Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/a86a91-6356-4c2c-9f8f-de4accb00dd7/1/571sVedmLosCGX7h0mz9_4dOjE4.roa
File: 571sVedmLosCGX7h0mz9_4dOjE4.roa (raw, json)
Hash identifier: 2XJPDBhU0Dg/YTAcLhkBEzQjUDX/p4DXv1EVkmv/pwo=
Subject key identifier: E7:BD:6C:55:E7:66:2E:8B:02:19:7E:E1:D2:6C:FD:FF:87:4E:8C:4E
Certificate issuer: /CN=9759529dd3170645d76cf6ac0659506cc649ca90
Certificate serial: 03AF9E68
Authority key identifier: 97:59:52:9D:D3:17:06:45:D7:6C:F6:AC:06:59:50:6C:C6:49:CA:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l1lSndMXBkXXbPasBllQbMZJypA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/a86a91-6356-4c2c-9f8f-de4accb00dd7/1/571sVedmLosCGX7h0mz9_4dOjE4.roa
Signing time: Sat 01 Jan 2022 12:03:38 +0000
ROA not before: Sat 01 Jan 2022 12:03:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.169.27.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61841000 (0x3af9e68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9759529dd3170645d76cf6ac0659506cc649ca90
Validity
Not Before: Jan 1 12:03:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7bd6c55e7662e8b02197ee1d26cfdff874e8c4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:00:90:df:49:8d:b1:9d:fa:7d:c8:1f:9a:5c:
d5:53:53:1b:7f:64:19:c9:99:87:2c:27:b3:5c:cd:
92:96:38:8f:26:00:2a:9b:6a:e8:ec:81:bc:e8:c5:
79:10:6f:3b:5f:eb:94:2e:7b:e9:4d:80:bb:09:24:
70:9f:cf:28:eb:f7:ac:0a:b1:28:82:55:a5:12:2e:
49:71:b5:f1:31:24:ea:9b:92:d2:6c:b0:bf:c2:1a:
de:17:67:43:e8:52:04:10:e9:e3:57:cb:04:01:32:
78:29:92:4c:7f:3d:24:8b:f8:c5:37:3c:5d:1e:7c:
d5:20:76:0b:38:37:cf:8e:77:9d:d4:0c:fa:2c:91:
92:23:9e:4a:03:37:02:fe:28:e2:8d:97:36:c0:c0:
5a:5f:98:30:ce:c2:00:9b:91:56:4e:81:e1:e5:2b:
40:ef:6c:4f:b8:31:08:0f:ff:39:65:18:59:dd:ce:
18:52:bc:a9:a4:da:7e:c4:1b:54:72:e8:e1:ef:0e:
c4:36:d8:c7:3d:b2:11:a9:bc:da:dc:b0:b1:54:55:
71:c1:34:f2:2f:0b:72:60:91:d7:fc:ee:18:88:a6:
24:d5:94:51:80:fd:df:df:e0:94:b3:34:d3:76:5c:
95:47:d5:02:e2:8f:b7:24:22:c7:6e:c6:e9:96:68:
21:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:BD:6C:55:E7:66:2E:8B:02:19:7E:E1:D2:6C:FD:FF:87:4E:8C:4E
X509v3 Authority Key Identifier:
keyid:97:59:52:9D:D3:17:06:45:D7:6C:F6:AC:06:59:50:6C:C6:49:CA:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l1lSndMXBkXXbPasBllQbMZJypA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/a86a91-6356-4c2c-9f8f-de4accb00dd7/1/571sVedmLosCGX7h0mz9_4dOjE4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/a86a91-6356-4c2c-9f8f-de4accb00dd7/1/l1lSndMXBkXXbPasBllQbMZJypA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.27.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:f7:86:d2:89:e4:59:0e:39:c6:3c:76:63:7e:1d:4e:51:8c:
aa:02:43:1f:72:55:23:de:4a:16:e6:32:2e:1c:65:65:00:3c:
ee:5d:18:ce:6f:07:fc:d8:94:30:99:cb:b9:9c:c1:6d:4a:18:
86:13:d8:4a:4e:9c:84:0a:43:43:e8:33:c5:8a:cb:a0:b0:65:
05:62:46:8e:8d:47:07:b4:58:70:a6:4c:fa:71:67:ea:5e:96:
4d:94:09:dc:f7:c6:30:c4:40:af:aa:87:a8:cf:e0:9e:1d:83:
a2:81:46:43:bc:87:51:40:f7:df:69:08:1b:75:94:bb:dd:92:
e6:ca:76:fc:e8:e6:2d:8a:54:97:12:81:57:2e:6e:c7:9b:38:
13:11:e8:cc:78:6f:5b:cd:da:a9:69:6f:3c:28:8d:3d:eb:12:
bc:03:10:c1:de:3f:85:2c:3b:3b:0c:fc:cd:32:d4:8f:74:aa:
3d:26:5f:e0:04:4f:96:31:70:1a:c9:fb:f1:f0:54:92:a0:a1:
12:8d:40:ac:b6:fb:35:52:aa:f4:4b:a3:e8:5a:15:f9:16:69:
ba:94:31:a3:61:2f:79:0e:75:05:ce:52:f7:a7:16:9f:13:d6:
2c:88:04:a2:f1:26:8d:a8:31:63:36:1a:8c:15:c8:dd:53:a1:
19:5c:ba:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:35 2023 by rpki-client on console-ams.rpki-client.org