Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/wO2dn0sCwOOSksHxpgUnlrllpp4.roa
File: wO2dn0sCwOOSksHxpgUnlrllpp4.roa (raw, json)
Hash identifier: e7C8sDCfSNFMUwSxa7nZU0G5L8ORJp7jHDXASUerSLY=
Subject key identifier: C0:ED:9D:9F:4B:02:C0:E3:92:92:C1:F1:A6:05:27:96:B9:65:A6:9E
Certificate issuer: /CN=9256ebf66b80f08135858d144ced6f785834f5f4
Certificate serial: 110E621D
Authority key identifier: 92:56:EB:F6:6B:80:F0:81:35:85:8D:14:4C:ED:6F:78:58:34:F5:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/klbr9muA8IE1hY0UTO1veFg09fQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/wO2dn0sCwOOSksHxpgUnlrllpp4.roa
Signing time: Sat 01 Jan 2022 09:01:17 +0000
ROA not before: Sat 01 Jan 2022 09:01:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3257
IP address blocks: 185.168.163.0/24 maxlen: 24
185.168.160.0/24 maxlen: 24
185.168.160.0/22 maxlen: 24
185.168.161.0/24 maxlen: 24
185.168.162.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 286155293 (0x110e621d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9256ebf66b80f08135858d144ced6f785834f5f4
Validity
Not Before: Jan 1 09:01:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0ed9d9f4b02c0e39292c1f1a6052796b965a69e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:2d:5f:ea:85:0b:7f:bd:c4:78:99:72:88:c8:
84:cf:c7:78:be:5a:b2:b1:34:03:0b:6a:2d:d1:f3:
76:c7:7b:10:e1:f7:6d:cc:82:25:a3:bb:75:97:46:
54:99:11:0a:00:9c:96:ff:8a:88:5b:e5:3a:a9:94:
2f:66:60:b9:24:bc:32:a7:0a:14:44:60:99:64:1b:
a4:2b:eb:e4:44:54:01:5e:7a:02:e9:72:1e:52:62:
a0:0e:44:d8:9c:b2:3a:d4:1f:37:58:5b:09:4b:1c:
06:9b:85:5a:7f:06:65:5e:43:68:90:23:e8:da:d3:
e8:78:2f:40:96:bf:05:08:b9:5d:dc:38:64:f5:6b:
f5:7d:33:d4:19:d7:57:c7:f2:16:bb:eb:7c:92:f1:
9c:06:a5:29:0a:1b:61:b7:c7:da:1d:f0:eb:03:a1:
a6:9f:42:89:cb:7a:56:1e:89:a5:19:34:d7:ef:2d:
00:dc:27:0e:e6:01:1f:7a:46:64:ba:f4:24:ba:4c:
f3:64:db:84:b9:9c:b6:1c:12:54:73:5f:37:c6:40:
ec:bd:b4:df:de:69:d9:89:ae:d7:56:e4:71:ee:4d:
6a:54:20:98:47:5e:a1:05:0d:81:c7:ca:b8:d3:b6:
01:54:c5:9b:5d:03:92:7e:65:0a:33:b4:0b:4f:0a:
3b:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:ED:9D:9F:4B:02:C0:E3:92:92:C1:F1:A6:05:27:96:B9:65:A6:9E
X509v3 Authority Key Identifier:
keyid:92:56:EB:F6:6B:80:F0:81:35:85:8D:14:4C:ED:6F:78:58:34:F5:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/klbr9muA8IE1hY0UTO1veFg09fQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/wO2dn0sCwOOSksHxpgUnlrllpp4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.160.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:be:24:22:0f:31:3f:60:76:19:e7:55:0f:e9:8e:4d:57:b3:
28:e1:eb:60:3a:84:20:8c:13:ee:a1:a6:98:98:42:2c:08:b0:
15:5b:a5:ac:60:be:31:67:98:a8:e4:c0:e2:fb:f6:87:90:66:
55:43:88:27:4e:9f:b8:d3:e6:18:1f:6b:c7:a6:3b:6d:b0:9c:
f6:86:61:f6:02:44:f7:74:cc:fe:87:7a:b2:49:95:ec:12:e1:
2f:e6:20:55:07:ce:5a:ea:44:d3:6d:c4:c1:ae:eb:67:1f:d3:
35:da:80:0f:df:39:e9:6c:b3:7c:1b:19:76:b9:ba:9e:3a:a1:
c4:be:d6:f9:e0:96:14:05:18:e1:8f:e2:ae:95:6e:c4:e7:ec:
80:c3:82:a3:a0:34:5e:6a:3f:ea:b2:de:3f:8d:a8:a5:61:f0:
5a:54:35:d9:26:e8:ce:cf:66:75:1c:b7:b2:11:db:61:36:17:
72:e3:98:5e:ca:51:49:0b:6c:2f:b7:d5:da:65:3b:f0:df:03:
a2:82:1f:94:1a:c6:72:de:be:93:f3:9d:e0:79:0a:9f:0b:b5:
e9:26:53:4b:88:5d:05:a6:67:15:a0:71:2c:31:7c:95:86:7f:
b9:a8:f4:de:73:6a:37:c3:44:45:07:82:0e:33:90:f1:74:70:
61:51:e5:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:09 2024 by rpki-client on console-ams.rpki-client.org