Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/56d6a8-0752-4cbd-8845-52fe10513129/1/SHIAvh8Oi7sB6BMgqv5lZCApIp4.roa
File: SHIAvh8Oi7sB6BMgqv5lZCApIp4.roa (raw, json)
Hash identifier: H2fRVGaSymgyHZCh60kyJy0U/S3lkh5s2Ajdw0rkcF4=
Subject key identifier: 48:72:00:BE:1F:0E:8B:BB:01:E8:13:20:AA:FE:65:64:20:29:22:9E
Certificate issuer: /CN=dc899c28664ee8194a64048e46c60c6e5f190c53
Certificate serial: 09EFF30D
Authority key identifier: DC:89:9C:28:66:4E:E8:19:4A:64:04:8E:46:C6:0C:6E:5F:19:0C:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ImcKGZO6BlKZASORsYMbl8ZDFM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/56d6a8-0752-4cbd-8845-52fe10513129/1/SHIAvh8Oi7sB6BMgqv5lZCApIp4.roa
Signing time: Sat 01 Jan 2022 08:56:26 +0000
ROA not before: Sat 01 Jan 2022 08:56:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19905
IP address blocks: 185.70.156.0/22 maxlen: 24
213.167.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166720269 (0x9eff30d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc899c28664ee8194a64048e46c60c6e5f190c53
Validity
Not Before: Jan 1 08:56:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=487200be1f0e8bbb01e81320aafe65642029229e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:23:3b:ef:b4:ad:79:59:d0:f9:dd:ba:a4:a6:
c4:37:11:95:0f:44:82:be:c1:c6:fa:87:aa:d6:27:
8f:66:36:88:89:e0:d0:03:c0:2f:ab:0b:a6:30:cf:
9a:66:a1:8e:16:4d:fe:bb:7b:9a:49:ee:e0:69:57:
81:7e:4b:ad:79:1e:f3:7e:e4:84:82:d7:8c:04:62:
d2:50:d3:1a:bf:38:37:0a:17:14:d4:c1:6e:b5:e7:
cb:f0:42:83:f6:b0:da:70:59:52:0d:8c:72:66:31:
38:7a:94:7a:31:f4:a1:76:e5:86:4a:89:70:8a:be:
23:df:c2:53:43:de:27:07:29:b6:2a:8d:16:f0:bc:
cd:09:9a:72:8a:ad:a1:98:6b:e2:85:53:82:3d:27:
2e:47:3a:36:e8:55:6d:18:06:44:e6:72:9d:b9:b0:
27:9b:81:ee:8f:19:4b:cf:13:2e:9f:17:85:70:58:
3f:56:69:27:10:7f:76:51:be:7c:89:a6:00:73:4f:
cd:00:f2:03:5d:91:35:04:86:b4:eb:83:d5:63:e2:
30:95:0d:0d:aa:a5:08:3b:d9:29:f1:8f:ac:21:16:
44:61:de:24:e6:fc:1c:c3:af:a4:c1:dd:44:00:b9:
55:0a:b5:f8:84:73:9d:72:77:84:84:5b:14:43:57:
4a:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:72:00:BE:1F:0E:8B:BB:01:E8:13:20:AA:FE:65:64:20:29:22:9E
X509v3 Authority Key Identifier:
keyid:DC:89:9C:28:66:4E:E8:19:4A:64:04:8E:46:C6:0C:6E:5F:19:0C:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ImcKGZO6BlKZASORsYMbl8ZDFM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/56d6a8-0752-4cbd-8845-52fe10513129/1/SHIAvh8Oi7sB6BMgqv5lZCApIp4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/56d6a8-0752-4cbd-8845-52fe10513129/1/3ImcKGZO6BlKZASORsYMbl8ZDFM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.70.156.0/22
213.167.64.0/19
Signature Algorithm: sha256WithRSAEncryption
07:8f:30:20:0b:90:ae:f4:3a:bb:66:9f:8a:23:7e:1a:99:32:
68:18:71:12:72:de:0f:0c:3b:2c:fb:46:6e:e6:05:29:9e:7c:
92:c2:b4:39:9a:f2:1d:fa:7c:c4:34:c2:69:54:09:2e:98:b3:
40:e8:81:1d:f8:64:90:4c:5b:12:ae:cb:57:a9:5b:10:e6:37:
57:a4:7d:14:45:ea:78:2b:8a:4f:e3:a2:a1:8f:2a:6f:c0:ac:
f8:87:09:4c:69:55:cb:17:30:1e:6f:c2:e2:1a:88:3d:d3:4b:
24:45:f2:0f:81:fa:11:7d:39:b5:45:6a:8b:9c:ad:83:2d:37:
ae:da:f9:ce:a0:1f:51:87:95:a8:12:d3:22:68:e3:cb:76:8e:
67:99:bb:3d:e7:c3:46:9a:83:f6:c7:c3:a8:89:d8:8d:01:9e:
d9:e1:5f:e8:31:4c:57:18:a6:fe:70:7f:b3:28:e1:b4:1b:f4:
89:79:06:5f:ca:5c:1b:30:45:c4:10:9b:f6:99:7f:54:00:d8:
bd:8f:ef:1b:08:83:ed:f0:ac:37:0c:df:62:10:42:8c:d7:40:
50:0c:f8:cb:71:f3:eb:4a:2a:e4:5f:27:6b:2c:54:b2:56:e4:
9c:dd:b0:cd:aa:d3:ca:de:7f:94:a0:23:33:98:c3:79:7c:56:
83:34:3d:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:30 2024 by rpki-client on console-fra.rpki-client.org