Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4544e4-35db-4098-9040-539a0f26684d/1/95-rg-A97CCYs90wCX89Yg67Nyc.roa
File: 95-rg-A97CCYs90wCX89Yg67Nyc.roa (raw, json)
Hash identifier: x3/TkWIqNIGOf9JKX91S07yshJJjsaNoD6F38S+qkwE=
Subject key identifier: F7:9F:AB:83:E0:3D:EC:20:98:B3:DD:30:09:7F:3D:62:0E:BB:37:27
Certificate issuer: /CN=1e9b8562615f5110d3551f8ec5dd056fb0a48aba
Certificate serial: 8637
Authority key identifier: 1E:9B:85:62:61:5F:51:10:D3:55:1F:8E:C5:DD:05:6F:B0:A4:8A:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HpuFYmFfURDTVR-Oxd0Fb7Ckiro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4544e4-35db-4098-9040-539a0f26684d/1/95-rg-A97CCYs90wCX89Yg67Nyc.roa
Signing time: Wed 30 Mar 2022 14:45:56 +0000
ROA not before: Wed 30 Mar 2022 14:45:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59865
IP address blocks: 185.111.28.0/22 maxlen: 22
185.56.142.0/23 maxlen: 23
185.56.140.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34359 (0x8637)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e9b8562615f5110d3551f8ec5dd056fb0a48aba
Validity
Not Before: Mar 30 14:45:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f79fab83e03dec2098b3dd30097f3d620ebb3727
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:47:e1:04:32:f3:0a:1e:31:f6:91:0f:9e:de:
f3:b4:64:d1:ef:0d:2d:aa:4d:24:99:f1:31:7b:05:
e9:eb:33:92:59:05:57:f2:95:ef:86:27:a1:ae:e5:
07:e4:a5:de:49:1c:4d:42:ce:1c:57:f6:f6:d4:01:
a7:86:e5:0e:85:da:23:3b:b9:39:94:05:d7:32:30:
52:a0:68:37:0d:97:c3:26:aa:77:90:20:ab:32:07:
58:6a:d9:d6:2e:8a:ef:1e:1b:94:82:cc:4b:61:2f:
1c:16:7d:1e:f5:ce:e3:c4:c6:32:be:c2:06:68:62:
1c:b7:b0:0f:13:07:fa:c5:39:4d:56:15:51:c0:f3:
cf:ff:ec:99:1e:3a:26:21:14:6e:84:a3:96:56:c7:
a5:61:52:16:ce:ec:1d:5f:93:e6:b2:c1:88:73:db:
16:15:be:c5:fe:e6:3b:69:87:a7:38:b7:e7:43:6c:
ef:7d:ba:fd:f6:41:0f:68:9c:56:64:d9:23:7a:34:
a7:ae:91:51:07:94:f1:20:91:e9:99:cf:da:b7:2b:
64:f1:1f:ba:c4:0b:51:cf:f5:5f:0d:01:b8:92:2d:
e0:ec:a9:28:0b:ee:ce:db:40:d9:ce:e0:36:39:a8:
48:b1:c9:20:03:da:ea:f2:50:59:cf:f8:7e:60:34:
da:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:9F:AB:83:E0:3D:EC:20:98:B3:DD:30:09:7F:3D:62:0E:BB:37:27
X509v3 Authority Key Identifier:
keyid:1E:9B:85:62:61:5F:51:10:D3:55:1F:8E:C5:DD:05:6F:B0:A4:8A:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HpuFYmFfURDTVR-Oxd0Fb7Ckiro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4544e4-35db-4098-9040-539a0f26684d/1/95-rg-A97CCYs90wCX89Yg67Nyc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4544e4-35db-4098-9040-539a0f26684d/1/HpuFYmFfURDTVR-Oxd0Fb7Ckiro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.56.140.0/22
185.111.28.0/22
Signature Algorithm: sha256WithRSAEncryption
81:c8:fa:48:91:5e:d1:1c:e2:8f:19:f8:10:7a:c2:61:f3:6f:
92:75:20:86:25:e9:b9:12:82:a8:cd:a3:6d:4c:fa:0a:b8:ba:
aa:9a:06:f3:85:81:b9:b3:30:dd:dd:a2:0a:00:d0:2e:58:9f:
8c:92:3d:22:2a:c2:c1:b8:be:31:fd:17:38:f2:5e:fd:3a:21:
d6:c7:3a:d0:20:67:da:66:c9:55:7f:ee:c6:cf:c4:b8:57:46:
42:d9:46:70:1b:f2:bf:11:ac:7f:ec:01:db:29:63:f3:b9:77:
62:6e:a1:d1:7f:41:e5:8f:95:80:30:f0:11:12:5f:6e:df:61:
10:1c:7c:71:b3:b9:b7:e5:da:b4:04:18:2a:73:3d:79:f7:59:
3e:75:d1:eb:6d:b6:4c:f7:49:fb:c0:d7:c1:52:c3:73:38:b2:
0b:3c:2a:d2:78:e5:4b:0e:61:7c:23:d6:b7:d7:0c:64:72:cb:
9a:f8:42:d6:9f:6c:d8:45:21:de:36:a5:a6:88:91:89:8a:19:
b9:8f:e1:20:dc:d6:ae:80:13:0d:5f:4a:dd:81:b5:b9:07:44:
8d:28:b1:da:af:c7:b6:10:58:8e:ff:20:44:65:70:05:aa:b7:
df:5f:df:13:fa:ec:61:8d:fa:a2:59:bc:9f:de:05:e3:42:73:
8a:49:ae:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:09:03 2025 by rpki-client