Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/13fb65-4ee7-4026-aa3a-9d56e3adca90/1/ri2I2W1h36An6ByziTgJpU9hbjc.roa
File: ri2I2W1h36An6ByziTgJpU9hbjc.roa (raw, json)
Hash identifier: ZZoDJldXD6yhaW4egC5GNThaTHcaLEMyNdimDXwzV6A=
Subject key identifier: AE:2D:88:D9:6D:61:DF:A0:27:E8:1C:B3:89:38:09:A5:4F:61:6E:37
Certificate issuer: /CN=d612742b91d770fe8efbc9b5dcf8dc38984dd0f0
Certificate serial: 0F65F0A1
Authority key identifier: D6:12:74:2B:91:D7:70:FE:8E:FB:C9:B5:DC:F8:DC:38:98:4D:D0:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1hJ0K5HXcP6O-8m13PjcOJhN0PA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/13fb65-4ee7-4026-aa3a-9d56e3adca90/1/ri2I2W1h36An6ByziTgJpU9hbjc.roa
Signing time: Sat 01 Jan 2022 08:59:11 +0000
ROA not before: Sat 01 Jan 2022 08:59:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56911
IP address blocks: 185.56.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 258338977 (0xf65f0a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d612742b91d770fe8efbc9b5dcf8dc38984dd0f0
Validity
Not Before: Jan 1 08:59:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae2d88d96d61dfa027e81cb3893809a54f616e37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:3b:a5:43:b9:9d:58:05:e5:b2:be:d7:e4:87:
b7:12:e7:75:e3:36:11:f2:01:b3:33:c5:3f:21:09:
08:74:5f:e7:5c:3f:37:09:97:64:4b:13:23:69:06:
68:af:ec:fc:e4:d7:ed:dc:45:01:10:5b:d3:c4:2f:
56:74:c7:07:52:11:43:61:1b:8d:ce:81:f8:2c:e6:
33:70:f3:05:57:b9:a7:1b:bd:e0:b0:02:b9:fa:25:
a0:18:de:cf:55:da:22:80:99:96:52:8e:d8:67:cf:
13:c3:92:c6:85:93:46:14:0d:d7:a3:cd:f5:e0:6b:
da:b5:88:ad:0c:18:6b:ef:a0:8b:b8:c0:dd:88:47:
0b:e0:ae:95:f0:16:21:79:77:96:0a:79:a7:bf:13:
63:a9:e5:fc:b8:4f:78:24:9f:65:a7:f2:a5:7a:ad:
c3:da:a8:ec:f7:60:9d:e4:99:88:f3:fd:17:b4:c2:
70:e4:52:77:1b:41:6a:fc:4b:1f:05:35:8e:8d:05:
1b:28:66:29:db:66:54:e7:bc:8e:22:53:73:be:60:
61:29:30:06:b4:55:29:36:41:de:75:aa:1f:c4:64:
07:03:47:ce:7f:4e:67:c5:af:e2:be:5f:82:0f:20:
7a:ef:03:b3:4e:bd:8c:37:f0:fa:0e:96:04:6c:5e:
61:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:2D:88:D9:6D:61:DF:A0:27:E8:1C:B3:89:38:09:A5:4F:61:6E:37
X509v3 Authority Key Identifier:
keyid:D6:12:74:2B:91:D7:70:FE:8E:FB:C9:B5:DC:F8:DC:38:98:4D:D0:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1hJ0K5HXcP6O-8m13PjcOJhN0PA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/13fb65-4ee7-4026-aa3a-9d56e3adca90/1/ri2I2W1h36An6ByziTgJpU9hbjc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/13fb65-4ee7-4026-aa3a-9d56e3adca90/1/1hJ0K5HXcP6O-8m13PjcOJhN0PA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.56.217.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:aa:69:f2:66:a0:8c:ae:92:e9:e5:2a:43:1f:a1:10:2d:a5:
0a:29:42:e1:80:19:ae:f4:f6:a2:7c:3d:93:54:79:49:38:e9:
e7:cc:fe:d7:b4:b7:18:73:70:3b:a8:33:01:34:7d:c1:3e:c2:
a1:34:32:39:f5:cb:48:39:42:ed:35:70:18:37:6f:91:7a:e2:
9c:ba:24:6e:bd:a1:d7:ab:81:84:6c:53:7b:4c:55:de:c4:1c:
c0:a7:60:87:82:66:6d:e6:5c:91:b1:3d:08:e9:9d:2f:88:52:
da:87:95:ac:80:03:97:99:03:32:58:29:c6:8a:ee:36:ed:f1:
28:1e:95:f8:f3:50:fe:62:61:92:fb:1c:a3:39:b2:e4:bb:9c:
7c:73:45:ca:08:e2:ec:a3:08:3a:58:df:5d:9e:01:84:e5:cc:
8c:f4:07:f2:19:32:17:27:a2:37:3b:f9:75:7c:c5:fa:00:f3:
18:09:62:86:49:f3:c3:77:1b:c0:c2:14:68:4f:15:52:7c:ca:
65:7a:51:4f:aa:8d:11:9b:f3:fc:b3:7c:5a:fe:95:64:c4:14:
92:a3:1a:fa:76:64:0e:ff:b3:e5:52:60:44:86:9d:24:34:60:
54:52:8d:74:72:b6:fb:97:a9:38:6e:65:4c:8c:9d:67:80:6d:
f0:42:1e:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:19 2024 by rpki-client on console-fra.rpki-client.org