Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/62a3b1-117d-4b17-9662-45eb738cb9c8/1/hb77gYcTGqsUpdQ17wSae2ZPMkA.roa
File: hb77gYcTGqsUpdQ17wSae2ZPMkA.roa (raw, json)
Hash identifier: PrJ15W+q2F3qQelgLD8M/bkaSOSSBJprlbheTGy/tfE=
Subject key identifier: 85:BE:FB:81:87:13:1A:AB:14:A5:D4:35:EF:04:9A:7B:66:4F:32:40
Certificate issuer: /CN=06da1c6b1a65f7a3d97f9bd75e7cac3135246fa5
Certificate serial: 1C6D6B9D
Authority key identifier: 06:DA:1C:6B:1A:65:F7:A3:D9:7F:9B:D7:5E:7C:AC:31:35:24:6F:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Btocaxpl96PZf5vXXnysMTUkb6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/62a3b1-117d-4b17-9662-45eb738cb9c8/1/hb77gYcTGqsUpdQ17wSae2ZPMkA.roa
Signing time: Sat 01 Jan 2022 09:58:11 +0000
ROA not before: Sat 01 Jan 2022 09:58:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60545
IP address blocks: 176.10.105.0/24 maxlen: 24
185.195.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 476933021 (0x1c6d6b9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06da1c6b1a65f7a3d97f9bd75e7cac3135246fa5
Validity
Not Before: Jan 1 09:58:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85befb8187131aab14a5d435ef049a7b664f3240
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:43:56:17:47:6e:82:1c:22:64:82:9f:09:83:
a8:a0:d6:7e:de:19:29:29:5e:16:c1:c3:5b:ae:4d:
bf:81:0d:15:b3:5b:3a:15:83:d5:37:58:08:47:58:
2a:c0:37:da:fe:99:60:8b:ad:75:5f:4e:d3:79:eb:
ef:50:a9:5a:41:ec:ab:55:a9:ed:ed:9a:5d:78:fc:
32:6a:30:34:83:b5:0a:e3:b7:8a:6c:19:65:49:ee:
fd:78:2a:e1:88:26:99:ee:4f:31:4a:1a:31:05:af:
75:97:71:60:60:ab:c6:c4:f7:8c:08:4c:01:c4:a1:
c2:49:b0:cf:a0:08:19:66:2f:1e:5b:4e:aa:0c:d4:
ac:ab:f3:5e:d2:0b:8f:6a:4b:5a:4b:b3:26:ce:ae:
a3:7b:ca:62:86:33:82:44:1c:b8:4c:7f:a1:f3:96:
73:1d:9e:43:40:06:8b:0e:b2:93:63:32:af:8d:75:
70:70:c9:2e:be:6c:09:ae:1d:fe:83:21:41:82:2f:
18:d3:02:fe:74:cd:81:be:fc:87:61:65:7e:8b:17:
4c:c5:13:65:b5:e5:ec:f2:30:72:ef:ad:e9:21:8a:
26:15:d4:4f:8b:68:a3:64:9a:93:db:57:54:be:fa:
e1:9a:12:b3:67:19:3b:d2:89:9e:41:f0:74:05:35:
36:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:BE:FB:81:87:13:1A:AB:14:A5:D4:35:EF:04:9A:7B:66:4F:32:40
X509v3 Authority Key Identifier:
keyid:06:DA:1C:6B:1A:65:F7:A3:D9:7F:9B:D7:5E:7C:AC:31:35:24:6F:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Btocaxpl96PZf5vXXnysMTUkb6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/62a3b1-117d-4b17-9662-45eb738cb9c8/1/hb77gYcTGqsUpdQ17wSae2ZPMkA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/62a3b1-117d-4b17-9662-45eb738cb9c8/1/Btocaxpl96PZf5vXXnysMTUkb6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.10.105.0/24
185.195.70.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:33:2d:83:b3:62:03:10:a5:29:dd:29:59:ed:cf:b3:85:b5:
01:2c:b9:25:ed:c5:71:62:dd:ab:76:19:1a:c3:12:39:26:3f:
90:6a:13:09:b4:af:e3:7b:ab:8c:95:24:d8:7f:0d:35:1d:b0:
5f:d2:5a:90:6c:e5:0c:7b:a2:b7:4f:85:89:ee:c3:4a:da:1b:
1a:1d:8b:d4:2a:15:fa:e6:a4:c9:f4:54:bc:12:4b:7b:0d:4f:
0e:a0:09:c1:89:6a:cc:17:03:9e:57:fc:84:aa:2a:e2:4a:b9:
cf:e5:f9:0c:2f:36:7d:66:d4:aa:a0:f0:d6:52:ca:60:e9:bb:
a4:2f:47:54:ef:be:a0:fe:34:2e:e2:72:14:7c:ab:51:d6:4a:
a5:af:e9:62:d4:e0:a5:b6:ce:d1:cc:4d:a1:ad:c7:fc:b6:0b:
60:88:79:ab:88:ef:62:55:60:12:b8:4c:dc:e1:1c:2b:d5:2b:
1b:5e:e4:b8:c7:67:39:87:3d:5a:fa:98:58:c7:a9:94:bc:92:
20:5b:b9:d2:5e:df:5c:4e:bd:32:3f:61:b8:6d:98:82:61:e9:
b4:1f:d5:b8:7a:8b:6d:67:c1:9e:46:6c:ce:f5:8e:8a:14:03:
ad:f3:f6:4d:4a:b8:62:f8:0a:55:db:70:b7:60:79:52:73:97:
c2:6d:5f:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:03 2024 by rpki-client on console-ams.rpki-client.org