Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/69b290-d375-4e89-8fb5-fb235dba7b18/1/I59MnmxdPkyKKKS_y7vmGqniQc8.roa
File: I59MnmxdPkyKKKS_y7vmGqniQc8.roa (raw, json)
Hash identifier: iAYiFff2faxMoIccEWh1sXM85f3xlKpQciOIv9GTLpU=
Subject key identifier: 23:9F:4C:9E:6C:5D:3E:4C:8A:28:A4:BF:CB:BB:E6:1A:A9:E2:41:CF
Certificate issuer: /CN=70c12309ee98d442ec8a7650127eb0e621894df1
Certificate serial: 01856C53EE0E6B1CA855A8EC4EFC2C37C8F2
Authority key identifier: 70:C1:23:09:EE:98:D4:42:EC:8A:76:50:12:7E:B0:E6:21:89:4D:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMEjCe6Y1ELsinZQEn6w5iGJTfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/69b290-d375-4e89-8fb5-fb235dba7b18/1/I59MnmxdPkyKKKS_y7vmGqniQc8.roa
Signing time: Sun 01 Jan 2023 07:55:17 +0000
ROA not before: Sun 01 Jan 2023 07:55:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42692
IP address blocks: 185.164.178.0/24 maxlen: 24
185.164.179.0/24 maxlen: 24
2a0a:ec02:a01::/48 maxlen: 48
2a0a:ec02:c01::/48 maxlen: 48
2a0a:ec02:401::/48 maxlen: 48
2a0a:ec02:701::/48 maxlen: 48
2a0a:ec02:101::/48 maxlen: 48
2a0a:ec02:201::/48 maxlen: 48
2a0a:ec02:ff01::/48 maxlen: 48
2a0a:ec02:301::/48 maxlen: 48
2a0a:ec02:501::/48 maxlen: 48
2a0a:ec02:801::/48 maxlen: 48
2a0a:ec02:b01::/48 maxlen: 48
2a0a:ec02:901::/48 maxlen: 48
2a0a:ec04::/32 maxlen: 32
2a0a:ec02:202::/48 maxlen: 48
2a0a:ec02:902::/48 maxlen: 48
2a0a:ec02:ff00::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:ee:0e:6b:1c:a8:55:a8:ec:4e:fc:2c:37:c8:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70c12309ee98d442ec8a7650127eb0e621894df1
Validity
Not Before: Jan 1 07:55:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=239f4c9e6c5d3e4c8a28a4bfcbbbe61aa9e241cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:1c:61:36:03:2f:f4:48:67:01:80:45:b4:0b:
74:76:95:79:f2:26:99:4f:c4:11:5b:16:3d:8a:fd:
c4:6e:a7:2f:0d:a9:6e:8d:bb:32:83:5d:21:bf:e1:
84:d6:f2:98:0c:33:81:b0:95:69:63:85:e3:4b:ca:
d8:0f:ce:75:ad:df:b9:c1:7a:17:3d:04:9d:51:84:
68:ce:fb:53:f0:c0:e3:93:c4:07:e1:6d:c9:9f:95:
4d:17:03:6e:c3:d6:56:82:0b:bf:cb:f2:61:dd:fe:
85:e8:ae:79:48:6c:4f:b6:1d:7b:0a:11:8d:97:76:
c9:a8:ad:c5:e9:ba:50:81:31:3a:aa:0d:af:83:a6:
5b:36:13:18:a3:e5:07:a7:b7:0f:d9:be:c2:5c:31:
42:c9:a2:df:7d:1d:6c:ef:88:00:84:a9:b8:09:e1:
41:7f:ab:69:b5:6d:06:aa:ff:4a:ce:1f:1b:38:3b:
04:33:42:71:3d:61:ae:b4:08:9e:17:73:73:44:28:
64:83:7c:1e:b4:ff:fd:37:58:40:c3:6c:7b:88:b8:
51:68:5c:10:2c:fe:89:fa:b4:82:87:81:a7:dc:0a:
ad:39:4b:1f:80:79:04:1b:72:de:99:f0:8b:b7:a1:
62:cd:04:a3:58:dd:cf:de:bb:d9:78:67:5d:9a:b2:
27:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:9F:4C:9E:6C:5D:3E:4C:8A:28:A4:BF:CB:BB:E6:1A:A9:E2:41:CF
X509v3 Authority Key Identifier:
keyid:70:C1:23:09:EE:98:D4:42:EC:8A:76:50:12:7E:B0:E6:21:89:4D:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMEjCe6Y1ELsinZQEn6w5iGJTfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/69b290-d375-4e89-8fb5-fb235dba7b18/1/I59MnmxdPkyKKKS_y7vmGqniQc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/69b290-d375-4e89-8fb5-fb235dba7b18/1/cMEjCe6Y1ELsinZQEn6w5iGJTfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.164.178.0/23
IPv6:
2a0a:ec02:101::/48
2a0a:ec02:201::-2a0a:ec02:202:ffff:ffff:ffff:ffff:ffff
2a0a:ec02:301::/48
2a0a:ec02:401::/48
2a0a:ec02:501::/48
2a0a:ec02:701::/48
2a0a:ec02:801::/48
2a0a:ec02:901::-2a0a:ec02:902:ffff:ffff:ffff:ffff:ffff
2a0a:ec02:a01::/48
2a0a:ec02:b01::/48
2a0a:ec02:c01::/48
2a0a:ec02:ff00::/47
2a0a:ec04::/32
Signature Algorithm: sha256WithRSAEncryption
c1:04:0d:a6:d7:23:05:11:ed:f9:a3:f1:b5:c0:75:33:bd:e4:
33:19:d8:4f:55:32:fb:84:97:9b:6c:4f:d8:3a:5d:f9:ec:ca:
74:23:5f:0d:83:3a:bb:97:45:15:b5:a5:85:8e:79:0f:b2:0e:
d8:ed:b9:6a:8a:a5:c4:db:0c:f7:06:5d:a7:20:4b:2c:69:e1:
4f:4c:8b:51:44:f3:57:59:9f:78:ea:7c:1a:37:fb:ca:69:a8:
bf:89:33:39:73:c3:ec:68:5d:f5:5d:17:99:d5:bf:19:d8:ae:
78:30:4b:1f:a1:7c:c3:9d:26:e1:70:ce:39:7a:71:d3:ff:9c:
4b:89:0d:51:6c:a8:ea:a5:db:a0:f3:75:15:eb:16:80:c2:0d:
00:97:62:06:dc:a3:c3:7b:60:41:02:b3:e3:d7:36:92:46:f3:
b0:8c:ae:d5:71:cf:00:72:d9:79:0a:c5:d9:11:64:f5:87:a1:
d6:e1:93:fe:46:62:88:3a:67:a1:2e:74:ef:3f:90:c8:24:80:
eb:76:77:c9:5b:09:cc:38:02:29:55:29:32:f1:04:ae:7a:a5:
70:16:70:34:68:9f:d2:07:da:14:2d:06:5f:c9:01:18:55:3a:
36:49:57:a1:16:53:28:5b:fe:d6:43:14:09:5b:22:9c:90:a2:
2a:c1:9d:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:10 2025 by rpki-client