Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/8e2067-283b-4e4e-b67e-69f33fe1b530/1/psZ-5Kp-wY6vHQxEmSGd8r_JD24.roa
File: psZ-5Kp-wY6vHQxEmSGd8r_JD24.roa (raw, json)
Hash identifier: sohwH+hjnyRySH4Ue8j1soF2dafmufZGNfrMiark0+A=
Subject key identifier: A6:C6:7E:E4:AA:7E:C1:8E:AF:1D:0C:44:99:21:9D:F2:BF:C9:0F:6E
Certificate issuer: /CN=162e48329c8be8ef209e9958da66ab0240145e19
Certificate serial: 018B14C9903B70F7A764141486DF1C1F3201
Authority key identifier: 16:2E:48:32:9C:8B:E8:EF:20:9E:99:58:DA:66:AB:02:40:14:5E:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fi5IMpyL6O8gnplY2marAkAUXhk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/8e2067-283b-4e4e-b67e-69f33fe1b530/1/psZ-5Kp-wY6vHQxEmSGd8r_JD24.roa
Signing time: Mon 09 Oct 2023 14:13:55 +0000
ROA not before: Mon 09 Oct 2023 14:13:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60893
IP address blocks: 185.144.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:14:c9:90:3b:70:f7:a7:64:14:14:86:df:1c:1f:32:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=162e48329c8be8ef209e9958da66ab0240145e19
Validity
Not Before: Oct 9 14:13:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a6c67ee4aa7ec18eaf1d0c4499219df2bfc90f6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e0:34:5b:e3:4b:77:ad:56:2d:d5:06:c5:0d:
a8:5f:20:77:21:fa:8c:0e:36:81:d3:50:af:56:43:
e1:84:ce:94:ee:27:2d:b4:b0:cf:5b:e1:09:79:e3:
de:a9:15:e2:18:a4:3a:b9:10:b8:a8:3d:aa:cf:81:
18:b3:17:ec:20:ab:84:02:ef:b0:39:6c:79:b7:71:
24:e1:02:a6:a0:5d:d4:e7:e1:ff:84:87:99:98:8c:
89:03:16:a6:4c:a1:d1:02:d2:c5:71:ba:5e:ac:d6:
9b:09:04:8f:ed:75:47:ae:96:3c:bd:19:20:6c:60:
37:1c:e0:ac:08:23:6b:46:58:57:a2:9d:d0:63:a7:
65:87:9e:e5:37:81:27:07:29:62:ae:4a:62:64:d4:
c4:98:bd:1a:de:1b:b4:9b:2a:0c:e9:27:24:e5:51:
b3:68:2e:d1:b3:3e:dc:55:dd:67:81:a2:24:da:0f:
b6:7a:28:5c:0a:6d:da:4c:86:22:02:db:e4:e3:74:
90:04:29:8c:07:57:8e:8d:ed:ad:22:8d:0e:90:b3:
9b:54:bc:7b:27:b2:f7:de:4d:1f:cc:d9:e8:95:55:
b4:db:7b:60:22:43:48:08:09:bb:9e:ca:11:4d:ad:
3a:ab:80:2c:0e:cb:2a:aa:8c:d5:b8:b1:85:21:79:
3f:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:C6:7E:E4:AA:7E:C1:8E:AF:1D:0C:44:99:21:9D:F2:BF:C9:0F:6E
X509v3 Authority Key Identifier:
keyid:16:2E:48:32:9C:8B:E8:EF:20:9E:99:58:DA:66:AB:02:40:14:5E:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fi5IMpyL6O8gnplY2marAkAUXhk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/8e2067-283b-4e4e-b67e-69f33fe1b530/1/psZ-5Kp-wY6vHQxEmSGd8r_JD24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/8e2067-283b-4e4e-b67e-69f33fe1b530/1/Fi5IMpyL6O8gnplY2marAkAUXhk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.20.0/24
Signature Algorithm: sha256WithRSAEncryption
68:6d:ca:91:81:1e:3f:c1:2e:09:d7:aa:11:0a:09:63:3c:3c:
86:11:d9:df:a7:7b:aa:68:d7:05:fe:af:50:be:ba:e5:3a:35:
2e:14:50:d5:e0:41:ef:b8:3d:7c:b6:b1:1a:08:32:ee:9f:a3:
14:a3:73:da:44:78:93:8c:8c:aa:1e:df:53:04:fb:f1:74:b2:
5a:aa:f5:b6:9b:7f:91:7d:9c:3b:4c:bc:f4:54:59:39:7b:73:
c0:3a:c2:d4:a2:6e:d7:74:83:78:6a:db:14:1c:5b:98:11:90:
b1:00:21:a9:40:af:2c:60:c8:a9:2a:fd:cf:66:7d:54:72:a2:
f4:8c:9a:d4:6e:5e:6a:dd:b0:f6:78:75:14:d6:48:27:93:c1:
4d:d5:0b:1e:d2:f8:0d:cf:64:4e:f2:f9:b4:e4:65:8e:33:63:
83:e4:95:4e:bc:b9:28:9d:04:62:3d:9b:65:d9:e2:29:af:a8:
0e:58:53:0f:45:5f:74:12:53:1c:8c:5f:cb:5a:13:a3:81:a8:
60:08:6c:e3:2f:1d:0f:26:41:cb:09:0a:96:03:e7:26:b6:b1:
ff:ef:0f:7e:2e:49:59:cf:c8:04:3a:9c:20:26:d9:85:5e:30:
8e:10:6f:31:1d:bb:c5:bf:1d:13:ab:83:f4:e7:22:3d:ca:09:
94:90:1f:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 00:37:52 2025 by rpki-client