Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/72ee02-13d9-4396-9f7e-4ca842bacda5/1/ttrRxlZmlReoYjqql_i-Ts8QKew.roa
File: ttrRxlZmlReoYjqql_i-Ts8QKew.roa (raw, json)
Hash identifier: iQ+jLNJ68toio46xtsLieljc9T2mN8US2QMEr045FoU=
Subject key identifier: B6:DA:D1:C6:56:66:95:17:A8:62:3A:AA:97:F8:BE:4E:CF:10:29:EC
Certificate issuer: /CN=9cc60ed881418a217e8dd3c1fa523e2565caeb9b
Certificate serial: 06DB422B
Authority key identifier: 9C:C6:0E:D8:81:41:8A:21:7E:8D:D3:C1:FA:52:3E:25:65:CA:EB:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nMYO2IFBiiF-jdPB-lI-JWXK65s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/72ee02-13d9-4396-9f7e-4ca842bacda5/1/ttrRxlZmlReoYjqql_i-Ts8QKew.roa
Signing time: Sat 01 Jan 2022 10:58:53 +0000
ROA not before: Sat 01 Jan 2022 10:58:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201702
IP address blocks: 185.66.200.0/23 maxlen: 23
2a05:980::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115032619 (0x6db422b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cc60ed881418a217e8dd3c1fa523e2565caeb9b
Validity
Not Before: Jan 1 10:58:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b6dad1c656669517a8623aaa97f8be4ecf1029ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:83:46:60:f0:dc:da:fe:b9:82:04:23:0a:06:
c8:13:a4:8f:b0:6d:e8:58:8a:09:67:f5:55:91:51:
15:6d:10:e5:09:9b:71:32:d4:84:e4:fb:01:9f:31:
33:a5:d5:4a:ba:82:ad:1b:8a:4c:bd:78:3c:84:4c:
44:5d:ab:6c:3c:d8:57:9c:2d:09:a3:3d:10:34:82:
64:8e:e8:35:76:7b:55:92:2e:f1:d1:57:9d:12:09:
7f:84:17:9c:eb:a8:69:98:bd:ed:dc:f8:d6:f9:9b:
6b:6b:34:b8:70:fb:37:a9:1b:f9:e5:ae:dc:ca:24:
3d:fa:af:3e:ee:83:7e:bb:25:1b:c3:47:5a:b1:81:
81:a0:5f:6a:5a:b0:32:ff:5f:9a:54:98:18:79:b2:
60:1d:aa:a5:02:ef:1c:89:1d:87:90:f7:55:c1:57:
d8:43:ae:06:cf:16:30:45:a7:4e:b9:1a:2b:f4:32:
e8:70:d2:2b:7e:e9:40:d7:1d:5d:b0:03:47:95:54:
26:94:34:4c:03:bd:21:b3:8c:c2:ac:04:e5:dd:e9:
9d:1b:41:d2:58:34:e6:9b:ba:62:7a:27:4a:69:53:
70:55:12:cc:8f:2a:c9:c4:e0:75:8e:df:e5:86:24:
76:d0:44:2e:e7:a1:a6:c3:9d:32:80:b3:55:8e:72:
e3:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:DA:D1:C6:56:66:95:17:A8:62:3A:AA:97:F8:BE:4E:CF:10:29:EC
X509v3 Authority Key Identifier:
keyid:9C:C6:0E:D8:81:41:8A:21:7E:8D:D3:C1:FA:52:3E:25:65:CA:EB:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nMYO2IFBiiF-jdPB-lI-JWXK65s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/72ee02-13d9-4396-9f7e-4ca842bacda5/1/ttrRxlZmlReoYjqql_i-Ts8QKew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/72ee02-13d9-4396-9f7e-4ca842bacda5/1/nMYO2IFBiiF-jdPB-lI-JWXK65s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.66.200.0/23
IPv6:
2a05:980::/29
Signature Algorithm: sha256WithRSAEncryption
57:b5:cf:53:71:bd:b8:1b:22:35:b2:e4:ad:f1:cf:6a:4f:87:
b4:8a:45:92:eb:1d:ea:56:c4:ba:15:50:86:11:21:9d:15:5f:
36:74:f4:41:0e:66:49:7a:ad:0a:e8:bb:ab:bd:07:25:63:69:
97:d9:ba:a2:21:c0:e9:93:5d:c9:f3:93:74:bb:10:ec:46:da:
f4:59:25:b8:e8:b6:b3:1d:a1:88:c9:9b:50:b8:27:89:e5:5d:
71:bc:61:01:81:43:ff:d6:ed:0d:d3:3c:09:40:6e:d9:d8:3f:
a2:ea:06:a7:38:e8:ae:30:a0:44:8c:e8:13:56:cb:67:88:8d:
26:a3:7c:ef:54:f9:1d:f1:e5:17:89:2f:a7:74:ac:62:c5:f0:
00:71:77:64:a0:a4:2f:74:77:92:ff:a5:43:71:18:72:60:83:
f4:87:fd:36:33:18:81:ea:20:bb:dc:e1:2e:ca:76:94:50:8c:
18:cf:3d:cd:75:6a:96:63:3b:d0:c1:a5:86:2e:ff:ad:81:7c:
dc:0b:16:66:d6:43:e3:cd:23:5f:de:00:fb:03:26:e6:d9:2a:
a4:78:17:b3:f4:cd:fa:73:55:2d:d5:b8:2d:4d:bf:64:24:d1:
75:94:7c:72:f4:a9:f6:8f:9f:7c:e8:a7:aa:ef:3a:6d:e6:da:
9f:71:39:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:36 2023 by rpki-client on console-fra.rpki-client.org