Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/5bjDinyzYHkkYd7-swrWGjQYnt8.roa
File: 5bjDinyzYHkkYd7-swrWGjQYnt8.roa (raw, json)
Hash identifier: /335pkwoeh8CfuCkoCpe/wFZpuGt3WZwWT1M/ns1gEM=
Subject key identifier: E5:B8:C3:8A:7C:B3:60:79:24:61:DE:FE:B3:0A:D6:1A:34:18:9E:DF
Certificate issuer: /CN=037862b4608c79f450295ec5c80c7c7ad6dfe2a2
Certificate serial: 0378CCBE
Authority key identifier: 03:78:62:B4:60:8C:79:F4:50:29:5E:C5:C8:0C:7C:7A:D6:DF:E2:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A3hitGCMefRQKV7FyAx8etbf4qI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/5bjDinyzYHkkYd7-swrWGjQYnt8.roa
Signing time: Tue 24 May 2022 09:47:13 +0000
ROA not before: Tue 24 May 2022 09:47:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35699
IP address blocks: 185.158.170.0/24 maxlen: 24
185.77.158.0/24 maxlen: 24
185.86.9.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58248382 (0x378ccbe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=037862b4608c79f450295ec5c80c7c7ad6dfe2a2
Validity
Not Before: May 24 09:47:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5b8c38a7cb360792461defeb30ad61a34189edf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:d5:21:c8:1a:f5:e5:a0:00:ea:14:20:b9:aa:
65:57:8b:94:c4:fd:c8:88:97:a6:27:13:e8:a0:8c:
4e:ed:62:32:52:b9:1f:ae:13:e0:32:be:24:8c:17:
5e:5b:a6:28:6b:2d:c3:d7:e6:e9:b2:85:08:49:dc:
38:92:08:69:46:34:32:30:4b:e1:60:8d:7a:51:c2:
7e:21:e9:3a:11:10:c6:00:bb:f6:9b:8e:eb:ee:e9:
7c:a7:ae:32:6e:b7:69:43:52:32:f6:df:5d:2e:53:
80:f2:94:88:6e:b8:9d:74:11:ca:00:6b:86:29:2a:
21:f7:fb:d2:2f:59:7b:f1:bb:68:14:56:21:0c:97:
aa:ae:b2:cd:e8:17:75:09:02:8b:16:14:f4:b9:b0:
3b:21:e4:aa:68:09:47:26:6e:30:eb:86:ac:94:bf:
52:49:74:49:10:76:7d:55:eb:ff:e3:b5:4c:71:b0:
fd:12:74:87:ec:64:aa:c8:5f:b5:15:15:f4:30:ce:
c4:4e:0f:d6:74:30:0a:39:94:ff:74:e5:e0:23:9c:
fe:64:5c:6a:6c:a9:04:90:79:4a:a0:3b:8a:4d:a4:
5e:c9:8c:df:d5:b9:e6:fe:c5:e0:e3:4e:22:11:fe:
7e:b8:69:87:f1:bc:b5:07:95:be:eb:79:0f:b9:6a:
fd:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:B8:C3:8A:7C:B3:60:79:24:61:DE:FE:B3:0A:D6:1A:34:18:9E:DF
X509v3 Authority Key Identifier:
keyid:03:78:62:B4:60:8C:79:F4:50:29:5E:C5:C8:0C:7C:7A:D6:DF:E2:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A3hitGCMefRQKV7FyAx8etbf4qI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/5bjDinyzYHkkYd7-swrWGjQYnt8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/A3hitGCMefRQKV7FyAx8etbf4qI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.77.158.0/24
185.86.9.0/24
185.158.170.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:1c:5d:76:ee:b1:f1:72:86:57:03:ee:43:42:aa:2a:36:8e:
90:de:91:fa:68:ec:58:a6:ff:99:8e:fb:a7:fb:d5:ce:53:bb:
c6:f0:fc:36:83:ae:d1:f0:0f:ef:7c:90:56:00:6d:ee:f4:33:
e0:49:37:fc:02:b8:bd:88:7b:51:a0:a5:41:ac:bf:59:87:b3:
ce:33:d9:43:ee:d2:6c:cc:64:cf:46:b6:8f:9d:ac:ed:58:ef:
5c:55:aa:c9:dc:0d:ed:18:29:92:e8:74:77:7a:3a:13:81:8c:
6a:90:7d:22:72:3d:f3:13:ba:ba:74:6e:58:2f:c0:63:53:62:
e1:82:d6:7e:95:1b:db:78:e5:42:2f:7d:86:00:02:92:ef:06:
5e:dd:01:7a:ce:74:b9:ec:34:29:ce:69:2c:35:4b:a0:0e:bc:
5b:d2:9f:bc:a5:62:3d:97:65:d8:55:35:6f:cc:7c:0f:ec:cb:
0c:8a:3c:36:69:7b:06:32:4c:87:03:04:79:78:d6:02:24:47:
07:03:e7:2c:8c:e7:c6:4d:3d:da:49:0d:cc:cd:d9:03:00:a5:
27:59:76:d6:a7:a8:4f:ab:77:69:ea:cc:35:89:65:0f:33:43:
52:83:d9:b1:7f:0a:de:67:3c:8b:78:62:02:e4:2b:06:ce:74:
60:8e:18:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:47 2023 by rpki-client on console-fra.rpki-client.org