Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/ad5bfd-85c7-47b7-997c-f5d2cb79456d/1/evTqTB4D0EaEd8LdK4NWlV0vZy0.roa
File: evTqTB4D0EaEd8LdK4NWlV0vZy0.roa (raw, json)
Hash identifier: QxRHuYgn9tMKJ+JXoUx2q6HmG2ZC+J1QwR3no/ZQvvE=
Subject key identifier: 7A:F4:EA:4C:1E:03:D0:46:84:77:C2:DD:2B:83:56:95:5D:2F:67:2D
Certificate issuer: /CN=5f099f49978b960fa31f81acf54671273dc7ff61
Certificate serial: 157939EA
Authority key identifier: 5F:09:9F:49:97:8B:96:0F:A3:1F:81:AC:F5:46:71:27:3D:C7:FF:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XwmfSZeLlg-jH4Gs9UZxJz3H_2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/ad5bfd-85c7-47b7-997c-f5d2cb79456d/1/evTqTB4D0EaEd8LdK4NWlV0vZy0.roa
Signing time: Sat 01 Jan 2022 03:59:13 +0000
ROA not before: Sat 01 Jan 2022 03:59:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60979
IP address blocks: 185.22.68.0/22 maxlen: 24
185.70.120.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 360266218 (0x157939ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f099f49978b960fa31f81acf54671273dc7ff61
Validity
Not Before: Jan 1 03:59:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7af4ea4c1e03d0468477c2dd2b8356955d2f672d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ea:f2:35:97:a0:d5:26:df:4d:0b:fe:e2:d0:
ad:2a:cf:ab:eb:6b:bb:c5:f5:13:3f:6b:df:45:9d:
28:29:b4:e8:61:dd:15:78:32:cf:72:1e:da:fa:23:
36:c1:b1:cf:f8:ee:da:48:0e:8d:37:0d:ac:82:97:
de:67:ff:6a:cf:e2:70:72:89:42:14:70:5e:f3:eb:
85:5a:26:57:00:96:cd:92:53:3d:32:84:aa:79:e5:
0d:f6:d3:ce:b1:14:a0:9e:40:9c:51:a7:4f:ee:2d:
0b:94:3e:6e:2e:66:e8:44:a2:38:c6:ef:4f:21:0c:
73:73:bb:a1:2d:4f:89:2e:56:76:b8:e7:ee:2a:50:
b6:ee:a9:d9:39:b3:ac:fd:e0:f1:f5:97:66:fc:3f:
7b:cb:de:20:c6:5d:b5:3d:db:48:fc:db:2e:a1:f4:
7b:67:95:cb:1a:08:f0:62:90:9c:67:57:ff:a2:0d:
eb:2c:b9:1f:78:58:ec:d9:82:ed:ff:6d:b9:7d:65:
a4:e1:17:de:35:47:f3:c7:c8:e4:23:bd:a7:d8:8c:
90:cf:7e:60:7d:c9:99:15:de:23:28:cf:a7:70:d4:
52:c5:1f:5c:37:8b:ff:ce:53:b1:c7:f9:e0:30:6e:
86:7a:dd:ee:84:78:ac:2e:de:3c:3a:19:03:63:fb:
fa:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:F4:EA:4C:1E:03:D0:46:84:77:C2:DD:2B:83:56:95:5D:2F:67:2D
X509v3 Authority Key Identifier:
keyid:5F:09:9F:49:97:8B:96:0F:A3:1F:81:AC:F5:46:71:27:3D:C7:FF:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XwmfSZeLlg-jH4Gs9UZxJz3H_2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/ad5bfd-85c7-47b7-997c-f5d2cb79456d/1/evTqTB4D0EaEd8LdK4NWlV0vZy0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/ad5bfd-85c7-47b7-997c-f5d2cb79456d/1/XwmfSZeLlg-jH4Gs9UZxJz3H_2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.22.68.0/22
185.70.120.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:e6:fa:96:ce:77:71:77:ea:fe:eb:82:e3:6f:ce:d7:ef:e5:
02:f7:9b:e4:58:51:2e:5c:20:bf:36:a0:92:ca:33:14:26:7a:
f3:38:ee:42:24:cf:b0:64:68:71:fb:31:fa:ed:73:cd:96:db:
d1:a9:68:ca:4f:3a:47:5e:31:42:e0:67:26:8e:12:ea:3f:cc:
f2:f7:77:84:0c:30:08:b7:7b:1b:42:10:d6:7e:c3:c1:ea:b3:
37:2e:b4:fe:58:e1:97:f4:a9:07:e1:81:b7:2f:6f:99:67:64:
06:91:eb:c9:24:db:d9:fa:0e:89:24:11:43:7a:05:c1:e2:a0:
78:51:89:14:da:c0:c0:73:b5:ed:8b:19:47:94:23:c8:14:6d:
be:54:0a:eb:76:36:e5:07:76:33:32:2f:11:ae:59:be:c4:a0:
14:53:77:29:bf:6f:9b:e9:dd:1c:a2:df:5b:f2:76:29:a1:08:
3b:d6:cb:d5:7b:c9:5c:c0:e9:a8:60:00:20:ee:3a:b8:0c:1d:
c8:58:09:4c:f4:5d:2e:19:cb:01:26:16:09:83:bd:91:1f:77:
1c:d9:80:4a:6e:26:b7:be:e7:a0:3c:19:e1:18:93:bc:68:61:
a1:fc:d2:01:9a:b1:7a:20:7a:d1:3a:08:6e:19:05:00:a7:35:
33:41:c1:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:04 2024 by rpki-client on console-fra.rpki-client.org