Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/ol-zSxn05e4avf33u9H8ZwzwGXg.roa
File: ol-zSxn05e4avf33u9H8ZwzwGXg.roa (raw, json)
Hash identifier: 5VDHEUVFS1TkEtuZjTJGtTDZIwhFF4JqNaPFxUod/M0=
Subject key identifier: A2:5F:B3:4B:19:F4:E5:EE:1A:BD:FD:F7:BB:D1:FC:67:0C:F0:19:78
Certificate issuer: /CN=bf107e07952c069358cd3f82aaeceb4c69483ca9
Certificate serial: 0183E944EC2ED26A30A88512D16620AD7DCB
Authority key identifier: BF:10:7E:07:95:2C:06:93:58:CD:3F:82:AA:EC:EB:4C:69:48:3C:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vxB-B5UsBpNYzT-CquzrTGlIPKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/ol-zSxn05e4avf33u9H8ZwzwGXg.roa
Signing time: Tue 18 Oct 2022 04:05:51 +0000
ROA not before: Tue 18 Oct 2022 04:05:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208257
IP address blocks: 185.251.70.0/24 maxlen: 24
2a0f:6a00::/29 maxlen: 29
2a10:aec0::/29 maxlen: 29
2a0f:f200::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e9:44:ec:2e:d2:6a:30:a8:85:12:d1:66:20:ad:7d:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf107e07952c069358cd3f82aaeceb4c69483ca9
Validity
Not Before: Oct 18 04:05:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a25fb34b19f4e5ee1abdfdf7bbd1fc670cf01978
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:aa:b0:3d:b2:b7:54:e0:92:92:b2:ef:f4:03:
84:d6:5a:05:e3:3e:40:64:67:a6:97:4b:b6:0a:3a:
94:ae:3e:dc:87:6e:8a:47:6c:23:80:53:09:9a:d7:
c4:fd:c0:dc:b0:87:bc:7d:bf:16:1f:00:94:ff:69:
d9:7e:06:c3:5d:52:d1:87:cc:17:ef:6d:f5:97:44:
18:56:f6:ea:d5:b6:85:8c:bc:9b:44:2a:66:d9:6d:
56:0d:fd:3a:44:51:ed:7c:ec:ba:58:2d:54:15:ef:
74:e6:ad:69:ae:67:87:56:33:0c:a1:b1:39:8e:b1:
b7:bc:f8:11:cf:6b:c4:b2:15:93:c5:23:60:11:77:
88:1e:c0:73:76:83:f0:99:4f:39:dc:75:99:53:23:
fe:2b:f9:de:d9:89:a3:b1:78:db:f9:af:0b:ab:56:
24:84:42:b9:6d:9b:05:47:c6:6d:03:cf:82:20:b8:
98:84:85:ec:8f:0e:3e:6a:24:1b:55:e6:42:cc:10:
2f:2b:5a:9b:02:c9:45:32:21:15:a8:95:a1:ef:fe:
16:95:d9:f0:38:cd:df:a0:e1:a9:cc:d2:94:f4:99:
01:06:f3:30:c1:b7:d9:02:ae:79:eb:f6:61:d3:88:
d2:78:af:ff:6f:32:da:07:db:c9:75:0d:2b:a3:b7:
fc:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:5F:B3:4B:19:F4:E5:EE:1A:BD:FD:F7:BB:D1:FC:67:0C:F0:19:78
X509v3 Authority Key Identifier:
keyid:BF:10:7E:07:95:2C:06:93:58:CD:3F:82:AA:EC:EB:4C:69:48:3C:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vxB-B5UsBpNYzT-CquzrTGlIPKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/ol-zSxn05e4avf33u9H8ZwzwGXg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/vxB-B5UsBpNYzT-CquzrTGlIPKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.70.0/24
IPv6:
2a0f:6a00::/29
2a0f:f200::/29
2a10:aec0::/29
Signature Algorithm: sha256WithRSAEncryption
00:43:54:a0:68:fd:22:ab:2b:fe:4f:14:ba:2c:94:e6:ed:3f:
9c:c6:9d:85:ee:ac:d3:7e:60:be:e4:9f:2e:57:f6:81:ab:d1:
e0:24:a9:b7:75:f1:49:61:63:d6:7f:a7:c8:d4:63:88:8a:32:
6c:56:3d:9b:e5:ad:10:4f:15:91:b2:58:c8:99:4e:89:14:b0:
af:33:eb:0e:df:be:2d:bc:20:ab:a5:4f:1d:c0:46:2e:0f:1f:
8c:25:c9:9f:dc:1d:b4:3a:68:d0:c6:6f:d9:48:dc:ed:4f:32:
63:ea:32:4a:f8:f9:1a:38:d1:eb:ec:3b:ee:87:6b:d6:cb:3e:
53:1d:77:49:4e:7b:5b:4e:c0:a5:9d:d3:a0:e5:ce:c0:d2:a9:
de:3b:8f:68:9f:66:d8:63:ab:8e:c7:6b:71:5f:f2:64:d5:ed:
03:0d:07:33:67:7d:88:2b:49:70:a7:70:d3:a7:85:b5:3f:eb:
ea:0b:9c:db:c5:ee:69:61:73:c1:c6:77:3d:54:2e:c3:4d:8e:
f0:d2:8a:46:93:03:06:ad:e0:34:eb:63:f5:5a:32:49:5f:7d:
7e:e2:f5:a5:e6:9c:53:36:64:e0:54:af:c8:32:90:1b:f6:b1:
15:3b:3b:40:35:fe:8a:3c:66:a4:ef:8c:70:9f:b5:bd:2f:a8:
5e:7d:e2:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:36 2024 by rpki-client on console-ams.rpki-client.org