Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/32c5ce-28b2-47d7-abd5-2e9d6ca08701/1/5vDuWgVr7YOYkFUHwaEfT_tope4.roa
File: 5vDuWgVr7YOYkFUHwaEfT_tope4.roa (raw, json)
Hash identifier: lP627ogjihfS9GB8E0ySp8X1wSytsT78O+zbxR5yjRU=
Subject key identifier: E6:F0:EE:5A:05:6B:ED:83:98:90:55:07:C1:A1:1F:4F:FB:68:A5:EE
Certificate issuer: /CN=65865968a1d8f4f377865c913af3b9af890d7cce
Certificate serial: 10665644
Authority key identifier: 65:86:59:68:A1:D8:F4:F3:77:86:5C:91:3A:F3:B9:AF:89:0D:7C:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZYZZaKHY9PN3hlyROvO5r4kNfM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/32c5ce-28b2-47d7-abd5-2e9d6ca08701/1/5vDuWgVr7YOYkFUHwaEfT_tope4.roa
Signing time: Wed 23 Mar 2022 23:25:32 +0000
ROA not before: Wed 23 Mar 2022 23:25:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5578
IP address blocks: 185.161.174.0/23 maxlen: 23
185.161.174.0/24 maxlen: 24
185.161.175.0/24 maxlen: 24
2a07:c380::/29 maxlen: 29
2a07:c387::/32 maxlen: 32
2a07:c380:50::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 275142212 (0x10665644)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65865968a1d8f4f377865c913af3b9af890d7cce
Validity
Not Before: Mar 23 23:25:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6f0ee5a056bed8398905507c1a11f4ffb68a5ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:75:e0:cc:f1:20:17:99:95:ae:ca:ff:0a:6c:
31:7e:c2:47:63:9c:cb:3f:19:44:ae:f2:9c:0a:9d:
4e:69:0c:83:69:dc:f5:bf:8b:67:2f:6e:3a:8b:e6:
ab:f1:e9:fa:07:31:98:ad:59:bc:9b:8c:13:eb:41:
ef:eb:ef:4a:7c:c7:d4:e5:81:9f:b0:d3:39:7a:84:
02:43:50:ea:ad:e1:c9:30:8c:ea:a2:6c:48:b1:8a:
52:fa:45:78:0c:be:4a:f4:69:f6:5b:a0:b4:84:79:
2a:99:70:5c:e8:88:d5:db:15:9e:c0:bc:f8:23:c3:
9d:33:ef:b2:37:d2:cb:bc:91:bd:a7:82:41:22:9f:
bd:3b:fb:f8:36:68:26:ce:fe:0d:ff:a1:9e:44:d1:
c8:4e:d0:49:d4:9b:47:59:92:c2:09:d8:24:46:0e:
ab:d0:09:1a:b1:b4:32:1e:5e:b8:ca:31:de:d5:03:
d1:75:5b:ec:98:ae:ea:0b:4e:ca:ac:3b:8b:b2:a4:
c5:eb:e2:86:63:2c:4f:d9:4b:47:0a:6d:f7:c9:10:
e5:15:93:30:d2:7d:05:3b:a5:77:40:56:c0:0f:c6:
0b:ba:5b:4c:d1:4e:62:a1:84:e9:b5:d1:01:68:30:
a2:8a:de:8d:0a:1c:a2:f1:70:5d:54:24:8f:24:8b:
3d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:F0:EE:5A:05:6B:ED:83:98:90:55:07:C1:A1:1F:4F:FB:68:A5:EE
X509v3 Authority Key Identifier:
keyid:65:86:59:68:A1:D8:F4:F3:77:86:5C:91:3A:F3:B9:AF:89:0D:7C:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZYZZaKHY9PN3hlyROvO5r4kNfM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/32c5ce-28b2-47d7-abd5-2e9d6ca08701/1/5vDuWgVr7YOYkFUHwaEfT_tope4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/32c5ce-28b2-47d7-abd5-2e9d6ca08701/1/ZYZZaKHY9PN3hlyROvO5r4kNfM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.174.0/23
IPv6:
2a07:c380::/29
Signature Algorithm: sha256WithRSAEncryption
1f:86:6f:35:39:25:e8:db:ed:1d:89:95:b5:89:43:25:46:5b:
4b:3a:e9:58:57:64:8b:9c:4f:ea:7f:6c:ab:00:76:9f:44:b4:
54:72:02:3b:ad:fc:87:eb:99:ca:93:d0:19:7d:46:83:70:39:
ce:c7:4b:1d:34:53:6f:ae:da:79:d5:6f:43:d2:c1:ac:57:05:
b5:64:1f:40:6d:6f:4a:1d:92:94:e4:4a:08:38:03:2d:81:31:
f4:e7:8d:59:ed:b2:db:23:6a:ec:30:67:73:79:5b:cb:3d:00:
6a:c4:91:ab:b1:10:d7:ec:b6:fd:22:96:06:17:5d:d5:8a:d3:
ea:db:08:a4:f0:45:b4:d2:89:d0:f1:ee:f2:6b:2c:12:b8:ed:
3d:56:7e:7e:5e:c2:65:aa:c7:fd:48:5e:86:b1:2b:ae:b9:2d:
e7:16:79:43:75:26:02:00:fd:5a:bd:74:72:54:09:0a:97:4e:
fa:16:cc:13:95:d9:bf:10:6f:ca:de:fd:87:6d:04:ab:2b:06:
24:11:4c:d2:6b:55:b0:a7:cf:1a:bf:0a:27:e7:ad:0e:c8:26:
d3:fd:3c:61:b7:80:1d:bc:9d:09:9f:c3:a4:df:7b:e8:29:c7:
2a:9a:83:38:75:7e:55:cd:cd:81:ce:98:76:b6:bc:fa:f3:a3:
a4:fe:5f:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:05 2024 by rpki-client on console-fra.rpki-client.org