Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/9b6be2-da44-42fc-81e1-d814fdca5bed/1/2yY3jl5Kd_W1_EQYu-nO_Xi8hFA.roa
File: 2yY3jl5Kd_W1_EQYu-nO_Xi8hFA.roa (raw, json)
Hash identifier: C5zAcmje47uW6HkE+HurxcCPvQ8XH4P4vJU6UyW0btw=
Subject key identifier: DB:26:37:8E:5E:4A:77:F5:B5:FC:44:18:BB:E9:CE:FD:78:BC:84:50
Certificate issuer: /CN=02ea25e356932875c096a0317559804155f6c99d
Certificate serial: 0BF79920
Authority key identifier: 02:EA:25:E3:56:93:28:75:C0:96:A0:31:75:59:80:41:55:F6:C9:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Auol41aTKHXAlqAxdVmAQVX2yZ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/9b6be2-da44-42fc-81e1-d814fdca5bed/1/2yY3jl5Kd_W1_EQYu-nO_Xi8hFA.roa
Signing time: Sat 01 Jan 2022 13:05:15 +0000
ROA not before: Sat 01 Jan 2022 13:05:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200560
IP address blocks: 185.103.58.0/23 maxlen: 23
185.103.57.0/24 maxlen: 24
185.103.56.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 200775968 (0xbf79920)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02ea25e356932875c096a0317559804155f6c99d
Validity
Not Before: Jan 1 13:05:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db26378e5e4a77f5b5fc4418bbe9cefd78bc8450
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ff:5d:ee:70:ff:98:d2:81:dc:7d:69:1a:68:
4c:1b:70:aa:ac:32:b1:8e:d7:da:67:b4:43:b3:a4:
a1:14:7d:48:0c:d2:a2:9f:17:0c:fe:7f:35:e1:a6:
a5:78:c6:59:b5:e1:93:e0:83:d0:3b:06:a5:e2:de:
0a:85:95:44:45:f3:b3:45:c5:eb:73:da:07:79:26:
da:41:34:92:7d:b2:4e:0c:6e:b4:9a:94:4d:7d:5b:
2c:e6:2a:a4:62:7e:7b:26:ff:66:39:c8:90:99:eb:
93:be:96:ca:2d:b8:40:d2:9b:bf:34:78:6c:fb:29:
c7:8e:f2:7c:f3:df:76:42:31:af:13:ca:aa:ef:f4:
a0:c9:ae:03:8b:56:4f:79:c5:db:b8:5a:1e:6d:57:
6b:73:18:3d:9e:61:ed:ca:f7:61:d9:d6:60:86:a6:
68:e0:cf:67:1b:c8:48:1b:4d:96:b2:7a:3e:39:e3:
b5:70:06:6f:09:a3:f5:b6:1b:00:fb:f3:11:bb:9d:
f5:91:55:8d:f1:0b:d6:e3:b2:47:30:ca:16:20:2c:
c9:26:e0:13:e7:8b:fd:01:08:70:7f:51:ab:eb:43:
5b:dd:ce:f2:00:fe:de:c1:83:38:aa:45:b9:a9:95:
34:b5:4b:46:12:07:23:f4:90:17:fe:ca:f8:cc:48:
20:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:26:37:8E:5E:4A:77:F5:B5:FC:44:18:BB:E9:CE:FD:78:BC:84:50
X509v3 Authority Key Identifier:
keyid:02:EA:25:E3:56:93:28:75:C0:96:A0:31:75:59:80:41:55:F6:C9:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Auol41aTKHXAlqAxdVmAQVX2yZ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/9b6be2-da44-42fc-81e1-d814fdca5bed/1/2yY3jl5Kd_W1_EQYu-nO_Xi8hFA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/9b6be2-da44-42fc-81e1-d814fdca5bed/1/Auol41aTKHXAlqAxdVmAQVX2yZ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.56.0/22
Signature Algorithm: sha256WithRSAEncryption
24:28:b2:f8:ca:75:d4:dc:bf:f6:22:9d:f7:7a:6a:10:81:56:
55:ec:df:98:ee:23:d8:3c:ff:3c:ee:b8:c0:d0:02:0b:6e:28:
4e:ad:d3:de:e7:5d:50:49:cc:d3:44:e0:49:98:e3:8c:dd:f3:
c8:9a:9d:02:e6:87:d7:39:82:08:5f:5a:33:74:51:b6:78:12:
c4:7e:e7:6a:b0:12:87:ac:c5:b5:2f:74:f1:1c:a3:fd:29:2b:
af:af:5f:22:b1:f4:2c:be:a2:b4:35:2e:35:91:29:6c:0f:9b:
53:ca:1b:39:74:90:a4:9c:82:94:e2:6f:3d:16:28:66:78:ef:
3f:ff:c9:ec:e8:c7:c8:1a:0c:70:d8:f9:27:a4:f6:05:b3:9e:
90:4c:85:09:39:15:75:1b:35:f1:5d:64:5f:4a:8d:00:eb:18:
4e:3a:b5:71:ad:c0:c5:82:8a:0c:8e:78:1b:17:7a:ee:62:ba:
1e:ab:d4:56:d9:7e:d1:16:24:f2:cf:46:e2:33:02:2d:ad:34:
d7:38:cd:67:c1:df:c9:4d:4f:63:db:74:96:ec:f2:25:39:b5:
2b:66:ea:a0:79:5e:bc:91:38:83:c8:1a:8d:33:a3:76:7f:4d:
7d:61:6a:51:26:b6:d0:f8:19:aa:c2:5b:d1:32:cd:41:89:62:
a0:95:7b:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:50 2023 by rpki-client on console-fra.rpki-client.org