Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/51cd94-a055-43ee-a09b-472b0d072e83/1/t2DbgPOpUNBXO-SFuSlPu2IR0vI.roa
File: t2DbgPOpUNBXO-SFuSlPu2IR0vI.roa (raw, json)
Hash identifier: uKqsEpJwSDs+iEWS+m0NQrUJGAMfZWFCbEwaB0Q7mk0=
Subject key identifier: B7:60:DB:80:F3:A9:50:D0:57:3B:E4:85:B9:29:4F:BB:62:11:D2:F2
Certificate issuer: /CN=16ea37a8e73e7679a933d70f7b9c872081024455
Certificate serial: 1661ACB7
Authority key identifier: 16:EA:37:A8:E7:3E:76:79:A9:33:D7:0F:7B:9C:87:20:81:02:44:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fuo3qOc-dnmpM9cPe5yHIIECRFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/51cd94-a055-43ee-a09b-472b0d072e83/1/t2DbgPOpUNBXO-SFuSlPu2IR0vI.roa
Signing time: Sat 01 Jan 2022 03:57:35 +0000
ROA not before: Sat 01 Jan 2022 03:57:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201227
IP address blocks: 194.59.171.0/24 maxlen: 24
185.81.96.0/24 maxlen: 24
185.81.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 375499959 (0x1661acb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16ea37a8e73e7679a933d70f7b9c872081024455
Validity
Not Before: Jan 1 03:57:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b760db80f3a950d0573be485b9294fbb6211d2f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4a:39:f6:48:06:ed:dc:42:1e:33:cc:b9:71:
a6:ef:16:7e:f8:e2:31:24:8e:36:41:77:47:2d:f0:
3e:bd:07:2b:45:c7:77:e6:a5:74:0b:c2:85:95:4b:
75:90:26:31:e2:d2:53:2a:25:e6:ad:aa:4f:98:a2:
58:4f:a6:33:7f:d4:83:b8:e1:eb:06:63:5e:64:83:
60:33:64:57:bb:e1:75:2d:93:fd:1e:62:dd:3f:db:
09:1c:9f:c3:9a:9b:e9:e2:6e:84:9e:de:3e:b0:fe:
3e:df:ef:fb:e2:02:25:02:9f:70:72:f0:ad:56:5d:
34:fd:e0:c3:74:71:56:3e:ac:d8:86:07:24:39:80:
fd:15:8c:0d:09:3e:29:a9:79:a9:43:eb:e9:bb:97:
c9:18:15:70:ee:85:2a:cd:7d:64:9a:2b:0b:fc:31:
a7:fe:eb:50:d1:26:70:73:4e:23:b9:ae:8b:b9:0e:
e5:bb:bb:26:dd:b6:55:8a:5f:c0:b5:60:5c:13:d1:
45:bf:d1:f3:74:09:16:ac:10:af:3c:70:07:87:c7:
11:ef:21:48:df:ec:bc:01:03:cc:32:24:de:77:d0:
c4:f6:ac:0d:e3:7e:b9:5b:88:04:12:cf:ec:29:80:
9e:85:85:4e:b9:a1:22:59:e4:0a:d3:51:f5:a9:2e:
36:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:60:DB:80:F3:A9:50:D0:57:3B:E4:85:B9:29:4F:BB:62:11:D2:F2
X509v3 Authority Key Identifier:
keyid:16:EA:37:A8:E7:3E:76:79:A9:33:D7:0F:7B:9C:87:20:81:02:44:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fuo3qOc-dnmpM9cPe5yHIIECRFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/51cd94-a055-43ee-a09b-472b0d072e83/1/t2DbgPOpUNBXO-SFuSlPu2IR0vI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/51cd94-a055-43ee-a09b-472b0d072e83/1/Fuo3qOc-dnmpM9cPe5yHIIECRFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.96.0/24
185.81.99.0/24
194.59.171.0/24
Signature Algorithm: sha256WithRSAEncryption
33:e8:0d:91:0b:bd:d8:aa:b2:a7:c6:2c:8c:42:38:66:71:ea:
ca:15:0c:db:17:48:9b:01:4e:b2:01:df:f5:49:f9:e3:18:19:
83:0d:66:55:6a:5a:59:a8:4f:45:7d:60:a9:bb:97:83:e6:49:
a4:c4:3f:90:02:64:9a:9c:a2:db:48:19:c8:fe:bf:ff:f2:20:
52:1d:39:ca:ac:db:5c:a3:71:e1:a3:b5:18:54:7f:a5:93:b9:
6b:6c:78:00:12:8a:ed:42:ea:eb:07:60:93:94:c7:a0:0b:5b:
0a:a9:1d:a0:70:65:9d:0e:eb:43:4a:42:18:40:03:b6:37:90:
f2:56:a5:31:76:ac:98:d9:52:dc:e7:40:2c:60:c8:05:2a:9e:
64:0f:c9:78:21:a8:76:1c:12:c0:8c:1b:a0:2d:c2:a0:80:45:
ce:2e:3b:2a:d0:e2:89:c7:66:89:41:7c:41:f8:2e:50:ec:1d:
a1:91:b0:ec:2b:2e:db:30:76:48:26:3a:c4:08:1b:37:e3:08:
ab:25:ce:9c:75:69:5e:a2:66:34:a7:57:e5:74:01:4f:5b:98:
d9:f7:e7:9a:37:96:6c:f5:d4:dd:32:5e:8d:c4:53:2a:1f:9e:
9d:56:2c:3b:9b:4f:b5:15:01:27:81:7f:3f:ee:22:46:a6:76:
53:ec:8f:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:56 2023 by rpki-client on console-fra.rpki-client.org