Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/dBPTh1MqbBpIroFWe2mVQ-rmW4A.roa
File: dBPTh1MqbBpIroFWe2mVQ-rmW4A.roa (raw, json)
Hash identifier: moJi9STMWie1WjL/DJH6o/Uwpmk9A4Jrq8IJoXpgLec=
Subject key identifier: 74:13:D3:87:53:2A:6C:1A:48:AE:81:56:7B:69:95:43:EA:E6:5B:80
Certificate issuer: /CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f
Certificate serial: 03FF9978
Authority key identifier: 29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/dBPTh1MqbBpIroFWe2mVQ-rmW4A.roa
Signing time: Sat 01 Jan 2022 07:03:04 +0000
ROA not before: Sat 01 Jan 2022 07:03:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42831
IP address blocks: 185.95.158.0/24 maxlen: 24
185.95.157.0/24 maxlen: 24
185.95.156.0/24 maxlen: 24
185.95.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67082616 (0x3ff9978)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f
Validity
Not Before: Jan 1 07:03:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7413d387532a6c1a48ae81567b699543eae65b80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ac:38:85:78:53:98:1b:b3:35:dc:8a:78:19:
23:4e:c7:ea:ef:3f:e3:74:f3:11:ea:86:74:be:70:
ab:c7:62:b3:d9:27:a5:5a:cc:9b:a8:4e:62:43:e4:
85:ca:de:23:b0:1c:25:af:44:43:b2:bd:45:cd:3c:
f9:bd:fa:15:81:ed:e9:4b:dc:af:7e:30:18:b7:ae:
cb:c9:e6:09:02:f2:8e:e9:90:b1:f6:ee:56:af:84:
00:9d:7c:35:2f:b9:de:e4:aa:30:79:eb:97:bf:7a:
49:d9:b0:27:71:32:90:30:92:78:14:48:46:b1:c6:
0e:37:f6:f7:71:98:55:61:39:9f:85:4f:b4:4e:3f:
67:e7:b0:3b:2e:0d:b9:9d:44:c6:21:ba:85:10:3f:
86:67:a9:03:2a:18:01:8d:39:53:f0:46:79:15:93:
af:db:9c:b4:bc:c9:29:79:07:ef:1f:16:00:e7:07:
2d:bb:75:8a:0a:e0:04:78:41:7f:52:f7:f0:0d:52:
09:7d:d2:ad:d0:c1:7e:58:27:32:1b:30:9e:7b:94:
cf:60:00:41:a8:2f:6b:bb:c8:15:0f:17:e1:08:37:
0b:4b:00:c1:94:a7:24:0e:fd:15:0d:54:4f:48:c6:
e7:1a:4b:12:40:e2:6f:85:06:bb:56:7a:27:c5:d7:
2d:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:13:D3:87:53:2A:6C:1A:48:AE:81:56:7B:69:95:43:EA:E6:5B:80
X509v3 Authority Key Identifier:
keyid:29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/dBPTh1MqbBpIroFWe2mVQ-rmW4A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.95.156.0/22
Signature Algorithm: sha256WithRSAEncryption
34:21:d3:51:3d:07:95:98:03:36:8d:94:46:4f:09:20:0f:c7:
60:e3:92:90:0d:f1:f2:cd:55:b9:92:87:42:c7:82:2d:a8:57:
76:30:86:57:ff:7a:6b:cc:04:d1:dc:07:ca:a5:e1:72:07:f1:
aa:f4:81:5b:04:b0:1d:41:70:64:07:77:22:07:6f:16:99:ff:
1e:b8:6a:07:20:8b:6b:3c:d1:c1:f9:77:a0:e1:38:a6:d1:b9:
ae:c2:1d:04:d9:15:e3:1e:ff:10:c0:64:94:1b:8a:ab:ee:d9:
85:18:fe:b8:51:fa:a6:60:34:69:85:d3:0c:15:78:ca:7c:84:
05:3c:3a:cf:41:bf:5a:ef:0e:fe:e1:5b:55:62:4a:3e:c5:35:
75:1a:8a:e6:45:ab:5d:05:c9:86:6b:ab:b4:c5:cd:a0:d3:b6:
e1:e3:f6:3d:6b:42:79:77:84:2c:74:0c:02:bc:3b:c4:8e:88:
8e:6c:ad:94:29:0f:ad:34:f6:98:5f:38:7b:d8:da:f4:0e:74:
1f:8b:86:af:99:c2:04:bf:2f:d3:48:eb:0d:db:4d:0c:65:6a:
ed:e6:10:63:18:6d:61:8d:6d:6d:dc:31:c7:06:d5:ce:6c:a0:
31:ed:40:78:7e:80:d6:70:22:6b:45:12:3d:82:89:b5:7d:6d:
68:3e:14:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:33 2024 by rpki-client on console-ams.rpki-client.org