Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/e4ce7c-ad7b-4006-8e6a-80352d1413d9/1/Tm9CxQGPQhZ3V-JfYaTGJZA2gBU.roa
File: Tm9CxQGPQhZ3V-JfYaTGJZA2gBU.roa (raw, json)
Hash identifier: ec+Jh9iOteWHq7x5pwPjyQBnfawc0NLB2e0lf5xwIZk=
Subject key identifier: 4E:6F:42:C5:01:8F:42:16:77:57:E2:5F:61:A4:C6:25:90:36:80:15
Certificate issuer: /CN=66927b2b26b5214b9665d8dc85f414709714996c
Certificate serial: 018486EE22C5FB173294FEA93CA2F50739BF
Authority key identifier: 66:92:7B:2B:26:B5:21:4B:96:65:D8:DC:85:F4:14:70:97:14:99:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZpJ7Kya1IUuWZdjchfQUcJcUmWw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/e4ce7c-ad7b-4006-8e6a-80352d1413d9/1/Tm9CxQGPQhZ3V-JfYaTGJZA2gBU.roa
Signing time: Thu 17 Nov 2022 18:51:04 +0000
ROA not before: Thu 17 Nov 2022 18:51:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212098
IP address blocks: 185.223.163.0/24 maxlen: 24
2a10:8c80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:86:ee:22:c5:fb:17:32:94:fe:a9:3c:a2:f5:07:39:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66927b2b26b5214b9665d8dc85f414709714996c
Validity
Not Before: Nov 17 18:51:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e6f42c5018f42167757e25f61a4c62590368015
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e9:cc:fd:b9:2f:9f:06:69:7e:1d:cc:ba:9b:
9b:e1:76:7a:7d:eb:df:21:81:80:a2:27:ae:c0:c9:
7d:2f:3d:9f:b3:ec:52:90:21:c5:4b:b8:c7:b2:5e:
ba:e8:44:5a:66:84:55:92:54:e4:ee:3a:37:29:48:
ac:c6:2c:28:ef:c6:66:80:a5:6a:97:9f:cb:69:57:
90:53:e4:f3:51:f6:c5:44:ff:68:b0:50:b4:a7:dc:
46:90:d5:51:24:53:33:52:b2:1d:93:de:c2:08:32:
bf:27:6f:30:8d:06:e0:31:e3:99:f3:8f:8d:61:29:
f8:8f:c1:1e:26:e2:71:a1:68:92:20:72:88:c3:42:
cf:6f:9d:8d:01:19:5e:46:e4:9a:92:9f:ab:d9:35:
3e:38:4f:a1:31:4a:b9:f0:77:d7:8f:78:13:32:63:
00:cf:44:3d:0c:7c:87:e8:22:04:19:6a:4f:9f:06:
1c:c9:7e:96:85:60:8e:39:f3:75:f4:11:c0:96:32:
fd:b7:d6:37:c8:19:d0:38:e4:9b:55:24:35:35:4d:
c7:15:51:c8:d4:d8:34:c2:be:65:99:f6:35:8f:08:
d9:3e:d3:d6:99:7b:d7:27:82:f3:34:2b:88:86:61:
32:ea:cb:6c:16:72:42:e1:39:8e:fc:4c:bf:52:c4:
bc:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:6F:42:C5:01:8F:42:16:77:57:E2:5F:61:A4:C6:25:90:36:80:15
X509v3 Authority Key Identifier:
keyid:66:92:7B:2B:26:B5:21:4B:96:65:D8:DC:85:F4:14:70:97:14:99:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZpJ7Kya1IUuWZdjchfQUcJcUmWw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/e4ce7c-ad7b-4006-8e6a-80352d1413d9/1/Tm9CxQGPQhZ3V-JfYaTGJZA2gBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/e4ce7c-ad7b-4006-8e6a-80352d1413d9/1/ZpJ7Kya1IUuWZdjchfQUcJcUmWw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.163.0/24
IPv6:
2a10:8c80::/29
Signature Algorithm: sha256WithRSAEncryption
6e:4d:3d:e1:c1:cb:aa:4d:1c:72:1a:ea:45:87:37:a5:b1:5f:
33:fa:a5:f1:37:a4:a9:ab:53:7e:59:cf:05:0b:fd:2c:f0:73:
ac:f6:27:fa:b7:54:64:02:81:3c:55:71:00:77:08:2b:90:f7:
38:d3:b6:e0:32:d8:f9:df:97:dd:02:8c:b7:b7:14:e0:9c:0d:
63:b3:64:fb:cc:02:27:1a:87:08:2d:b0:28:23:b1:17:86:8b:
80:2a:31:e0:d7:6d:82:5f:10:eb:5f:ad:20:51:5e:c1:e6:21:
9c:01:81:2e:06:9d:43:15:95:cb:3d:84:ae:f4:7b:ea:26:0d:
0f:e8:eb:ad:8a:86:0f:ff:68:22:d4:a1:65:e5:5b:d5:46:70:
0f:5f:9b:7f:81:dd:12:07:33:84:b9:a2:d2:f0:5a:51:9d:5e:
ef:ef:c2:87:e6:af:88:91:45:d2:97:4c:d9:28:43:12:18:d7:
22:47:31:f9:db:76:79:5c:e6:07:6e:b4:c6:13:e9:a6:c2:ae:
4e:e1:66:b0:3d:d3:48:21:aa:97:a4:46:7e:19:4f:d8:6b:61:
b3:ca:07:a1:c6:15:e1:be:04:73:56:18:04:7d:d5:69:c9:64:
8f:e7:e0:4f:77:30:0f:41:43:da:03:17:05:fd:4e:20:0e:bd:
a1:2d:2d:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:09 2024 by rpki-client on console-fra.rpki-client.org