Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7979b2-c3d9-4f33-a09f-49591afe17f0/1/Xi5DiSDjTt3FiIMDjt8HW58ekrI.roa
File: Xi5DiSDjTt3FiIMDjt8HW58ekrI.roa (raw, json)
Hash identifier: 9II1AHfxxSQtof+bA4uUGyy75QrF0l6uSHouVQxJA1g=
Subject key identifier: 5E:2E:43:89:20:E3:4E:DD:C5:88:83:03:8E:DF:07:5B:9F:1E:92:B2
Certificate issuer: /CN=8eee7a3ad152bb8725a7db9bb7520804b6f1155f
Certificate serial: 0DAD7A9F
Authority key identifier: 8E:EE:7A:3A:D1:52:BB:87:25:A7:DB:9B:B7:52:08:04:B6:F1:15:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ju56OtFSu4clp9ubt1IIBLbxFV8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7979b2-c3d9-4f33-a09f-49591afe17f0/1/Xi5DiSDjTt3FiIMDjt8HW58ekrI.roa
Signing time: Thu 27 Jan 2022 16:44:05 +0000
ROA not before: Thu 27 Jan 2022 16:44:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202499
IP address blocks: 185.228.240.0/24 maxlen: 24
185.228.241.0/24 maxlen: 24
185.228.242.0/24 maxlen: 24
185.71.168.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 229472927 (0xdad7a9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8eee7a3ad152bb8725a7db9bb7520804b6f1155f
Validity
Not Before: Jan 27 16:44:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e2e438920e34eddc58883038edf075b9f1e92b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ec:ea:0d:7a:5f:29:93:8e:53:3c:7d:76:96:
14:e4:5f:ac:79:5f:78:7f:77:8b:b6:65:a0:38:ff:
d3:50:6e:80:88:6f:2b:71:9c:e0:f6:d9:8b:05:8c:
e5:33:d7:ba:e5:09:de:8c:91:79:ad:f4:f9:55:56:
d3:b9:c8:d3:52:e2:92:4c:ce:8e:5b:86:40:4f:a5:
8e:f3:33:a6:1e:e9:b9:c5:5a:73:a7:65:dd:63:4c:
98:29:cd:2d:50:96:ed:65:ce:cf:ca:31:ed:77:d3:
b9:ce:4d:13:37:df:6b:51:dd:74:44:52:cb:83:8f:
f9:f0:b8:0b:d0:9e:1a:ef:5f:a3:c7:68:68:ca:a8:
a6:fc:2f:c9:67:c9:55:d2:b5:0c:d8:2e:3f:b3:d3:
d0:e3:d4:9f:f9:fb:7e:10:f3:d1:d2:5c:a0:3a:a2:
31:04:3d:1e:1d:7b:4f:df:47:ad:7b:69:a2:75:95:
5d:26:05:8e:b3:36:76:5f:10:81:a5:4b:a5:80:01:
9b:6c:21:21:db:21:76:e2:75:0d:07:54:64:1a:e4:
31:e8:0c:18:c2:a1:17:be:07:52:87:78:a2:93:b9:
2f:e8:25:80:ae:aa:cf:1d:ab:08:6a:a3:47:34:26:
6f:48:f5:00:94:25:f1:37:03:ae:4e:3e:0a:81:63:
79:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:2E:43:89:20:E3:4E:DD:C5:88:83:03:8E:DF:07:5B:9F:1E:92:B2
X509v3 Authority Key Identifier:
keyid:8E:EE:7A:3A:D1:52:BB:87:25:A7:DB:9B:B7:52:08:04:B6:F1:15:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ju56OtFSu4clp9ubt1IIBLbxFV8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7979b2-c3d9-4f33-a09f-49591afe17f0/1/Xi5DiSDjTt3FiIMDjt8HW58ekrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7979b2-c3d9-4f33-a09f-49591afe17f0/1/ju56OtFSu4clp9ubt1IIBLbxFV8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.168.0/22
185.228.240.0-185.228.242.255
Signature Algorithm: sha256WithRSAEncryption
80:f5:61:17:8b:00:f9:f5:c3:e8:ba:83:85:ba:91:be:43:01:
26:74:ed:02:68:c3:64:4f:ea:ab:54:ff:b6:6e:56:f1:1f:c5:
29:04:80:80:db:e5:6e:27:fc:dd:bd:ec:bb:06:2f:55:65:07:
dc:79:72:95:25:91:da:70:50:1c:12:7d:6f:42:4c:71:db:16:
ab:e0:b6:74:06:e7:5b:59:ad:48:b2:5d:f4:79:e3:d3:04:cb:
d1:bb:45:29:93:ca:1b:ff:db:e3:8c:84:d1:ab:f5:18:39:05:
1e:32:e2:09:56:ac:0e:99:02:d8:20:d4:d5:29:bd:09:ec:34:
03:8b:46:58:83:41:c3:dd:6c:c0:59:30:3d:91:ea:9e:a1:97:
9d:72:46:8b:68:0b:db:11:24:93:d3:65:0a:83:4e:82:75:6c:
f8:b6:92:65:53:d2:7c:77:ae:f3:f1:43:54:a1:8b:0f:be:a9:
f8:fe:06:ba:53:82:e0:5e:31:83:33:35:9f:53:31:fe:32:e4:
b4:38:cf:1e:1e:3e:9a:59:c1:14:8e:48:db:95:56:c1:36:ab:
6d:4e:0d:4a:df:95:ff:22:dc:8e:e9:6d:ee:98:50:23:1a:94:
61:3b:b8:f9:23:80:20:bb:ea:46:c1:6e:28:b8:f0:9a:1f:2b:
3f:6c:fb:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:54 2024 by rpki-client on console-ams.rpki-client.org