Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/0tr2DY5n8JaSaQwbQ4g99SrcCi8.roa
File: 0tr2DY5n8JaSaQwbQ4g99SrcCi8.roa (raw, json)
Hash identifier: /c41R9JwtJN302i1cjajeb+0s4Wa/xJAvYMHkKw/Nzg=
Subject key identifier: D2:DA:F6:0D:8E:67:F0:96:92:69:0C:1B:43:88:3D:F5:2A:DC:0A:2F
Certificate issuer: /CN=5c76eff26884bf006207d722b3b01a44d2b56199
Certificate serial: 0165D7
Authority key identifier: 5C:76:EF:F2:68:84:BF:00:62:07:D7:22:B3:B0:1A:44:D2:B5:61:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/0tr2DY5n8JaSaQwbQ4g99SrcCi8.roa
Signing time: Mon 03 Jan 2022 16:07:08 +0000
ROA not before: Mon 03 Jan 2022 16:07:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6799
IP address blocks: 185.174.56.0/24 maxlen: 24
185.174.57.0/24 maxlen: 24
185.174.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91607 (0x165d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c76eff26884bf006207d722b3b01a44d2b56199
Validity
Not Before: Jan 3 16:07:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d2daf60d8e67f09692690c1b43883df52adc0a2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:75:d1:c7:2e:09:66:65:a8:7e:db:43:31:99:
f1:34:c9:93:60:bb:69:49:46:9e:fb:2c:96:fa:c3:
81:57:59:30:1c:68:9f:da:86:9b:13:f2:57:80:41:
1a:77:cc:01:27:a9:62:39:bc:f3:4a:98:9b:43:85:
7e:0a:c0:e5:41:e9:83:4c:6a:fb:00:9b:20:b6:cc:
f3:83:e6:df:8e:e5:99:20:7e:2d:4c:ee:1d:af:d6:
75:4a:41:70:c9:10:3e:4c:1e:93:38:01:94:57:e0:
c2:bf:d3:89:fb:0b:a5:85:eb:42:f6:bf:15:b1:df:
64:56:c2:2e:49:01:6a:c3:78:c1:b8:b9:6f:8b:0e:
15:f1:b7:2f:3b:eb:e6:2a:04:fb:a6:5b:97:6f:1f:
f7:c4:79:ea:f5:81:ad:b5:87:8f:72:fb:d9:6f:fd:
b0:2b:ad:e1:3f:51:0b:28:13:ec:9c:e9:38:33:9b:
03:39:c9:a9:75:28:64:0f:af:6a:07:2e:01:4f:d4:
12:cb:fe:39:9c:88:94:ac:9c:14:df:07:06:be:d2:
3c:07:2d:10:5a:b2:d1:7d:09:22:ed:3a:61:b8:f3:
5f:e5:78:92:c5:41:ed:4a:3e:14:2f:b3:2b:3b:59:
da:70:f6:e9:a0:e1:e4:dd:cd:2f:8b:d9:d6:d8:8d:
a3:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:DA:F6:0D:8E:67:F0:96:92:69:0C:1B:43:88:3D:F5:2A:DC:0A:2F
X509v3 Authority Key Identifier:
keyid:5C:76:EF:F2:68:84:BF:00:62:07:D7:22:B3:B0:1A:44:D2:B5:61:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/0tr2DY5n8JaSaQwbQ4g99SrcCi8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.174.56.0/23
185.174.59.0/24
Signature Algorithm: sha256WithRSAEncryption
09:74:cf:d0:0c:8f:b8:d2:e0:46:f7:af:d5:a9:3f:13:1c:f7:
e5:00:d8:a7:21:ed:18:06:21:ef:ac:85:78:45:a9:9a:58:fa:
7a:60:2f:69:34:9c:61:a4:fd:76:61:c8:e4:a2:a7:e1:3e:be:
21:75:78:d2:d3:0d:8b:c9:bd:ae:ff:01:e1:8b:7d:08:73:a4:
83:cf:8f:14:6a:bc:a1:2b:03:a0:30:ae:57:ce:f9:e3:3a:3c:
4b:06:c4:35:b2:fb:06:1e:24:6d:45:fe:ab:0e:8b:2a:44:0e:
83:f0:6f:e4:37:8b:c2:56:ad:41:ce:7c:53:00:5c:d1:96:c6:
04:05:70:bf:d3:60:f8:fd:8d:64:d7:87:ae:15:89:1d:87:08:
58:4b:0f:73:67:d9:21:9f:ab:bb:64:46:8b:dd:ea:8d:ce:76:
26:83:aa:aa:6c:04:d5:ef:b3:6f:f9:3f:a4:34:80:cc:b6:52:
2f:04:49:fa:50:28:f2:80:82:c9:57:32:29:9c:c9:64:04:79:
ec:fa:c3:b5:ed:65:7c:98:b4:f3:53:67:d4:c1:41:b5:e9:6e:
c2:57:d8:18:a5:e4:81:17:f7:96:85:74:c9:00:67:28:f5:90:
75:0a:6c:bf:b3:f5:41:b3:5e:32:56:a2:92:11:63:b2:da:f3:
3a:98:60:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:42 2024 by rpki-client on console-ams.rpki-client.org