSZ7u7Jlg.roa (raw, json)
Hash identifier: R+eDDUxgrMmTI6gM23dSDxckfl6L0AO7IQjKFLI/B0E=
Subject key identifier: 84:B1:79:4F:C8:04:00:65:BE:FD:3B:85:DB:FC:12:67:BB:BB:26:58
Certificate issuer: /CN=d947b281348abdac24c2bd16da06775ca755f410
Certificate serial: 01856F1DBC247BE2DBFFFDD7EADD6F766D8B
Authority key identifier: D9:47:B2:81:34:8A:BD:AC:24:C2:BD:16:DA:06:77:5C:A7:55:F4:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2UeygTSKvawkwr0W2gZ3XKdV9BA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/d69830-ccb1-4675-ad2f-66ac0dba5bf2/1/hLF5T8gEAGW-_TuF2_wSZ7u7Jlg.roa
Signing time: Sun 01 Jan 2023 20:54:57 +0000
ROA not before: Sun 01 Jan 2023 20:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44350
IP address blocks: 185.161.161.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:bc:24:7b:e2:db:ff:fd:d7:ea:dd:6f:76:6d:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d947b281348abdac24c2bd16da06775ca755f410
Validity
Not Before: Jan 1 20:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=84b1794fc8040065befd3b85dbfc1267bbbb2658
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:5f:d6:18:7a:b3:51:00:e5:88:4d:0f:a6:60:
ea:ff:86:dc:78:a7:af:d1:7f:71:61:6b:88:d1:f4:
e7:70:e0:f3:e1:6f:a3:26:f9:29:70:3f:1d:7b:a1:
5e:d7:81:00:19:37:ed:6e:86:1d:6d:18:0f:0f:5a:
18:39:76:ff:0a:fc:be:1f:e0:9c:5c:12:fa:95:0c:
f5:6d:92:0d:f8:85:cc:b1:7d:04:26:d6:c1:13:29:
44:6c:55:59:d1:f8:cc:c5:85:63:ca:40:18:89:a6:
51:6c:a1:56:cc:a7:1e:0c:71:22:89:eb:25:63:81:
2a:77:91:43:a2:8a:ee:34:4e:3b:a9:52:5b:bd:d0:
2c:30:2d:4f:27:23:a7:2f:9b:a3:42:8d:45:14:0f:
5a:ec:76:76:02:85:2d:48:da:d5:2e:25:29:b5:e4:
cd:bf:fd:ec:e0:6d:c0:9c:27:54:57:bb:b3:52:34:
e2:24:e2:be:06:f0:9f:b4:d3:25:24:6f:ed:93:4e:
59:18:22:69:1c:f5:4f:01:52:ec:8b:f3:d1:59:e9:
47:32:46:2b:b2:97:c4:e0:ce:79:e6:ed:f0:9f:86:
f2:0c:9a:29:d3:0f:a7:84:41:e6:8a:f4:c3:0d:6b:
54:22:ac:c3:79:56:68:69:c4:30:da:dc:d1:dc:80:
ac:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:B1:79:4F:C8:04:00:65:BE:FD:3B:85:DB:FC:12:67:BB:BB:26:58
X509v3 Authority Key Identifier:
keyid:D9:47:B2:81:34:8A:BD:AC:24:C2:BD:16:DA:06:77:5C:A7:55:F4:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2UeygTSKvawkwr0W2gZ3XKdV9BA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d69830-ccb1-4675-ad2f-66ac0dba5bf2/1/hLF5T8gEAGW-_TuF2_wSZ7u7Jlg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d69830-ccb1-4675-ad2f-66ac0dba5bf2/1/2UeygTSKvawkwr0W2gZ3XKdV9BA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.161.0/24
Signature Algorithm: sha256WithRSAEncryption
93:ed:2f:89:02:95:f6:f0:b6:21:66:e4:be:43:84:be:6c:5e:
c2:6e:25:86:58:4d:e4:94:5d:98:0e:72:17:0e:fa:be:d9:a5:
76:bb:0c:b4:2b:e5:31:59:62:d4:1f:44:d6:63:91:24:41:7b:
68:24:2d:6d:6b:3c:f8:4d:57:c4:8e:59:b5:bd:ea:36:cc:65:
9c:eb:49:13:47:59:15:ef:06:a7:a4:17:50:f7:8f:53:6e:41:
b7:2d:8c:34:06:8b:ce:ea:85:fa:42:d9:06:f8:98:98:3d:b9:
b7:5f:57:5e:9b:e7:66:d5:eb:f0:e4:14:81:7d:c1:f6:3c:bb:
fa:cd:f1:81:09:3b:87:55:22:78:4b:f0:c5:ad:79:db:b6:2b:
ef:ce:a4:0a:5b:7e:d0:d9:e5:d2:08:b3:15:d6:9f:30:ab:33:
2f:fc:fc:a7:20:0e:fa:53:4d:77:73:9d:49:d6:15:88:96:83:
a8:ea:60:0b:9b:ff:05:2f:11:2b:a6:b8:a6:3a:a1:d9:67:b0:
12:13:79:37:39:ac:a3:fe:2a:9d:9c:3d:2f:2e:6c:58:82:00:
7b:9a:37:5a:88:cd:12:c6:0b:a1:8c:77:1b:9d:0a:aa:4b:3e:
bc:32:15:32:d0:5f:50:81:20:4a:8d:17:dc:43:1f:0f:49:cf:
81:c5:dc:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:19 2025 by rpki-client