Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/861953-5f65-4465-9046-f4d071f50f1d/1/nZjyJpXt8xcMaBZOfesAbsLbKfI.roa
File: nZjyJpXt8xcMaBZOfesAbsLbKfI.roa (raw, json)
Hash identifier: tzKv7PmMoqJAEPDYCIKYgSBH8gJoe/82w+TuOLQt0hc=
Subject key identifier: 9D:98:F2:26:95:ED:F3:17:0C:68:16:4E:7D:EB:00:6E:C2:DB:29:F2
Certificate issuer: /CN=d5d1cd47a53ef57ebb567bc882ad2986faac5f0d
Certificate serial: 03EB832C
Authority key identifier: D5:D1:CD:47:A5:3E:F5:7E:BB:56:7B:C8:82:AD:29:86:FA:AC:5F:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1dHNR6U-9X67VnvIgq0phvqsXw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/861953-5f65-4465-9046-f4d071f50f1d/1/nZjyJpXt8xcMaBZOfesAbsLbKfI.roa
Signing time: Sat 01 Jan 2022 15:06:26 +0000
ROA not before: Sat 01 Jan 2022 15:06:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201916
IP address blocks: 185.59.216.0/23 maxlen: 23
185.59.216.0/24 maxlen: 24
185.59.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65766188 (0x3eb832c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5d1cd47a53ef57ebb567bc882ad2986faac5f0d
Validity
Not Before: Jan 1 15:06:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d98f22695edf3170c68164e7deb006ec2db29f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d9:cd:c1:5a:d7:78:d7:a3:c8:0e:fc:13:6c:
cd:79:a0:5f:30:2f:70:93:84:a1:6a:f5:a9:1e:82:
a7:da:62:d6:d2:c0:58:eb:93:51:0d:1d:50:3b:57:
3e:78:53:ce:db:0b:a2:05:b2:8c:ae:9b:c2:44:77:
ff:0e:1b:72:46:f5:c7:88:b4:fd:29:2b:8a:7b:ca:
76:3e:e1:0b:a0:cd:cb:68:d5:bd:f3:10:72:19:1c:
33:34:5c:c2:c8:a8:83:d2:a7:a1:64:c5:cf:b7:e3:
4c:dc:21:3c:fb:fe:e6:5f:e3:b3:68:ee:f1:92:93:
3c:d9:cd:05:90:74:9f:a9:25:22:20:62:1d:06:27:
de:f0:4e:7b:59:c9:77:7d:81:d1:b2:6a:1b:d5:26:
ff:34:68:dc:f3:cc:46:36:19:56:43:e6:47:a7:bb:
cf:82:56:2b:08:c5:e5:4d:7e:35:08:2d:5d:69:22:
45:c8:8b:3c:c8:1b:62:98:9a:27:7e:ce:e5:79:4b:
e5:29:b9:c3:43:7e:c5:2a:87:3c:4d:c6:7f:f4:c7:
58:df:07:22:2d:83:a1:98:78:03:2b:ad:ff:65:84:
a4:7d:3e:46:84:51:ba:42:65:21:84:90:56:88:11:
6a:d1:71:31:f9:0e:de:f7:cd:af:ae:2a:b2:ec:bc:
ee:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:98:F2:26:95:ED:F3:17:0C:68:16:4E:7D:EB:00:6E:C2:DB:29:F2
X509v3 Authority Key Identifier:
keyid:D5:D1:CD:47:A5:3E:F5:7E:BB:56:7B:C8:82:AD:29:86:FA:AC:5F:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1dHNR6U-9X67VnvIgq0phvqsXw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/861953-5f65-4465-9046-f4d071f50f1d/1/nZjyJpXt8xcMaBZOfesAbsLbKfI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/861953-5f65-4465-9046-f4d071f50f1d/1/1dHNR6U-9X67VnvIgq0phvqsXw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.59.216.0-185.59.218.255
Signature Algorithm: sha256WithRSAEncryption
55:e1:38:32:77:c1:63:ab:41:7e:83:a5:f5:2f:26:a5:12:55:
1f:8f:f2:1b:30:1a:f6:71:cc:5e:7e:14:5a:86:64:30:da:44:
97:cf:1c:4e:ec:92:66:5d:03:31:e9:0f:e9:57:de:8e:c1:45:
9b:de:51:f6:c2:5f:59:b7:10:3d:bf:76:ad:e1:c6:9b:fb:3a:
ef:11:ef:86:bf:6c:5c:85:34:0e:4a:28:31:64:20:0c:a5:c2:
1b:43:39:2d:bd:25:eb:20:b4:2c:dc:04:2f:ec:15:59:f5:41:
cb:93:26:96:11:8c:02:da:87:90:62:bd:d3:c5:8a:4e:67:f6:
67:85:ce:4a:b3:9b:9b:74:2f:f7:ae:0a:3c:77:f6:8b:e2:92:
26:1b:ff:64:c2:72:26:f1:bd:21:8b:b1:e9:c8:39:19:22:5f:
f9:e0:f7:1a:b5:d7:cc:de:b7:f6:f5:94:53:d3:08:83:53:5e:
f1:99:41:d4:ac:63:05:7c:bc:cc:ee:e0:7b:f1:ae:aa:cd:d2:
31:6d:42:71:cb:31:03:31:52:db:54:56:ff:80:71:17:c3:8e:
4c:fb:51:f9:6d:c1:64:5c:45:ec:25:da:81:62:f2:79:d7:93:
09:c7:00:b8:a9:ef:eb:85:49:98:e0:69:b7:05:1f:61:19:28:
52:c3:be:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:31 2024 by rpki-client on console-ams.rpki-client.org