Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/0d6b47-8191-41e2-8113-6e56212cdf5c/1/d5MTWJW2X_e2IcPCKm20nGWSSpo.roa
File: d5MTWJW2X_e2IcPCKm20nGWSSpo.roa (raw, json)
Hash identifier: oN0b9qievRKru1GKX8i8yD9VuxRGqXvEJPG3/rdVPag=
Subject key identifier: 77:93:13:58:95:B6:5F:F7:B6:21:C3:C2:2A:6D:B4:9C:65:92:4A:9A
Certificate issuer: /CN=2ea7626d600daf759376a6507e1d684386992d31
Certificate serial: 01A5A7
Authority key identifier: 2E:A7:62:6D:60:0D:AF:75:93:76:A6:50:7E:1D:68:43:86:99:2D:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LqdibWANr3WTdqZQfh1oQ4aZLTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/0d6b47-8191-41e2-8113-6e56212cdf5c/1/d5MTWJW2X_e2IcPCKm20nGWSSpo.roa
Signing time: Mon 04 Jul 2022 21:46:42 +0000
ROA not before: Mon 04 Jul 2022 21:46:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57022
IP address blocks: 185.70.171.0/24 maxlen: 24
185.70.170.0/24 maxlen: 24
185.70.169.0/24 maxlen: 24
185.70.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107943 (0x1a5a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ea7626d600daf759376a6507e1d684386992d31
Validity
Not Before: Jul 4 21:46:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7793135895b65ff7b621c3c22a6db49c65924a9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e3:21:ae:aa:0e:56:8e:2d:21:02:2c:de:64:
b8:fb:fb:b8:25:fa:ac:13:26:17:72:1c:fc:b3:44:
79:8d:86:19:64:a4:99:1b:32:4d:26:ce:b4:28:fc:
9f:a5:90:78:a0:1d:55:26:ec:aa:de:b4:15:95:ee:
a8:d6:05:77:a4:ed:4f:80:9b:6c:e1:96:77:91:c4:
61:55:0d:5f:24:83:a2:2a:e7:e1:b0:df:57:bf:91:
af:81:8e:91:fa:6f:ce:ca:9b:7f:25:39:9c:17:cf:
16:c7:f9:86:75:65:89:03:75:8b:fe:3e:cf:4b:a6:
48:73:39:30:c7:4e:38:c5:ff:01:e9:52:91:e7:e8:
56:2b:61:a1:1a:96:fb:a1:58:9f:b1:99:9d:99:23:
79:05:98:dd:3b:34:c2:49:97:25:c9:aa:a1:d8:a0:
bd:b3:aa:99:9a:79:94:ae:e6:cf:c9:55:32:08:0e:
f6:7f:bc:fc:66:49:e7:f0:7d:19:de:78:d5:e8:e1:
5b:b1:a8:e2:36:52:a5:1f:52:1c:80:51:cf:a3:2d:
29:e5:a8:27:c4:40:af:b6:65:1e:bd:87:70:7f:21:
09:14:14:3f:e7:27:db:49:9d:c0:a9:17:79:01:08:
c1:33:f9:2b:82:f9:37:5b:40:6a:a7:ec:97:ce:d8:
db:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:93:13:58:95:B6:5F:F7:B6:21:C3:C2:2A:6D:B4:9C:65:92:4A:9A
X509v3 Authority Key Identifier:
keyid:2E:A7:62:6D:60:0D:AF:75:93:76:A6:50:7E:1D:68:43:86:99:2D:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LqdibWANr3WTdqZQfh1oQ4aZLTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/0d6b47-8191-41e2-8113-6e56212cdf5c/1/d5MTWJW2X_e2IcPCKm20nGWSSpo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/0d6b47-8191-41e2-8113-6e56212cdf5c/1/LqdibWANr3WTdqZQfh1oQ4aZLTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.70.168.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:43:ce:91:0d:c2:47:bb:d2:c6:7a:01:b6:7b:8b:ed:86:42:
4e:cd:c9:3b:34:38:f9:12:61:2e:da:e9:80:95:d0:27:ee:9a:
11:d0:19:2d:a1:3b:53:5e:e9:4d:f0:16:62:60:51:f3:25:64:
63:a6:e9:eb:8c:24:2e:c9:ff:62:5e:b4:a3:57:17:d2:e9:2d:
4f:06:61:76:d1:cc:f9:55:0b:7d:c3:c0:2e:c9:23:b7:b8:71:
a5:70:6d:a5:cd:18:4a:6e:c0:8f:58:f7:3d:21:c9:a3:4a:58:
22:c9:16:a8:04:67:b6:6c:92:d6:31:44:0d:c1:06:78:85:2f:
ed:4a:07:08:71:13:3d:ed:0e:70:ae:c2:5c:c9:f5:ac:10:32:
a4:3b:0b:70:89:9c:be:bf:bc:e8:f8:ea:92:ff:1f:e9:34:91:
14:73:43:c3:56:93:4d:d3:a1:5f:54:73:f5:bb:77:79:b5:b3:
05:cb:95:0d:08:e9:67:38:55:2b:5f:75:16:5e:5f:6f:85:1b:
0a:e3:98:fa:a2:a1:e9:b8:6c:77:94:2c:2d:43:bb:67:51:94:
3f:47:30:3b:83:59:43:cf:2f:f0:f8:fb:6a:07:be:28:24:0a:
fa:d5:fd:80:ce:8a:97:df:52:01:d8:79:48:0a:ff:80:d2:aa:
f4:a2:85:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:08 2024 by rpki-client on console-ams.rpki-client.org