Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/m14kdfKGZjdhlMlmTyYfT-1dbnU.roa
File: m14kdfKGZjdhlMlmTyYfT-1dbnU.roa (raw, json)
Hash identifier: YuLQJqoimHaAUrlDL03U6z0FYuIqEYypylXPfvd3MbQ=
Subject key identifier: 9B:5E:24:75:F2:86:66:37:61:94:C9:66:4F:26:1F:4F:ED:5D:6E:75
Certificate issuer: /CN=29e46e75865e8d4a081e4b5dda46d3c94003679b
Certificate serial: 0624BC13
Authority key identifier: 29:E4:6E:75:86:5E:8D:4A:08:1E:4B:5D:DA:46:D3:C9:40:03:67:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KeRudYZejUoIHktd2kbTyUADZ5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/m14kdfKGZjdhlMlmTyYfT-1dbnU.roa
Signing time: Thu 19 May 2022 07:17:17 +0000
ROA not before: Thu 19 May 2022 07:17:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43783
IP address blocks: 185.167.56.0/22 maxlen: 22
185.167.56.0/24 maxlen: 24
185.167.58.0/24 maxlen: 24
185.167.57.0/24 maxlen: 24
185.167.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 103070739 (0x624bc13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29e46e75865e8d4a081e4b5dda46d3c94003679b
Validity
Not Before: May 19 07:17:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b5e2475f28666376194c9664f261f4fed5d6e75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:bc:0d:69:92:24:7e:a6:2d:3a:e3:f0:b1:c8:
f8:98:8b:39:1d:7a:bc:48:f0:e7:e7:0c:14:e8:2b:
c1:9b:0e:1c:05:cb:57:03:dc:b9:ea:ea:2c:79:61:
60:2a:d5:89:d4:d5:e4:69:4d:6a:f6:8d:c3:56:f3:
d5:ca:93:de:98:5e:13:76:36:08:42:6f:36:24:e9:
5a:6a:d3:a9:a8:91:c1:88:73:7a:a0:1f:a4:2a:f9:
b2:6d:9d:03:e7:4f:bb:de:9f:bb:7d:5a:4f:7a:c6:
60:fa:c2:e7:11:6b:6b:4a:42:aa:e3:77:79:68:e1:
1f:ef:45:a2:45:31:43:88:d5:e5:40:6b:d3:f3:a2:
24:46:01:35:c6:ed:d3:e6:9c:e2:6e:98:88:90:17:
42:41:dd:b2:ab:31:d4:68:b7:65:e0:33:05:32:a7:
24:a1:6b:a5:a5:b5:bd:1a:14:b7:97:05:f2:28:07:
36:a0:49:74:85:24:12:85:4c:64:47:ac:05:d8:56:
6b:a5:66:f7:1b:b6:cb:3d:22:a1:17:27:a6:58:75:
d1:31:20:32:17:ed:ef:e1:94:c8:08:4f:d7:92:76:
21:74:ea:17:38:f0:af:17:e6:90:95:47:3e:56:5a:
27:c0:02:b2:57:17:7a:6b:e5:a4:95:93:11:4a:af:
1a:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:5E:24:75:F2:86:66:37:61:94:C9:66:4F:26:1F:4F:ED:5D:6E:75
X509v3 Authority Key Identifier:
keyid:29:E4:6E:75:86:5E:8D:4A:08:1E:4B:5D:DA:46:D3:C9:40:03:67:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KeRudYZejUoIHktd2kbTyUADZ5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/m14kdfKGZjdhlMlmTyYfT-1dbnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.56.0/22
Signature Algorithm: sha256WithRSAEncryption
49:0c:42:fa:64:c9:c5:59:d9:39:7a:a3:a2:66:5b:76:b5:3c:
68:6f:de:26:3d:52:59:23:08:9b:90:79:02:5c:2f:12:a1:33:
8f:79:8c:69:14:f0:0e:91:82:59:02:e7:bc:04:01:ff:67:70:
b6:0d:60:16:25:2e:4e:24:4f:e9:91:fe:b5:c0:da:1a:fe:d9:
11:ce:54:cc:70:8b:45:db:a1:05:c4:fb:29:57:53:04:c8:d4:
57:0b:5e:5c:2e:bd:c8:15:87:ca:eb:e5:12:c3:98:82:70:9f:
8d:a3:30:2b:bd:c9:2f:81:66:c9:f2:32:c6:2c:55:15:77:22:
01:69:8a:43:a0:99:a3:33:71:28:cd:c9:5f:5d:f9:72:3e:f3:
65:61:d0:aa:f5:ec:68:ab:89:5c:84:54:aa:15:ff:24:7b:84:
79:d1:80:60:63:11:33:4a:fe:0d:20:45:31:ee:d6:68:c6:ef:
72:fd:ad:79:a0:31:16:45:df:3d:93:69:8f:75:b4:ef:c3:5d:
f7:1f:65:d3:31:0e:ac:38:57:4e:ef:f7:26:4b:c7:74:08:b2:
a8:d4:85:14:17:24:cd:fc:14:88:92:4d:40:18:da:ce:43:b8:
f0:f8:fb:2b:fd:cc:57:9e:0b:7d:e5:8d:98:02:5d:0c:c0:10:
f6:ec:67:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:26 2024 by rpki-client on console-fra.rpki-client.org