Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/87b562-cb7d-4a93-bd43-27ee42d925ad/1/69Lcl_oHaSnDzthcG1P_RJtqcGA.roa
File: 69Lcl_oHaSnDzthcG1P_RJtqcGA.roa (raw, json)
Hash identifier: 9qjp7Z2X4mEpX41yO9VuAqRMLpTgxuwJDtcPWU2WVnQ=
Subject key identifier: EB:D2:DC:97:FA:07:69:29:C3:CE:D8:5C:1B:53:FF:44:9B:6A:70:60
Certificate issuer: /CN=a934b8dec1281bc54317c7fed0e9acbc7b97cac7
Certificate serial: 0181D4EBBEDB14362842172A2D0D41C35E62
Authority key identifier: A9:34:B8:DE:C1:28:1B:C5:43:17:C7:FE:D0:E9:AC:BC:7B:97:CA:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qTS43sEoG8VDF8f-0OmsvHuXysc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/87b562-cb7d-4a93-bd43-27ee42d925ad/1/69Lcl_oHaSnDzthcG1P_RJtqcGA.roa
Signing time: Wed 06 Jul 2022 19:10:28 +0000
ROA not before: Wed 06 Jul 2022 19:10:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57761
IP address blocks: 185.27.219.0/24 maxlen: 24
185.27.216.0/24 maxlen: 24
185.27.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d4:eb:be:db:14:36:28:42:17:2a:2d:0d:41:c3:5e:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a934b8dec1281bc54317c7fed0e9acbc7b97cac7
Validity
Not Before: Jul 6 19:10:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ebd2dc97fa076929c3ced85c1b53ff449b6a7060
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ad:41:fb:d1:1b:95:b9:e7:d9:ae:4b:33:98:
86:58:25:c1:d6:95:12:f9:b9:d3:c6:43:15:68:e5:
3b:d9:78:91:27:f6:8b:3e:f2:f0:e0:54:66:ee:ca:
f8:d8:c1:1a:37:54:2c:03:71:47:4b:00:b8:9e:bc:
ef:7f:35:94:cb:d4:cf:4f:d2:2c:26:8d:cc:aa:78:
e1:c5:cd:87:2e:0e:df:67:41:33:d2:49:23:89:8c:
c3:11:e7:69:3d:1d:72:a6:75:c1:d3:d2:2e:ed:dc:
c7:e7:88:9f:53:a3:12:84:e9:87:c4:5a:70:b6:4b:
f3:0b:aa:57:0d:80:66:39:3b:e7:10:8b:49:86:fe:
d9:f7:2d:9e:7f:96:44:d2:ea:33:fa:25:9c:bc:23:
fc:0d:05:00:40:3b:f3:84:bb:10:77:00:f2:42:2e:
07:e2:76:ea:34:1f:76:25:11:e6:0d:52:80:67:e9:
0a:4e:72:69:47:98:b6:b1:c7:94:a9:e0:c8:12:f9:
6d:8c:e5:d5:9c:f3:7e:d9:88:61:57:7b:d0:3d:b8:
39:4b:cf:01:18:07:e0:d2:cf:eb:57:80:f4:96:36:
52:c4:3e:08:a5:60:11:34:1d:0a:44:bd:4f:2a:d9:
12:15:cd:c4:37:fa:73:a4:0e:05:af:65:56:31:3d:
82:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:D2:DC:97:FA:07:69:29:C3:CE:D8:5C:1B:53:FF:44:9B:6A:70:60
X509v3 Authority Key Identifier:
keyid:A9:34:B8:DE:C1:28:1B:C5:43:17:C7:FE:D0:E9:AC:BC:7B:97:CA:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qTS43sEoG8VDF8f-0OmsvHuXysc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/87b562-cb7d-4a93-bd43-27ee42d925ad/1/69Lcl_oHaSnDzthcG1P_RJtqcGA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/87b562-cb7d-4a93-bd43-27ee42d925ad/1/qTS43sEoG8VDF8f-0OmsvHuXysc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.27.216.0/23
185.27.219.0/24
Signature Algorithm: sha256WithRSAEncryption
56:ba:43:fc:93:36:4f:21:d5:3c:7a:a3:b8:7a:4d:41:c4:a4:
ee:68:5c:b7:af:a0:b9:41:15:7b:4c:a8:ff:73:1d:27:09:6d:
7e:2b:97:e3:95:ec:80:37:e0:6e:4b:93:28:eb:cf:26:de:67:
7f:4e:19:9d:bb:e2:33:8c:f0:c2:59:4a:df:3c:f6:95:ad:60:
f3:9d:e6:55:91:85:b1:a6:da:f0:dd:4f:85:87:83:84:2c:cb:
18:f1:8f:19:80:90:b5:45:87:94:03:2f:14:f3:cf:e6:4b:9a:
7d:c1:89:91:cc:53:c5:3c:2e:ab:cb:c2:ec:0d:db:9d:62:f5:
19:26:a7:c1:65:99:05:5a:e0:7a:7b:96:c4:ba:5a:ea:6d:59:
ff:36:aa:bb:34:3e:3c:df:36:42:b4:9c:24:ac:82:92:b0:99:
00:c0:46:b1:06:76:20:07:7f:01:9a:ec:55:88:d5:18:03:36:
2e:b9:2c:74:4b:fa:66:31:41:ae:83:ae:b0:eb:30:e6:1d:f9:
fc:6f:8a:c4:a0:56:84:c0:ee:12:11:ed:a8:2f:ac:33:de:af:
28:34:67:f1:85:87:f3:bc:61:f2:c1:2f:ba:09:4e:27:c9:ee:
c2:12:4c:ba:56:6f:3f:5d:e5:0b:80:29:ab:8a:f0:a3:6b:6f:
ac:da:8f:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:29 2024 by rpki-client on console-fra.rpki-client.org