Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/hsYXCkFw3pnp9xzRWma4MBGjhsY.roa
File: hsYXCkFw3pnp9xzRWma4MBGjhsY.roa (raw, json)
Hash identifier: mmdbyR2mmCblYtwvhEzZhFn1BNpRd7vjahNBWKZ3nhk=
Subject key identifier: 86:C6:17:0A:41:70:DE:99:E9:F7:1C:D1:5A:66:B8:30:11:A3:86:C6
Certificate issuer: /CN=355c9a5bcb8340108a41c86276e1cb94a61e7da9
Certificate serial: 50A3AD
Authority key identifier: 35:5C:9A:5B:CB:83:40:10:8A:41:C8:62:76:E1:CB:94:A6:1E:7D:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NVyaW8uDQBCKQchiduHLlKYefak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/hsYXCkFw3pnp9xzRWma4MBGjhsY.roa
Signing time: Sat 01 Jan 2022 00:54:04 +0000
ROA not before: Sat 01 Jan 2022 00:54:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211175
IP address blocks: 185.95.67.0/24 maxlen: 24
2a0d:68c0::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5284781 (0x50a3ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=355c9a5bcb8340108a41c86276e1cb94a61e7da9
Validity
Not Before: Jan 1 00:54:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86c6170a4170de99e9f71cd15a66b83011a386c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:cb:9e:45:0b:00:7c:5f:ba:92:a2:9a:51:a5:
19:cd:03:37:7d:b5:11:6a:71:d3:16:a9:4b:b5:5b:
9f:b3:03:ee:6d:09:ab:5d:5e:c1:a5:19:28:10:33:
78:0d:7d:87:b1:a7:e6:7b:dc:92:eb:1e:ac:fd:80:
00:17:05:bb:fb:1d:a1:8c:f5:b0:87:a7:6c:4f:86:
ac:c4:6b:73:78:57:e1:ac:27:4e:aa:7e:1f:61:0c:
5c:a9:2e:ee:fa:5e:cd:61:2e:7b:84:7d:87:00:8e:
49:54:2e:fb:23:44:22:af:49:76:9b:ae:c6:51:9f:
7d:16:74:16:67:eb:c9:78:a9:d0:96:da:35:e4:8a:
3a:fc:8c:f1:c2:0d:75:0f:5a:a2:90:cc:2b:f4:95:
4a:2c:58:d2:f3:10:5e:5c:5b:83:70:d0:86:1c:55:
b0:5c:62:37:d4:54:64:63:ce:28:7a:1c:38:26:db:
7b:ef:0a:4a:b5:fa:53:cf:b4:dc:f2:09:d8:81:6d:
9b:55:15:c9:36:93:36:3a:b6:b4:61:1b:9f:30:11:
61:8f:45:07:96:43:e8:b9:53:c4:9b:c2:26:01:5c:
5a:f2:2b:ae:5f:d5:ee:70:3e:f4:27:42:d9:36:25:
d6:cc:15:90:40:f3:55:0a:0a:6c:d6:d5:20:b7:df:
81:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:C6:17:0A:41:70:DE:99:E9:F7:1C:D1:5A:66:B8:30:11:A3:86:C6
X509v3 Authority Key Identifier:
keyid:35:5C:9A:5B:CB:83:40:10:8A:41:C8:62:76:E1:CB:94:A6:1E:7D:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NVyaW8uDQBCKQchiduHLlKYefak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/hsYXCkFw3pnp9xzRWma4MBGjhsY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.95.67.0/24
IPv6:
2a0d:68c0::/29
Signature Algorithm: sha256WithRSAEncryption
90:20:59:28:e6:b3:96:51:38:51:94:a3:35:cd:5a:7a:45:a2:
dd:fc:09:2c:a2:86:8c:e2:79:55:84:e7:02:54:ba:67:40:dc:
4a:0e:8d:08:9b:43:cb:09:e1:55:2b:7f:b6:a9:31:b0:4a:d1:
0d:d6:fd:48:97:03:46:14:54:73:e1:8c:e3:fd:bc:10:a6:2a:
bc:10:07:61:7f:a9:39:ba:ed:7b:f5:d6:ca:df:8e:df:0a:e6:
3c:44:e1:f8:9b:79:d1:30:ad:de:24:7f:1c:c8:75:03:f5:78:
75:4d:37:95:11:35:6b:25:22:1d:d7:0c:c0:51:a2:0f:78:2d:
31:39:ca:0b:ef:0d:d5:f0:c2:51:15:0a:fe:46:a2:c1:c3:3c:
48:61:a5:89:2d:21:72:8d:bf:15:0f:02:4d:36:ac:ab:a5:0f:
6a:c5:b2:a2:0d:7c:00:99:e7:07:4a:47:06:17:df:64:e1:d0:
3d:5f:16:f2:a9:63:65:3d:20:b0:99:f2:43:8d:a5:0d:e0:80:
bb:36:c0:80:82:3f:01:c8:98:ae:c7:c5:15:3c:c2:41:c5:e4:
b9:05:81:92:20:a4:13:50:b2:0d:af:38:5e:e5:f9:87:07:46:
5b:6e:15:20:4a:1a:71:48:13:d2:48:3f:56:2f:c6:63:26:9b:
52:fa:0d:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:42 2024 by rpki-client on console-fra.rpki-client.org