Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/267a8b-3b7d-4bb0-b222-960dee072f3a/1/B2ZXwGMVF3E12k57mDna5XczMwg.roa
File: B2ZXwGMVF3E12k57mDna5XczMwg.roa (raw, json)
Hash identifier: SUMvbfPrUyqg6UZcG9NeHUmbtdWbFV5wt74wJZc1c5Q=
Subject key identifier: 07:66:57:C0:63:15:17:71:35:DA:4E:7B:98:39:DA:E5:77:33:33:08
Certificate issuer: /CN=e9e9ad934f40594c9f1ba500495a93eeec3c6ce3
Certificate serial: 01836005D66F9268D323F5653C8AC4929EDE
Authority key identifier: E9:E9:AD:93:4F:40:59:4C:9F:1B:A5:00:49:5A:93:EE:EC:3C:6C:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6emtk09AWUyfG6UASVqT7uw8bOM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/267a8b-3b7d-4bb0-b222-960dee072f3a/1/B2ZXwGMVF3E12k57mDna5XczMwg.roa
Signing time: Wed 21 Sep 2022 12:28:58 +0000
ROA not before: Wed 21 Sep 2022 12:28:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 185.253.56.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:60:05:d6:6f:92:68:d3:23:f5:65:3c:8a:c4:92:9e:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9e9ad934f40594c9f1ba500495a93eeec3c6ce3
Validity
Not Before: Sep 21 12:28:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=076657c06315177135da4e7b9839dae577333308
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:c6:08:52:10:09:8a:44:a5:0c:3f:68:dd:61:
40:bf:5f:3b:d3:2e:68:b0:9f:8f:c0:37:88:cd:27:
fe:3c:8f:ca:d3:8f:b2:db:a1:44:f4:22:e5:91:08:
78:aa:de:1a:2c:69:5b:ae:c0:bf:07:00:40:d0:41:
1c:9c:63:19:02:8f:06:dc:f2:56:06:31:4f:a0:c9:
5f:20:4d:c6:9f:c3:37:b5:c9:0d:77:7a:54:c6:eb:
6f:ce:ed:d2:a2:0f:86:ae:77:2e:f7:fb:fe:eb:c8:
59:96:98:4a:72:1f:22:72:cc:34:13:b5:df:16:88:
02:93:b3:16:00:ba:1a:e7:ee:d1:69:c6:32:16:85:
4c:a3:c2:d4:1e:22:0a:5f:ee:00:26:7a:0e:2f:61:
4d:06:85:d7:fe:e2:26:44:5a:c4:9d:89:5d:30:52:
e0:76:4e:d2:d7:26:1f:b1:69:f3:ba:27:16:9c:1d:
53:fd:3d:0d:29:6b:9f:53:69:58:1c:10:cd:ec:9c:
49:42:62:3e:b6:83:39:e0:44:41:c5:d8:b6:ea:33:
0b:e6:d4:c4:a2:45:c3:eb:50:6a:1a:8b:f5:5b:b7:
5f:7c:ec:53:b2:a4:51:48:a4:31:8b:84:99:3a:ac:
a6:c8:80:6f:a6:07:b4:bf:e7:e9:2a:82:06:15:51:
48:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:66:57:C0:63:15:17:71:35:DA:4E:7B:98:39:DA:E5:77:33:33:08
X509v3 Authority Key Identifier:
keyid:E9:E9:AD:93:4F:40:59:4C:9F:1B:A5:00:49:5A:93:EE:EC:3C:6C:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6emtk09AWUyfG6UASVqT7uw8bOM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/267a8b-3b7d-4bb0-b222-960dee072f3a/1/B2ZXwGMVF3E12k57mDna5XczMwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/267a8b-3b7d-4bb0-b222-960dee072f3a/1/6emtk09AWUyfG6UASVqT7uw8bOM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.253.56.0/24
Signature Algorithm: sha256WithRSAEncryption
40:71:d9:27:0b:a3:e3:cb:09:60:77:98:86:86:61:a6:ea:f5:
db:ca:a5:77:f5:00:45:cd:d1:02:d4:1c:d6:d9:9c:e2:d4:b0:
c3:7f:b2:9f:21:4e:45:22:95:68:8b:9e:f8:f8:ca:78:d2:8c:
93:e3:ee:f8:60:95:89:e7:75:24:2f:c2:6b:e9:5d:9c:9f:26:
c2:33:1e:bf:63:72:5f:e3:c5:36:20:1e:0f:12:be:1d:67:0f:
46:fe:fa:89:bc:49:ba:7d:6c:6b:e9:d6:b1:2c:b5:8f:27:24:
e2:1e:c3:56:47:cc:3f:51:51:c4:f5:26:dd:e7:e4:6e:78:91:
a7:91:c0:ed:0b:56:48:62:da:38:44:a8:ec:58:a5:27:7a:86:
24:21:40:d7:8e:e0:66:3b:bb:5b:ab:23:9f:4e:7a:30:fd:07:
54:54:44:d8:3e:08:9b:d1:f1:8f:fe:1e:aa:57:ee:34:aa:46:
e1:59:4d:2c:d8:8c:0a:8c:60:c1:41:e5:0f:b0:3b:5a:d8:e8:
d7:ca:39:e8:e4:df:8b:b9:74:6d:82:ac:ee:07:81:c0:0b:c8:
90:a0:ca:83:31:3f:0d:1f:c1:ad:37:60:99:16:55:98:f7:44:
b4:f1:a7:04:f6:8f:6f:75:e0:02:3e:57:1c:8f:bb:2d:09:06:
b0:4d:46:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:45 2023 by rpki-client on console-ams.rpki-client.org