Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/ef9ce3-0e7b-428a-b1dd-571bb7690e34/1/wZHgjRGOlxDJHfvsefQ-84hI0yw.roa
File: wZHgjRGOlxDJHfvsefQ-84hI0yw.roa (raw, json)
Hash identifier: 19JbZZo7E+LhW3R0NKUFQeO/XCrI+Z4FubZZ6mszXxk=
Subject key identifier: C1:91:E0:8D:11:8E:97:10:C9:1D:FB:EC:79:F4:3E:F3:88:48:D3:2C
Certificate issuer: /CN=56be7dabe8edce2dc2e654bd0f42da0b6195a0f7
Certificate serial: 065F8DD1
Authority key identifier: 56:BE:7D:AB:E8:ED:CE:2D:C2:E6:54:BD:0F:42:DA:0B:61:95:A0:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vr59q-jtzi3C5lS9D0LaC2GVoPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/ef9ce3-0e7b-428a-b1dd-571bb7690e34/1/wZHgjRGOlxDJHfvsefQ-84hI0yw.roa
Signing time: Sat 01 Jan 2022 09:02:27 +0000
ROA not before: Sat 01 Jan 2022 09:02:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204488
IP address blocks: 185.247.170.0/24 maxlen: 24
185.247.169.0/24 maxlen: 24
185.247.168.0/24 maxlen: 24
185.247.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106925521 (0x65f8dd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56be7dabe8edce2dc2e654bd0f42da0b6195a0f7
Validity
Not Before: Jan 1 09:02:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c191e08d118e9710c91dfbec79f43ef38848d32c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:fc:0e:e1:5c:2a:cc:4e:58:82:54:1f:c0:f4:
40:a0:c2:89:d8:93:e7:b9:96:94:1b:31:9a:3a:2b:
03:b2:e3:af:4a:1a:dd:5b:be:2b:b7:bf:11:a8:65:
84:ef:08:99:18:5a:67:b3:15:d9:20:fc:66:ef:00:
42:87:66:b6:75:5e:ea:29:d7:07:c6:1d:aa:24:6b:
43:e5:47:e2:46:2f:3a:b0:53:7d:79:f1:3c:a0:9d:
98:e5:37:1b:d9:56:90:41:df:6e:76:0d:29:1f:66:
fb:38:64:63:79:8f:bf:2b:0b:e5:60:55:2c:75:d5:
78:25:79:ed:8e:8c:15:f1:ec:27:14:40:75:fe:87:
8b:5f:ee:5b:b4:55:be:4f:7c:a5:85:f5:d4:8b:98:
70:a4:97:2b:98:50:55:5a:36:ea:85:99:01:6d:78:
f5:61:0f:19:3d:f4:13:a8:c2:55:e1:f3:74:91:31:
27:8a:a2:f2:e7:4a:c9:ae:49:27:48:0b:70:92:e9:
83:ad:5f:0e:48:3e:ee:d2:97:3e:53:5f:e8:fc:7b:
77:8c:d3:87:ed:37:5b:30:66:e5:73:8a:63:3b:7a:
d2:ca:83:13:8a:bd:24:29:a9:4a:d3:86:f3:3e:75:
92:e7:f7:ca:ab:c2:6d:8d:bc:f4:13:ef:01:7c:a1:
da:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:91:E0:8D:11:8E:97:10:C9:1D:FB:EC:79:F4:3E:F3:88:48:D3:2C
X509v3 Authority Key Identifier:
keyid:56:BE:7D:AB:E8:ED:CE:2D:C2:E6:54:BD:0F:42:DA:0B:61:95:A0:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vr59q-jtzi3C5lS9D0LaC2GVoPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/ef9ce3-0e7b-428a-b1dd-571bb7690e34/1/wZHgjRGOlxDJHfvsefQ-84hI0yw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/ef9ce3-0e7b-428a-b1dd-571bb7690e34/1/Vr59q-jtzi3C5lS9D0LaC2GVoPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.247.168.0/22
Signature Algorithm: sha256WithRSAEncryption
94:d8:db:5d:fe:63:f5:15:09:39:ae:58:86:f4:34:1f:41:43:
f0:23:96:de:57:ad:ab:9a:5e:d6:85:23:26:f4:03:c1:c6:f9:
5b:97:74:ae:22:26:fe:34:13:f2:aa:ff:77:9b:e1:6e:ce:ce:
d9:1e:b9:d8:47:cb:06:27:60:5e:50:d3:9a:85:53:91:43:62:
58:af:f0:93:89:c0:85:3b:dc:2e:49:75:bd:d7:c3:72:d8:fa:
ed:36:41:c2:77:c7:cb:ff:b6:4e:bc:15:35:73:08:4d:e8:ce:
d2:8c:8a:5c:3d:4e:37:91:64:f1:6a:ba:01:25:85:54:97:14:
5a:0a:58:17:7d:a3:89:80:6c:93:21:aa:4b:99:8b:4a:a4:4c:
ff:e8:bd:1f:06:49:6f:e2:51:23:83:1c:9d:30:61:c6:5a:84:
c1:3b:b5:a1:bd:5d:b5:68:e4:b4:13:b1:13:ce:a6:81:b0:8d:
6d:8a:44:29:72:1f:4d:bc:a2:fd:26:ab:4d:a6:7d:67:9e:29:
94:1b:25:07:75:1a:26:89:97:d7:ff:6e:25:a5:cd:36:12:9a:
c6:ba:f5:47:d4:37:b5:db:e5:46:26:3a:d5:12:eb:5f:a8:25:
fd:6c:f0:b8:a4:67:60:a1:20:e6:5c:07:21:4f:fd:8d:e8:4b:
62:04:39:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:48 2023 by rpki-client on console-fra.rpki-client.org