Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/861953-5f65-4465-9046-f4d071f50f1d/1/gSVn9lWoi68eJOrD_ImuPcwA7EI.roa
File: gSVn9lWoi68eJOrD_ImuPcwA7EI.roa (raw, json)
Hash identifier: cEiFV9VHTAQw6LDidV5sOVQA+9D7PweKCu/UzeFilaU=
Subject key identifier: 81:25:67:F6:55:A8:8B:AF:1E:24:EA:C3:FC:89:AE:3D:CC:00:EC:42
Certificate issuer: /CN=d5d1cd47a53ef57ebb567bc882ad2986faac5f0d
Certificate serial: 03ED084D
Authority key identifier: D5:D1:CD:47:A5:3E:F5:7E:BB:56:7B:C8:82:AD:29:86:FA:AC:5F:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1dHNR6U-9X67VnvIgq0phvqsXw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/861953-5f65-4465-9046-f4d071f50f1d/1/gSVn9lWoi68eJOrD_ImuPcwA7EI.roa
Signing time: Sat 01 Jan 2022 15:06:26 +0000
ROA not before: Sat 01 Jan 2022 15:06:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212213
IP address blocks: 185.59.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65865805 (0x3ed084d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5d1cd47a53ef57ebb567bc882ad2986faac5f0d
Validity
Not Before: Jan 1 15:06:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=812567f655a88baf1e24eac3fc89ae3dcc00ec42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f8:c7:7b:a5:cb:3f:81:50:07:46:11:2a:48:
54:a3:a9:d3:aa:17:f8:8f:fe:68:9d:0a:a8:f3:f6:
6a:55:8f:a6:c7:71:c6:df:69:67:b7:53:6a:e6:72:
da:ef:17:07:73:b9:87:48:04:a2:5c:2f:8f:78:c4:
bf:db:7e:da:51:5e:fb:79:72:8b:55:b3:d5:eb:72:
52:12:d0:d6:45:fb:44:1d:1f:49:e2:64:78:00:11:
0a:32:23:31:d5:e9:42:d1:30:14:cc:24:39:3a:69:
70:f4:3d:65:d2:3b:3a:46:4e:1f:b1:8e:67:16:3c:
4a:96:ac:26:68:fc:13:89:15:e7:d2:3b:8e:2c:3e:
c3:f5:76:92:b8:5c:e9:3c:a6:af:88:a9:81:6d:e3:
91:ab:61:82:9b:be:03:d0:9a:ab:d5:86:d3:92:d1:
1f:b0:f6:9e:c9:63:87:75:51:72:8a:23:52:fe:e2:
ec:97:b9:b8:e8:7a:16:29:0a:4f:c1:79:3d:fc:9a:
9c:27:16:d9:82:08:5c:59:98:07:27:bf:e5:27:09:
57:cd:40:a8:53:71:90:64:12:c9:96:d8:f1:5d:97:
6d:47:c9:03:68:a0:96:d2:cf:43:d0:26:d9:a4:ea:
48:d2:76:00:7e:10:9a:15:04:71:09:67:3e:d4:63:
0a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:25:67:F6:55:A8:8B:AF:1E:24:EA:C3:FC:89:AE:3D:CC:00:EC:42
X509v3 Authority Key Identifier:
keyid:D5:D1:CD:47:A5:3E:F5:7E:BB:56:7B:C8:82:AD:29:86:FA:AC:5F:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1dHNR6U-9X67VnvIgq0phvqsXw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/861953-5f65-4465-9046-f4d071f50f1d/1/gSVn9lWoi68eJOrD_ImuPcwA7EI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/861953-5f65-4465-9046-f4d071f50f1d/1/1dHNR6U-9X67VnvIgq0phvqsXw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.59.217.0/24
Signature Algorithm: sha256WithRSAEncryption
22:ab:f8:ef:8d:ae:26:bd:cb:53:b1:bb:4b:c5:89:f9:dd:75:
68:00:5f:ea:23:5a:db:9a:89:98:d8:56:64:83:1d:d6:84:be:
1c:e7:51:1c:50:e3:ad:8d:18:8d:69:90:5e:66:10:4b:8a:65:
85:ff:ad:4d:80:9d:5d:15:a9:3c:af:57:a1:19:e1:3f:97:78:
15:c0:a7:3a:de:c3:3f:fb:33:5e:66:1d:94:00:d6:ab:27:07:
97:80:00:c6:cb:19:b3:67:02:62:5e:3c:7d:46:70:4d:7d:8b:
0b:06:5d:b2:a8:01:43:cf:c6:56:06:f5:9b:98:51:c2:31:19:
b8:2a:3c:66:11:4c:91:c5:7f:62:eb:5b:c4:d2:a6:7b:88:63:
6c:3f:48:90:84:e7:a2:30:8d:6e:4b:ad:9e:37:e6:13:54:5e:
c2:08:3e:5c:20:98:bd:3c:8e:5c:6d:82:47:13:0f:bf:8a:93:
a8:b3:07:fe:2a:62:ec:96:e8:59:33:e6:7b:1a:2c:ec:46:dc:
8e:02:d2:68:c9:a7:a6:3a:41:1e:31:f4:bb:58:8f:69:1d:12:
10:56:c9:88:4b:3b:b4:a5:5c:32:db:78:58:5c:cb:4b:4f:8d:
b7:8e:3f:56:9b:c9:ff:62:b3:6d:51:25:9e:2a:99:36:b0:33:
0c:50:7b:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:31 2024 by rpki-client on console-ams.rpki-client.org