Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/69ce2b-aa36-4bab-b65e-f9e6539bbe6b/1/7UZCoL0VUD03Hl_hR2JTysDf4ag.roa
File: 7UZCoL0VUD03Hl_hR2JTysDf4ag.roa (raw, json)
Hash identifier: 7K5UfxmpcLsN0orWPhCxBuZj/F517Jyeg7aTmhlTTHk=
Subject key identifier: ED:46:42:A0:BD:15:50:3D:37:1E:5F:E1:47:62:53:CA:C0:DF:E1:A8
Certificate issuer: /CN=78c236580cc2ee193dbdcc3126df4170cc117cd2
Certificate serial: 032917F1
Authority key identifier: 78:C2:36:58:0C:C2:EE:19:3D:BD:CC:31:26:DF:41:70:CC:11:7C:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eMI2WAzC7hk9vcwxJt9BcMwRfNI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/69ce2b-aa36-4bab-b65e-f9e6539bbe6b/1/7UZCoL0VUD03Hl_hR2JTysDf4ag.roa
Signing time: Sat 01 Jan 2022 13:06:33 +0000
ROA not before: Sat 01 Jan 2022 13:06:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60138
IP address blocks: 185.56.93.0/24 maxlen: 24
185.56.94.0/24 maxlen: 24
185.56.95.0/24 maxlen: 24
185.56.92.0/24 maxlen: 24
2a04:da40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53024753 (0x32917f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78c236580cc2ee193dbdcc3126df4170cc117cd2
Validity
Not Before: Jan 1 13:06:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed4642a0bd15503d371e5fe1476253cac0dfe1a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:99:54:04:b4:ec:12:21:98:a2:8d:41:91:20:
0f:87:00:8a:59:85:9c:a3:b5:fd:ca:a1:65:bc:57:
a6:e0:ce:ba:1a:4c:9b:20:d0:cf:62:26:fb:6d:35:
6c:ee:87:c7:39:b6:3a:05:26:cb:be:63:1b:b5:27:
f3:07:7c:50:f1:3b:aa:ec:7f:66:b5:8f:f3:a8:90:
f9:23:c9:f5:55:6c:2b:2c:56:8d:74:34:12:56:f5:
a6:87:82:f6:1a:73:d4:a1:30:62:e0:d0:d5:dd:0b:
17:a7:27:49:8e:9a:da:c9:db:a5:8f:ec:7a:ed:ed:
ff:5d:c4:47:6d:d7:66:c9:95:ca:8a:c4:1e:22:f5:
56:ee:60:80:92:ed:f6:1f:8d:b4:dc:56:93:23:71:
cf:02:49:3e:f5:36:4f:8b:4b:53:f8:e8:25:c4:ae:
98:52:b8:4b:cb:40:6a:76:2c:74:10:02:d8:27:a9:
cd:fd:0d:0c:ae:bb:6a:1d:30:ac:c0:a1:4a:57:40:
65:51:97:19:f1:62:00:c3:70:94:43:f9:a2:db:fb:
8e:e9:ae:a5:5f:97:a0:3c:98:72:42:32:0d:b0:14:
5c:22:85:a8:dd:dc:d9:52:a8:b5:3d:0f:98:fa:09:
d8:ac:68:3f:ed:2f:d7:ff:a5:d1:55:5f:09:56:43:
c3:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:46:42:A0:BD:15:50:3D:37:1E:5F:E1:47:62:53:CA:C0:DF:E1:A8
X509v3 Authority Key Identifier:
keyid:78:C2:36:58:0C:C2:EE:19:3D:BD:CC:31:26:DF:41:70:CC:11:7C:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eMI2WAzC7hk9vcwxJt9BcMwRfNI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/69ce2b-aa36-4bab-b65e-f9e6539bbe6b/1/7UZCoL0VUD03Hl_hR2JTysDf4ag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/69ce2b-aa36-4bab-b65e-f9e6539bbe6b/1/eMI2WAzC7hk9vcwxJt9BcMwRfNI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.56.92.0/22
IPv6:
2a04:da40::/29
Signature Algorithm: sha256WithRSAEncryption
52:e6:51:a5:69:66:a0:23:21:55:9c:10:9d:aa:9a:41:3e:e0:
47:1c:1c:73:19:4c:31:d1:8f:bc:4b:7c:e7:ec:89:56:c1:12:
90:3c:07:bb:e0:03:6b:18:7f:d9:49:3a:cb:be:be:82:63:bb:
95:f6:bb:f4:03:b9:f0:cc:ab:fc:e8:c3:1e:b0:4f:19:19:07:
1d:c2:d7:f0:92:6a:44:ca:9b:52:f3:56:06:35:ee:99:ff:4d:
b7:ee:2f:32:c1:ae:45:00:da:e7:ca:c1:62:f9:4a:f4:43:c7:
84:c0:f5:64:f0:2b:6f:5f:b6:95:d8:00:34:6d:94:3b:12:78:
98:dc:ef:ba:67:bf:6d:08:ff:fb:e7:ed:35:d5:5b:fc:45:e5:
4b:97:d8:73:ea:87:d9:82:b8:c6:1b:b5:3e:24:df:db:5c:53:
0a:4b:b1:b4:49:c9:10:84:cd:b2:01:37:61:76:70:ae:7b:51:
0a:31:8c:61:d4:69:89:f8:3d:43:d9:d9:a9:57:e4:3b:d7:7b:
8b:73:bd:4b:de:b4:d0:c5:d6:ec:93:74:ed:c3:c4:6e:b4:b2:
50:4d:30:be:27:0a:f0:86:83:bb:61:6c:f2:90:b5:aa:64:6c:
47:33:28:3a:12:1c:3f:cd:5a:77:a8:d1:2e:68:8e:09:2d:9b:
9c:95:6f:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:01 2024 by rpki-client on console-fra.rpki-client.org