Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/d00889-e5ca-4090-a6a4-2ac6ff75beb0/1/SIFsEIvH9dSYUx0zHGyyqKOuBCs.roa
File: SIFsEIvH9dSYUx0zHGyyqKOuBCs.roa (raw, json)
Hash identifier: iDMNd1CuyavCYLQhc6FjsQFSfY+wSzgyCOhMlCKA4jI=
Subject key identifier: 48:81:6C:10:8B:C7:F5:D4:98:53:1D:33:1C:6C:B2:A8:A3:AE:04:2B
Certificate issuer: /CN=a76dd9dad75877f7d28d14e08dc55b1330bd13b7
Certificate serial: 07ED0B75
Authority key identifier: A7:6D:D9:DA:D7:58:77:F7:D2:8D:14:E0:8D:C5:5B:13:30:BD:13:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p23Z2tdYd_fSjRTgjcVbEzC9E7c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/d00889-e5ca-4090-a6a4-2ac6ff75beb0/1/SIFsEIvH9dSYUx0zHGyyqKOuBCs.roa
Signing time: Sat 01 Jan 2022 03:51:49 +0000
ROA not before: Sat 01 Jan 2022 03:51:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61135
IP address blocks: 185.165.76.0/22 maxlen: 24
185.165.76.0/24 maxlen: 24
185.165.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132975477 (0x7ed0b75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a76dd9dad75877f7d28d14e08dc55b1330bd13b7
Validity
Not Before: Jan 1 03:51:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=48816c108bc7f5d498531d331c6cb2a8a3ae042b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3a:a2:4e:b2:8d:0f:5a:a4:79:70:63:2a:cf:
d0:fd:9c:9f:fb:fe:b6:b0:7e:5e:4b:06:59:e2:cb:
af:b9:c4:0e:68:05:45:1c:5b:ea:53:a3:3d:3e:85:
16:c6:ed:62:dd:90:91:a1:fc:26:73:12:39:4f:a9:
f9:5c:9a:b8:8a:3d:13:e6:a0:0c:87:cc:7e:e6:8a:
ae:ab:fe:1a:2b:75:ff:c4:19:dd:57:8c:2b:0d:2c:
0e:46:30:08:1d:f2:ad:63:30:d9:9c:8c:b7:12:ee:
be:37:df:24:61:d5:dd:62:66:5b:04:3e:b4:47:93:
56:f2:19:6f:1a:0d:bb:ec:67:04:bb:f1:e0:73:9c:
46:63:6e:d1:6e:64:a0:58:f2:dc:c6:be:ab:05:a9:
2c:0e:23:c6:d6:27:66:99:61:06:d6:54:bd:b6:8b:
da:f5:84:03:15:f8:38:f9:03:e6:62:bd:88:31:76:
16:02:03:96:5b:59:e6:36:58:d0:f5:48:2b:31:8f:
85:fb:73:81:33:46:a7:38:aa:1c:5a:36:3f:f9:da:
3c:40:77:ef:bd:7d:d1:45:da:27:f3:76:9b:44:fb:
d0:b6:36:84:19:1d:61:27:3a:65:be:0b:c3:45:43:
ef:d4:b0:2d:89:58:43:12:ba:ab:53:42:66:74:fa:
66:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:81:6C:10:8B:C7:F5:D4:98:53:1D:33:1C:6C:B2:A8:A3:AE:04:2B
X509v3 Authority Key Identifier:
keyid:A7:6D:D9:DA:D7:58:77:F7:D2:8D:14:E0:8D:C5:5B:13:30:BD:13:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p23Z2tdYd_fSjRTgjcVbEzC9E7c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d00889-e5ca-4090-a6a4-2ac6ff75beb0/1/SIFsEIvH9dSYUx0zHGyyqKOuBCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d00889-e5ca-4090-a6a4-2ac6ff75beb0/1/p23Z2tdYd_fSjRTgjcVbEzC9E7c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.76.0/22
Signature Algorithm: sha256WithRSAEncryption
25:3b:67:db:39:97:d3:ec:15:d2:ba:11:07:56:d5:d2:23:4f:
00:80:2c:3d:2f:94:ca:9d:d3:41:f8:50:16:eb:fa:74:05:bd:
1a:e3:f4:14:de:88:05:78:59:20:9e:94:7f:5a:e2:b6:a2:7e:
22:84:04:87:69:6f:bb:57:a8:82:14:75:57:c2:e6:9a:d3:dc:
6b:0a:70:70:fb:84:f1:35:6e:7c:2a:55:a3:9d:be:29:a6:10:
0b:56:f2:33:2e:4a:c2:c0:4d:65:fd:47:b6:aa:0c:41:bc:8e:
b5:d0:56:d4:7f:8e:61:59:2a:aa:03:3c:d6:d7:42:61:16:42:
e8:f4:67:a7:49:fe:66:78:53:83:a6:08:8b:6f:e9:a3:51:93:
4f:84:14:e2:d1:69:d8:84:52:be:d7:be:f4:25:79:1e:03:f3:
8d:bc:14:fe:96:47:86:6d:f5:dc:8f:27:bc:f9:62:69:98:c2:
44:13:64:f4:69:b7:64:8d:f3:eb:1e:d2:41:09:e9:30:5a:e1:
e2:10:4f:6a:9a:bb:10:5c:8a:07:81:f7:bc:6b:d8:ff:e2:45:
73:b3:13:2c:ee:ed:64:a6:f3:02:ec:02:77:c4:3d:30:a5:83:
98:bc:df:27:7c:d4:49:b8:ae:9c:30:90:43:74:97:a5:47:0d:
41:ea:cd:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:43 2023 by rpki-client on console-ams.rpki-client.org