Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/bbedbe-8821-4bd8-bbcc-3adf9b61347d/1/IUrjsrPRaEyrhxbHftLVUlHLA_k.roa
File: IUrjsrPRaEyrhxbHftLVUlHLA_k.roa (raw, json)
Hash identifier: 6dFjDmPx4bteIGc+4tZc8Lm4X0NoE4gGzT6P9Uu4DBI=
Subject key identifier: 21:4A:E3:B2:B3:D1:68:4C:AB:87:16:C7:7E:D2:D5:52:51:CB:03:F9
Certificate issuer: /CN=4cfcc7e017c2c9f7632da7293476bb7e4a30365a
Certificate serial: 0D8FE65E
Authority key identifier: 4C:FC:C7:E0:17:C2:C9:F7:63:2D:A7:29:34:76:BB:7E:4A:30:36:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TPzH4BfCyfdjLacpNHa7fkowNlo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/bbedbe-8821-4bd8-bbcc-3adf9b61347d/1/IUrjsrPRaEyrhxbHftLVUlHLA_k.roa
Signing time: Sat 01 Jan 2022 00:58:00 +0000
ROA not before: Sat 01 Jan 2022 00:58:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206951
IP address blocks: 185.170.228.0/22 maxlen: 32
2a0a:b300::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 227534430 (0xd8fe65e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cfcc7e017c2c9f7632da7293476bb7e4a30365a
Validity
Not Before: Jan 1 00:58:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=214ae3b2b3d1684cab8716c77ed2d55251cb03f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:35:b9:35:f2:e6:95:27:77:63:9f:bc:14:48:
8b:cc:5a:0c:3a:9d:1d:23:da:89:dd:3e:38:88:94:
92:07:70:8f:c1:82:7f:da:25:4c:ef:f3:71:fe:4a:
ec:5f:a2:1e:4f:fc:b6:84:ea:a4:25:3d:dc:12:27:
64:a1:e9:ee:af:5c:a4:ac:2b:f6:97:11:52:a4:3e:
25:b5:8b:13:ce:f2:47:a3:fa:55:8c:33:b4:d0:6e:
21:b5:45:e5:29:7a:09:23:73:e8:33:0b:d8:d9:53:
d8:9e:7d:c6:4a:32:5d:e2:df:f2:06:08:14:59:53:
b0:86:8f:af:e2:1f:5a:71:81:f7:72:10:bc:26:e2:
bc:07:61:78:8a:1e:16:30:ed:9e:25:e4:0a:a2:51:
0e:8a:c4:f2:77:2f:a4:fc:5b:85:b6:55:d4:19:ba:
15:33:8f:75:4b:5b:39:d1:20:dd:4e:4d:a5:0f:d0:
bc:00:57:ff:4d:03:87:02:50:ac:f3:70:90:d7:10:
d5:de:a9:27:5a:d1:4c:cc:63:74:7f:82:46:e9:d7:
13:96:0b:94:c1:f3:d2:2e:de:95:83:0d:40:13:51:
b0:00:30:f9:ff:3c:7e:19:f6:56:2d:6b:d8:89:58:
8e:3f:e1:e1:b8:07:10:f3:f6:95:b1:3b:27:6d:10:
91:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:4A:E3:B2:B3:D1:68:4C:AB:87:16:C7:7E:D2:D5:52:51:CB:03:F9
X509v3 Authority Key Identifier:
keyid:4C:FC:C7:E0:17:C2:C9:F7:63:2D:A7:29:34:76:BB:7E:4A:30:36:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TPzH4BfCyfdjLacpNHa7fkowNlo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/bbedbe-8821-4bd8-bbcc-3adf9b61347d/1/IUrjsrPRaEyrhxbHftLVUlHLA_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/bbedbe-8821-4bd8-bbcc-3adf9b61347d/1/TPzH4BfCyfdjLacpNHa7fkowNlo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.170.228.0/22
IPv6:
2a0a:b300::/29
Signature Algorithm: sha256WithRSAEncryption
15:90:07:5b:f4:2b:01:b5:3e:a6:a1:e2:a6:d7:a1:5f:8a:1c:
a4:40:3a:89:11:f3:ce:5e:bc:00:d9:50:64:b4:25:1f:a6:65:
d5:37:d2:19:36:11:71:13:3f:65:76:53:26:b3:74:f3:72:e2:
b3:66:48:10:a8:da:59:c8:1b:e5:1c:4a:27:9a:8d:c3:e5:18:
a0:1c:47:ca:67:34:15:2c:86:c4:f7:5b:ad:1a:88:4f:62:e3:
e6:1c:02:07:f9:55:33:ae:46:f2:7d:b5:8a:14:d0:d5:bd:57:
1d:6f:6b:50:21:2c:d6:c9:1a:6e:66:1f:27:7f:4d:39:52:9b:
dc:04:4a:f2:cd:fe:98:be:6b:33:53:a4:3c:fe:59:b7:27:d1:
58:10:da:a7:16:b4:4d:bd:35:73:d8:48:c8:17:92:7d:c7:d8:
fe:6e:dd:93:15:a5:7d:89:a5:63:f0:84:34:d8:f0:7f:e4:62:
ec:17:e5:4e:8d:91:87:50:bf:32:d8:89:71:df:06:04:a7:30:
f4:c4:5f:24:01:4d:3a:92:f7:7c:8a:32:91:8f:67:29:76:b2:
6a:87:0f:2b:38:50:9d:c2:a4:71:d5:ac:44:9b:b5:19:7e:e8:
56:75:23:97:3c:31:d2:fc:dc:d2:aa:5d:3c:43:20:59:18:0e:
13:b8:31:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:12 2024 by rpki-client on console-ams.rpki-client.org