Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/d3e9bd-446b-4116-8453-d467cc6e7d8f/1/v8aIYF1qfkUEQ5m0ShSI4JMhtfI.roa
File: v8aIYF1qfkUEQ5m0ShSI4JMhtfI.roa (raw, json)
Hash identifier: E6o86N0acWQGdaTvp4tM2TI382ze90ecZCD7BMXAft8=
Subject key identifier: BF:C6:88:60:5D:6A:7E:45:04:43:99:B4:4A:14:88:E0:93:21:B5:F2
Certificate issuer: /CN=077a0fb99e52ae4fa1d66faad93f42e6d07886a6
Certificate serial: 0465139F
Authority key identifier: 07:7A:0F:B9:9E:52:AE:4F:A1:D6:6F:AA:D9:3F:42:E6:D0:78:86:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B3oPuZ5Srk-h1m-q2T9C5tB4hqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/d3e9bd-446b-4116-8453-d467cc6e7d8f/1/v8aIYF1qfkUEQ5m0ShSI4JMhtfI.roa
Signing time: Sat 01 Jan 2022 08:53:17 +0000
ROA not before: Sat 01 Jan 2022 08:53:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59817
IP address blocks: 185.70.56.0/22 maxlen: 22
2a03:34a0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73733023 (0x465139f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=077a0fb99e52ae4fa1d66faad93f42e6d07886a6
Validity
Not Before: Jan 1 08:53:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bfc688605d6a7e45044399b44a1488e09321b5f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:bd:e8:d8:78:6a:fd:3c:31:56:7a:fe:6c:0a:
93:aa:ed:a4:05:68:24:3a:06:87:a5:ff:25:98:b1:
59:a9:fc:82:b9:4c:15:c5:6a:c6:47:19:08:a8:56:
4f:9b:6e:a6:0f:de:42:6d:e7:47:b9:a1:ec:e6:e2:
48:63:99:60:f4:ae:ad:5e:e8:63:9b:14:1f:99:5d:
b4:20:6d:8b:78:77:fe:26:c0:b0:7d:a9:df:df:99:
45:4b:1c:cd:dc:e9:1a:5d:93:2f:ec:a8:48:24:5a:
d3:18:1f:2e:07:9d:b7:29:d8:cf:29:e5:af:e0:43:
d9:e9:66:15:26:1e:15:84:18:58:95:c6:44:70:ce:
31:14:65:80:79:78:32:c4:72:77:88:3c:04:8e:b5:
60:82:cc:00:b1:c0:b4:f2:82:43:90:06:2b:53:c7:
bb:c8:eb:fd:61:c6:6b:21:4a:23:86:4a:60:1c:45:
9d:77:e9:a8:5c:45:09:3c:03:24:7e:07:3e:8e:3a:
d7:48:a7:4f:4c:4f:8e:c1:02:7a:73:02:b7:f3:8a:
33:5e:ad:69:2f:f5:2e:72:b3:a2:62:2d:82:3f:1a:
da:39:39:1d:00:ea:40:18:fa:72:16:1c:f9:d0:3f:
47:1b:2b:ba:72:39:09:6e:f9:62:c6:0d:92:0b:67:
7c:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:C6:88:60:5D:6A:7E:45:04:43:99:B4:4A:14:88:E0:93:21:B5:F2
X509v3 Authority Key Identifier:
keyid:07:7A:0F:B9:9E:52:AE:4F:A1:D6:6F:AA:D9:3F:42:E6:D0:78:86:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B3oPuZ5Srk-h1m-q2T9C5tB4hqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/d3e9bd-446b-4116-8453-d467cc6e7d8f/1/v8aIYF1qfkUEQ5m0ShSI4JMhtfI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/d3e9bd-446b-4116-8453-d467cc6e7d8f/1/B3oPuZ5Srk-h1m-q2T9C5tB4hqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.70.56.0/22
IPv6:
2a03:34a0::/32
Signature Algorithm: sha256WithRSAEncryption
91:ce:91:87:16:8c:9e:c4:d9:bc:1d:83:50:68:c2:43:1f:3d:
56:0e:e2:4f:df:49:06:2e:98:e2:59:2a:72:1c:df:0c:e2:e4:
20:4a:7f:e7:28:45:18:2a:ae:5c:4b:65:64:b2:17:8e:6e:16:
50:0f:bf:f4:22:f8:b8:c9:e3:9b:a4:ec:c7:a0:84:9e:b1:cc:
78:58:98:34:7b:8c:b8:ce:75:d0:89:01:33:ea:79:51:18:f8:
49:66:59:17:17:d6:45:97:c9:77:18:ab:b1:fc:af:d2:89:45:
a2:00:e6:26:8a:c6:be:37:66:30:24:7c:2f:a8:c5:2f:b8:b2:
2c:37:78:9e:07:d6:ad:cd:5b:76:fe:71:42:d8:45:e2:8e:f1:
0d:d4:fb:a9:8c:b3:a8:1f:3a:35:06:b6:af:be:2a:5e:d4:fd:
9d:84:de:60:ec:c7:ec:50:43:d1:cb:77:a0:34:e4:a1:c1:5f:
5f:4a:9f:bf:bb:f2:fc:19:a4:8c:77:3c:b1:de:2c:a5:87:66:
f0:dc:b1:46:35:b9:0b:9b:65:b4:71:38:b1:3c:31:9b:1e:59:
c8:36:b6:cd:90:ee:63:6d:b2:90:93:48:8f:2f:2d:9b:62:38:
fe:5a:b6:b2:cb:3f:78:02:7e:59:7b:79:45:2a:cc:66:5c:58:
92:07:d2:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:49 2023 by rpki-client on console-fra.rpki-client.org