Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/bXB8d_qNnuyY2zo18C7dRTxWC3g.roa
File: bXB8d_qNnuyY2zo18C7dRTxWC3g.roa (raw, json)
Hash identifier: pstnTj+ksR4mEHH4GPN58Zluum6/IDnm6LoXux/uzyI=
Subject key identifier: 6D:70:7C:77:FA:8D:9E:EC:98:DB:3A:35:F0:2E:DD:45:3C:56:0B:78
Certificate issuer: /CN=259490c5dbcfbf590da33bfbd37970a0763469c9
Certificate serial: 018487D304BACA0C06F58B42AE0082FE3701
Authority key identifier: 25:94:90:C5:DB:CF:BF:59:0D:A3:3B:FB:D3:79:70:A0:76:34:69:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JZSQxdvPv1kNozv703lwoHY0ack.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/bXB8d_qNnuyY2zo18C7dRTxWC3g.roa
Signing time: Thu 17 Nov 2022 23:01:04 +0000
ROA not before: Thu 17 Nov 2022 23:01:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209968
IP address blocks: 185.23.5.0/24 maxlen: 24
2a09:be44::/30 maxlen: 48
2a09:be41::/32 maxlen: 48
2a12:49c0::/29 maxlen: 48
2a09:be42::/31 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:87:d3:04:ba:ca:0c:06:f5:8b:42:ae:00:82:fe:37:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=259490c5dbcfbf590da33bfbd37970a0763469c9
Validity
Not Before: Nov 17 23:01:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d707c77fa8d9eec98db3a35f02edd453c560b78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:f2:ce:74:84:7e:fe:43:01:ec:d8:37:29:06:
16:a9:35:51:10:5f:13:51:c1:88:8e:0c:39:ec:a7:
8d:af:ab:2e:86:e2:3d:70:38:dd:c0:97:12:48:9b:
73:fb:94:86:6e:9a:33:90:ab:84:0e:83:5b:73:3b:
ee:23:c0:58:76:11:e4:89:30:89:fb:1c:4c:0b:0b:
96:3d:8b:23:4c:b2:fc:cf:52:f5:6b:71:a1:e6:a6:
39:0d:71:5c:59:61:76:f5:50:10:43:6a:7d:fc:57:
73:c1:22:81:1d:a3:01:84:19:69:d4:15:9d:e0:0c:
41:77:1c:ad:67:e0:bc:d9:75:b7:35:11:fc:c7:41:
54:3d:53:8f:ab:4d:07:f2:57:76:b7:00:d7:61:69:
0a:89:f2:ad:64:4d:38:d1:92:f4:4f:30:55:59:ac:
77:7e:47:cf:2f:b0:b9:17:40:c7:7e:db:68:63:6c:
6e:8e:cc:6c:a3:f5:8d:b0:97:83:59:07:c1:d1:17:
b1:42:e9:6e:6c:ab:d5:6c:e7:08:87:69:58:2a:b7:
56:4d:5e:37:01:d7:c4:f1:ff:5f:03:cd:53:d6:20:
e7:1b:0c:4b:80:6c:05:89:7a:fa:b7:03:9d:02:85:
1a:38:6b:61:63:d0:d7:87:09:ec:8f:6a:3f:9e:45:
5e:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:70:7C:77:FA:8D:9E:EC:98:DB:3A:35:F0:2E:DD:45:3C:56:0B:78
X509v3 Authority Key Identifier:
keyid:25:94:90:C5:DB:CF:BF:59:0D:A3:3B:FB:D3:79:70:A0:76:34:69:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JZSQxdvPv1kNozv703lwoHY0ack.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/bXB8d_qNnuyY2zo18C7dRTxWC3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/JZSQxdvPv1kNozv703lwoHY0ack.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.5.0/24
IPv6:
2a09:be41::-2a09:be47:ffff:ffff:ffff:ffff:ffff:ffff
2a12:49c0::/29
Signature Algorithm: sha256WithRSAEncryption
75:0d:8c:1a:62:74:76:2d:85:28:a6:f6:1a:1b:be:38:10:60:
73:4f:84:c2:61:c2:e7:1b:ca:b8:8b:77:6e:73:f7:55:8d:54:
ae:77:f0:0b:52:0a:86:2c:ba:8e:cd:d8:01:d1:0d:e1:0d:9b:
7d:ae:43:b7:ed:99:52:10:51:53:4b:d1:e2:b8:3f:db:92:ca:
41:15:70:83:d7:ed:64:a3:b2:1e:48:71:9b:14:c2:1d:11:91:
d9:e3:70:f5:26:87:57:80:74:e7:2f:e1:21:e2:0c:2f:ac:ca:
a4:ae:2f:b4:a9:09:59:ec:e0:f6:59:96:df:7e:b3:84:91:69:
52:83:62:8c:a0:02:40:0a:8a:c8:16:be:8e:21:0c:6e:c6:9f:
2e:99:28:1a:e7:54:f0:19:31:86:21:09:3f:d2:0c:c6:c2:4a:
ea:7d:8e:41:81:6d:7d:8d:68:5f:5a:9a:52:26:66:68:76:02:
21:3b:47:0f:b2:a1:60:2c:ad:e1:b5:ff:b9:8f:49:55:d8:29:
3f:35:4d:ab:fd:bf:d1:73:9e:87:c6:11:61:2a:6a:3f:f0:87:
9a:4a:95:47:02:12:20:d5:2a:59:97:25:8a:22:bc:5a:45:1a:
e8:74:24:54:0d:99:73:72:32:30:ad:af:b7:50:a8:f8:2b:aa:
48:62:62:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:34 2023 by rpki-client on console-ams.rpki-client.org