Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/13fb65-4ee7-4026-aa3a-9d56e3adca90/1/iviKrl2ffyL97z3jRbzwrhri6jk.roa
File: iviKrl2ffyL97z3jRbzwrhri6jk.roa (raw, json)
Hash identifier: Eacon0/F9ygNO2gCDVJj6DlB1CIsRb19e0KIBCiVh40=
Subject key identifier: 8A:F8:8A:AE:5D:9F:7F:22:FD:EF:3D:E3:45:BC:F0:AE:1A:E2:EA:39
Certificate issuer: /CN=d612742b91d770fe8efbc9b5dcf8dc38984dd0f0
Certificate serial: 11015A9F
Authority key identifier: D6:12:74:2B:91:D7:70:FE:8E:FB:C9:B5:DC:F8:DC:38:98:4D:D0:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1hJ0K5HXcP6O-8m13PjcOJhN0PA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/13fb65-4ee7-4026-aa3a-9d56e3adca90/1/iviKrl2ffyL97z3jRbzwrhri6jk.roa
Signing time: Wed 22 Jun 2022 13:48:33 +0000
ROA not before: Wed 22 Jun 2022 13:48:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56911
IP address blocks: 185.56.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 285301407 (0x11015a9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d612742b91d770fe8efbc9b5dcf8dc38984dd0f0
Validity
Not Before: Jun 22 13:48:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8af88aae5d9f7f22fdef3de345bcf0ae1ae2ea39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:21:2a:0a:ed:2a:8d:da:b1:26:4b:7a:98:19:
67:c6:4e:de:69:37:b5:c9:7b:e8:cf:b7:e2:bc:a6:
ba:8d:9a:aa:b7:df:9d:2f:48:ff:b0:85:c9:5b:8b:
4d:8e:d1:6c:f6:ee:b4:9c:a1:b4:2d:78:3e:d5:22:
ed:3f:bc:f4:74:4c:23:3b:d1:00:7f:d2:76:72:1e:
ad:88:7b:53:a2:bd:6f:83:48:6e:80:9c:b2:e1:f9:
88:a0:ed:a4:64:1b:c8:f9:83:68:c2:da:da:1c:bb:
c8:5f:e7:b6:c6:c1:e1:1b:42:e1:17:e6:2b:e0:48:
61:39:d9:39:97:f9:da:55:36:62:79:bd:00:e9:95:
1b:f7:d4:6d:9e:31:f7:15:6e:52:d2:90:ef:61:96:
40:07:72:19:0e:e6:9c:f2:dc:c1:7a:6e:28:34:df:
88:ca:94:83:4d:68:97:ed:f7:82:30:0d:98:18:8f:
f8:bf:08:34:2c:16:1b:f3:34:cd:6f:58:db:ff:55:
2a:09:08:a9:13:9d:34:7c:a8:54:c2:f6:1e:f5:d7:
99:2d:a9:6d:64:1a:3d:de:fd:b0:a4:93:37:8a:97:
97:83:30:d7:bf:6a:ef:1f:6b:35:08:ed:50:60:18:
d7:ac:fb:f7:06:23:47:33:20:c2:8a:8d:64:93:c7:
1e:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:F8:8A:AE:5D:9F:7F:22:FD:EF:3D:E3:45:BC:F0:AE:1A:E2:EA:39
X509v3 Authority Key Identifier:
keyid:D6:12:74:2B:91:D7:70:FE:8E:FB:C9:B5:DC:F8:DC:38:98:4D:D0:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1hJ0K5HXcP6O-8m13PjcOJhN0PA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/13fb65-4ee7-4026-aa3a-9d56e3adca90/1/iviKrl2ffyL97z3jRbzwrhri6jk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/13fb65-4ee7-4026-aa3a-9d56e3adca90/1/1hJ0K5HXcP6O-8m13PjcOJhN0PA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.56.217.0/24
Signature Algorithm: sha256WithRSAEncryption
17:96:ea:8c:19:c0:d8:a5:c0:28:38:4f:e9:14:c2:3b:4b:36:
49:24:f5:ee:b8:9c:48:7c:a1:85:12:53:95:18:57:b7:30:69:
22:d9:77:46:25:43:ff:ba:7d:ce:d9:0b:db:41:9e:9b:21:88:
80:dd:cb:7a:fa:d0:ef:62:21:b5:cf:e5:37:d7:41:34:98:5d:
64:4e:a7:2a:d1:e7:3e:26:7e:8e:46:5f:d8:f5:c3:71:70:5d:
8c:2f:ff:25:00:5b:ae:0b:cd:73:f8:d7:c6:bf:c5:b7:4f:10:
07:d4:9f:d2:44:b3:14:8f:67:9c:1e:4c:14:d5:bd:01:75:ac:
22:f1:4c:f6:28:0f:f1:ac:e4:01:91:5e:94:40:28:d7:58:e7:
0a:26:05:c1:f1:04:bd:fd:1f:7e:3e:12:db:e2:f8:32:d5:4b:
b3:24:3b:2a:9f:a7:d8:e2:3d:f1:a4:10:f7:30:57:df:22:fc:
66:98:3a:f1:cb:59:83:10:2d:6d:1e:20:ea:1d:d3:4d:f5:63:
5d:b8:13:56:50:b5:8b:52:4a:03:20:7f:1a:ba:c7:91:49:18:
e1:7b:b6:81:04:a7:9c:7c:aa:81:53:4d:78:5e:a1:8d:c2:2f:
3d:c5:18:3f:bf:b9:29:77:21:fc:e1:e7:c7:e0:90:1c:41:a5:
29:2e:ac:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:34:05 2025 by rpki-client