Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/eVTE3cUBSvLre4b3UGyqzEIyOXQ.roa
File: eVTE3cUBSvLre4b3UGyqzEIyOXQ.roa (raw, json)
Hash identifier: z6g+urFjpz9cIhSzzAwpEifDsaFl2WuWNK24aSbjiF8=
Subject key identifier: 79:54:C4:DD:C5:01:4A:F2:EB:7B:86:F7:50:6C:AA:CC:42:32:39:74
Certificate issuer: /CN=992b86095ce558d2e9618728a44228a27be9098f
Certificate serial: 01840F30DFCE7CA7EB411EDF16D5463A27AF
Authority key identifier: 99:2B:86:09:5C:E5:58:D2:E9:61:87:28:A4:42:28:A2:7B:E9:09:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mSuGCVzlWNLpYYcopEIoonvpCY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/eVTE3cUBSvLre4b3UGyqzEIyOXQ.roa
Signing time: Tue 25 Oct 2022 12:49:31 +0000
ROA not before: Tue 25 Oct 2022 12:49:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 166.108.172.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0f:30:df:ce:7c:a7:eb:41:1e:df:16:d5:46:3a:27:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=992b86095ce558d2e9618728a44228a27be9098f
Validity
Not Before: Oct 25 12:49:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7954c4ddc5014af2eb7b86f7506caacc42323974
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:80:42:19:13:a7:d6:fe:48:26:f1:ee:75:b9:
cf:01:bc:0e:5b:fa:e9:55:63:d8:9f:6a:7b:3a:b0:
b8:51:2f:d5:70:16:0d:47:f9:d5:b0:e1:72:32:7d:
89:90:dc:1a:46:3e:d1:da:38:6c:40:f4:ed:5e:45:
ac:6d:d8:91:31:4a:c9:fa:71:0d:c0:94:79:50:bd:
78:e3:88:5a:b1:f2:ee:82:d0:85:26:1f:53:5d:c8:
97:91:f2:22:96:09:2e:34:ba:fc:4f:2b:8a:9a:06:
a6:67:20:d7:08:c6:1a:03:37:b9:a0:31:e3:24:f7:
6f:c9:d8:de:36:f2:2e:4f:0f:5f:2b:b7:08:11:2b:
d1:33:77:b0:6f:5e:50:d1:a1:c6:a6:71:86:d2:9f:
2f:11:f5:73:fd:77:01:75:63:0e:d7:71:b5:52:60:
b4:72:28:00:e3:64:a4:04:ce:9c:4c:61:27:c5:be:
f8:4f:2b:2d:76:37:9c:70:f3:cf:aa:b5:9b:0f:2a:
65:02:63:55:f8:c6:4b:eb:6e:57:b6:11:60:e4:64:
6b:a7:17:64:08:29:fd:00:af:10:a1:45:9e:b1:12:
22:e3:5a:16:93:de:ed:b6:2d:b9:2c:4d:39:b1:a8:
72:d2:d7:c3:7d:62:2d:5f:f9:03:b3:2d:04:1d:96:
41:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:54:C4:DD:C5:01:4A:F2:EB:7B:86:F7:50:6C:AA:CC:42:32:39:74
X509v3 Authority Key Identifier:
keyid:99:2B:86:09:5C:E5:58:D2:E9:61:87:28:A4:42:28:A2:7B:E9:09:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mSuGCVzlWNLpYYcopEIoonvpCY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/eVTE3cUBSvLre4b3UGyqzEIyOXQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/mSuGCVzlWNLpYYcopEIoonvpCY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
166.108.172.0/22
Signature Algorithm: sha256WithRSAEncryption
82:36:77:29:31:19:24:d2:a8:31:5c:1a:ae:c4:83:95:44:6d:
9e:1b:20:ef:98:9d:d4:d1:be:b5:61:fa:55:2d:d1:82:19:44:
6d:72:ef:2d:16:fc:2a:b0:c0:36:c6:cf:1f:88:28:78:8b:f7:
59:56:02:ba:d1:4f:28:4d:c1:98:da:99:b7:ea:b6:dd:af:9e:
df:4e:8b:eb:8a:4a:ee:67:fe:43:35:9f:da:a9:48:ca:d8:3c:
94:d1:79:6b:59:49:55:45:ef:cc:00:0c:8c:26:90:fa:50:90:
00:3c:c6:46:90:9b:63:9f:f0:e7:54:bf:46:97:e2:97:7b:ea:
3e:ef:b6:27:00:f6:04:77:a0:5a:47:e3:7e:40:e9:b8:df:7e:
d8:73:b8:29:ac:a0:23:2d:0d:81:8a:71:a0:2a:91:61:d9:8a:
a2:27:11:7c:77:d1:d1:5b:50:07:c1:c1:85:b5:8e:83:9d:cf:
38:49:06:59:27:61:3d:8a:7b:3e:01:aa:60:b7:82:a5:60:cb:
66:aa:2a:32:fd:81:38:48:6d:a5:a1:c5:37:15:47:ae:31:76:
b7:a9:0b:85:04:84:7f:da:60:6d:4d:01:db:d0:c4:ac:d3:23:
9e:ae:18:0a:02:a7:e5:4d:23:8d:04:3f:2e:03:56:f4:cf:86:
ea:3e:bd:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:46 2023 by rpki-client on console.sobornost.net