Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/c4ca9d-5d32-4efd-8e1b-132937d39cea/1/A9mmtOC96drh149JSswwM4oSnGY.roa
File: A9mmtOC96drh149JSswwM4oSnGY.roa (raw, json)
Hash identifier: +JCJnAymHcX/9GXnHQdAXaGecJeEKRISrcuOE0/x2mg=
Subject key identifier: 03:D9:A6:B4:E0:BD:E9:DA:E1:D7:8F:49:4A:CC:30:33:8A:12:9C:66
Certificate issuer: /CN=b7a670e51c96419fc52028b12e45655ef914ddbb
Certificate serial: 0463ED56
Authority key identifier: B7:A6:70:E5:1C:96:41:9F:C5:20:28:B1:2E:45:65:5E:F9:14:DD:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t6Zw5RyWQZ_FICixLkVlXvkU3bs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/c4ca9d-5d32-4efd-8e1b-132937d39cea/1/A9mmtOC96drh149JSswwM4oSnGY.roa
Signing time: Sat 01 Jan 2022 09:55:19 +0000
ROA not before: Sat 01 Jan 2022 09:55:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59914
IP address blocks: 185.66.225.0/24 maxlen: 24
185.66.224.0/24 maxlen: 24
185.66.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73657686 (0x463ed56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7a670e51c96419fc52028b12e45655ef914ddbb
Validity
Not Before: Jan 1 09:55:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=03d9a6b4e0bde9dae1d78f494acc30338a129c66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:66:c7:60:c7:f1:e6:4c:2d:ce:49:df:c3:e8:
18:83:8e:a6:6a:b8:20:c0:d8:1c:2a:b8:3f:43:2f:
88:f1:11:fa:ee:5d:6d:79:a9:84:08:93:87:5b:bf:
09:2d:84:23:85:a1:ef:0a:5c:db:10:d4:cb:fa:66:
41:14:b9:19:7b:e1:08:28:f4:15:90:a2:d6:07:b3:
05:91:a2:91:26:85:ad:28:d4:dc:01:47:4b:80:4d:
d6:dd:37:61:6f:e0:7c:db:c1:50:73:6e:49:a1:9f:
c5:c3:18:bd:80:33:22:fd:fe:81:b2:2e:f1:c0:07:
80:af:94:5f:55:ed:88:5a:1e:ad:6b:68:2f:67:99:
78:2c:24:d3:0c:a8:44:1d:5a:13:0b:39:85:60:4a:
6d:0c:92:79:da:cc:d7:0a:ae:a7:a2:5e:9e:8b:62:
6d:6e:05:b2:b9:a5:4b:1e:2e:83:d9:39:6e:25:db:
93:9e:c1:2e:52:f3:e0:6d:9a:eb:98:c7:dc:6d:0c:
82:2a:d5:ce:ad:b7:ac:28:73:bf:dd:f1:c4:25:c5:
58:54:73:d4:92:7f:f1:1e:87:eb:15:d4:a7:c6:ea:
15:05:30:4b:00:e3:dd:4b:21:99:d6:d6:8b:d3:c2:
f5:69:50:19:b9:3b:da:2e:17:eb:ae:53:6a:d2:0c:
c4:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:D9:A6:B4:E0:BD:E9:DA:E1:D7:8F:49:4A:CC:30:33:8A:12:9C:66
X509v3 Authority Key Identifier:
keyid:B7:A6:70:E5:1C:96:41:9F:C5:20:28:B1:2E:45:65:5E:F9:14:DD:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t6Zw5RyWQZ_FICixLkVlXvkU3bs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/c4ca9d-5d32-4efd-8e1b-132937d39cea/1/A9mmtOC96drh149JSswwM4oSnGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/c4ca9d-5d32-4efd-8e1b-132937d39cea/1/t6Zw5RyWQZ_FICixLkVlXvkU3bs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.66.224.0/23
185.66.227.0/24
Signature Algorithm: sha256WithRSAEncryption
08:02:19:d6:fb:bf:b0:6f:af:ed:3e:8b:c7:62:40:78:c8:49:
82:dd:a4:66:37:26:30:34:88:c8:fd:56:ce:6c:0f:b8:d6:c5:
b8:d3:ba:9b:ec:12:27:de:47:c8:e0:18:73:0e:b8:0b:2b:ed:
06:65:dc:f9:69:47:e0:71:d9:dc:63:c8:66:54:a8:d5:93:2d:
2a:41:4f:d6:20:c4:42:66:8b:fe:5d:63:19:e3:e6:60:3f:65:
4e:f9:d6:36:9e:df:54:56:33:8d:c9:63:d8:d7:a2:d7:d0:56:
a3:0a:9c:9e:c4:49:49:0a:00:62:bd:16:bc:fc:2d:80:7d:c6:
58:7d:d8:48:d1:90:de:10:7e:46:60:dc:4d:7b:ad:22:68:5a:
0e:ca:2a:d0:81:b0:eb:76:91:3b:91:02:da:cf:e4:09:34:6f:
59:ab:a2:1e:8b:60:41:62:5f:87:7e:bd:c0:e2:5e:75:79:fd:
fe:c7:a0:d8:b7:9a:83:79:cc:c7:c1:0f:2e:78:bb:d1:04:8c:
0a:4a:a9:79:5b:25:97:f5:37:b8:2d:a9:41:18:65:17:18:eb:
7a:51:38:3c:4b:1d:08:de:bb:6a:b7:d0:f0:6f:21:1f:fd:52:
8a:6d:8a:fb:0b:12:fd:63:76:3e:6e:ab:d9:9d:c0:40:f7:45:
59:6c:48:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:36:16 2025 by rpki-client