Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/CG-xYhnzoPFd0hJq08jisRx3Vyo.roa
File: CG-xYhnzoPFd0hJq08jisRx3Vyo.roa (raw, json)
Hash identifier: 5syNIpfNMF2zzV8Zej3lxRHNd0+6gVzlvMRSeoVEKv8=
Subject key identifier: 08:6F:B1:62:19:F3:A0:F1:5D:D2:12:6A:D3:C8:E2:B1:1C:77:57:2A
Certificate issuer: /CN=e501815c6f98f3a2b6184afebf18ea341be882ea
Certificate serial: 3997C113
Authority key identifier: E5:01:81:5C:6F:98:F3:A2:B6:18:4A:FE:BF:18:EA:34:1B:E8:82:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5QGBXG-Y86K2GEr-vxjqNBvoguo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/CG-xYhnzoPFd0hJq08jisRx3Vyo.roa
Signing time: Wed 22 Jun 2022 01:07:44 +0000
ROA not before: Wed 22 Jun 2022 01:07:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31486
IP address blocks: 185.96.170.0/24 maxlen: 24
185.96.169.0/24 maxlen: 24
2a06:9140::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 966246675 (0x3997c113)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e501815c6f98f3a2b6184afebf18ea341be882ea
Validity
Not Before: Jun 22 01:07:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=086fb16219f3a0f15dd2126ad3c8e2b11c77572a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:d2:5c:e1:c2:f6:b6:63:51:fc:2b:95:ad:e3:
af:62:b7:fa:c5:ae:61:20:a4:f8:c8:7a:8f:e0:01:
f5:51:0d:e0:9f:f4:49:d0:21:83:73:b9:64:03:20:
b9:b2:e8:01:19:18:3e:03:86:be:3b:7c:86:4b:fd:
a8:c5:b8:73:ad:67:e2:4e:81:4c:e3:c6:64:99:66:
cd:3c:60:af:b9:25:45:0b:21:77:11:1a:39:e9:cb:
57:54:de:18:dc:b6:14:58:a9:ba:ae:e3:fc:28:80:
a8:db:dd:33:f4:93:56:dc:d5:6a:fc:35:d0:4d:23:
8f:c5:d0:ae:7b:cc:3c:aa:1e:71:b1:8f:99:d8:d0:
b3:31:1d:ae:4e:03:a1:6c:b9:5d:2c:48:a0:67:43:
f3:2f:45:8e:28:7f:85:2d:dd:f0:d2:a6:cf:1d:47:
32:07:35:10:a0:ad:48:24:1c:a3:70:20:57:2b:72:
d4:51:e1:39:cb:66:cd:d6:e3:4c:eb:25:33:28:3e:
8c:87:ad:55:df:43:b3:15:00:3d:1f:ad:a4:17:99:
fc:cd:fd:3e:3a:aa:4c:b8:0e:1d:e1:68:fc:11:75:
f4:8f:03:71:ab:49:59:c5:33:08:c4:e2:6d:fe:12:
ef:6a:dc:48:02:af:4f:4f:d4:2a:b7:ba:5a:ac:0d:
0c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:6F:B1:62:19:F3:A0:F1:5D:D2:12:6A:D3:C8:E2:B1:1C:77:57:2A
X509v3 Authority Key Identifier:
keyid:E5:01:81:5C:6F:98:F3:A2:B6:18:4A:FE:BF:18:EA:34:1B:E8:82:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5QGBXG-Y86K2GEr-vxjqNBvoguo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/CG-xYhnzoPFd0hJq08jisRx3Vyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/5QGBXG-Y86K2GEr-vxjqNBvoguo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.96.169.0-185.96.170.255
IPv6:
2a06:9140::/29
Signature Algorithm: sha256WithRSAEncryption
18:5a:bc:be:27:ed:4d:26:1e:7d:e8:d8:94:ec:16:79:ba:8b:
f6:78:d9:e7:33:b8:9a:85:cd:32:a9:89:92:69:10:57:69:c3:
73:d6:e4:1c:fe:e4:c8:14:b1:48:93:30:9d:aa:cb:69:99:3c:
d7:56:1b:f8:f2:2e:02:4d:dc:d0:a9:84:02:cc:af:b6:14:e7:
2c:ca:b9:22:c6:b3:84:da:cb:df:dc:68:a9:0c:79:87:ae:cb:
72:b4:f2:ee:1d:59:b7:af:d7:b4:be:65:c0:5f:af:26:05:45:
ac:31:b7:88:93:30:a5:31:76:4a:42:9e:d1:67:2d:9c:3b:ed:
25:ad:00:13:f5:42:0f:d9:60:35:e5:d8:a2:60:0e:c3:74:a3:
50:69:33:f1:36:16:c1:18:17:31:8c:14:b5:83:f5:51:6a:86:
8c:82:f1:2e:5f:00:3a:8f:75:2c:2c:39:34:a9:47:f3:cd:30:
08:5d:b3:64:dc:33:7a:41:88:9d:05:6d:f5:09:3f:0d:4f:9b:
f5:8f:70:4c:bb:80:7e:13:7e:a9:25:2b:ba:93:98:07:17:bb:
67:e2:51:7b:59:5b:dd:d1:56:14:0e:c0:f9:52:fc:ae:d6:48:
2c:bc:16:ef:d7:51:5c:00:40:c8:75:cc:7a:01:e7:ef:17:0e:
45:5f:fe:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:31 2024 by rpki-client on console-fra.rpki-client.org