Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/G17d375z7GYE0LZAZcNTmbzhVfo.roa
File: G17d375z7GYE0LZAZcNTmbzhVfo.roa (raw, json)
Hash identifier: MNKeLPTjjdj5CpNpVKhpbrBajyURmlLgm0yW5jaDwns=
Subject key identifier: 1B:5E:DD:DF:BE:73:EC:66:04:D0:B6:40:65:C3:53:99:BC:E1:55:FA
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17C7B492
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/G17d375z7GYE0LZAZcNTmbzhVfo.roa
Signing time: Sat 01 Jan 2022 04:54:25 +0000
ROA not before: Sat 01 Jan 2022 04:54:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62468
IP address blocks: 185.223.165.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 398963858 (0x17c7b492)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1b5edddfbe73ec6604d0b64065c35399bce155fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a0:e4:f2:2a:80:f6:d0:35:e8:ba:1e:85:f2:
f7:82:53:67:5e:ff:b7:fe:57:e3:9a:d4:4b:ef:42:
fe:b2:02:86:b0:b9:e0:75:73:b3:1d:31:9d:00:29:
20:6a:79:d2:b6:94:ab:71:1d:4b:81:1c:da:9f:0b:
42:fc:e3:aa:4c:96:4c:18:e9:cf:67:52:c9:77:41:
49:31:15:02:6b:e1:c6:7f:75:ff:52:15:7d:36:e3:
0c:7d:eb:45:3c:76:25:fc:a6:08:2d:96:c2:a6:a4:
6c:d3:3a:1e:3d:5c:46:c2:71:12:c0:66:44:96:16:
fc:9f:f8:3e:1c:51:8a:a4:90:09:86:19:f0:45:2b:
84:25:54:18:95:42:71:42:8f:dc:bc:76:d1:af:59:
8f:90:60:76:c7:b0:12:ff:74:cd:86:16:6e:13:bc:
ca:37:46:47:5e:79:28:59:e9:e1:3e:28:22:99:0c:
a5:68:b8:0a:65:8a:fc:49:a4:2a:d3:03:02:3d:bc:
70:e4:64:24:de:ac:92:1d:21:82:c3:85:76:6e:cc:
d2:86:bc:68:12:77:be:12:e3:f6:69:f2:e8:8a:af:
b8:d0:af:15:b4:43:3b:f1:f2:9c:f2:4c:9f:93:6f:
4d:b5:f8:6f:cb:6e:1b:eb:9c:4a:50:d7:02:28:62:
73:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:5E:DD:DF:BE:73:EC:66:04:D0:B6:40:65:C3:53:99:BC:E1:55:FA
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/G17d375z7GYE0LZAZcNTmbzhVfo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.165.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:bc:4f:bd:81:ff:0b:a6:11:64:b4:a0:12:95:98:19:b8:bc:
41:96:3e:b3:d7:89:45:0c:6a:98:68:2a:74:d4:40:8c:07:c7:
83:b8:78:ba:59:ac:9f:bc:78:fe:08:ed:a8:4d:7c:56:d2:b9:
6e:3b:f7:dc:04:08:58:03:35:6f:24:e9:3b:aa:55:76:57:7c:
19:1b:52:c0:e4:af:0e:e6:44:52:04:fc:3f:1d:b5:ce:a7:79:
09:1a:22:80:15:30:26:76:0f:6c:f9:2c:ef:c9:5c:58:52:e9:
ad:8f:60:f7:77:72:10:ed:c5:77:6e:a8:95:9c:f3:ee:32:80:
ac:93:68:2e:eb:0e:af:7b:2e:5f:1c:b3:f2:05:c6:a8:b2:ee:
65:85:30:76:3d:c0:d9:2d:4c:aa:56:1c:0c:d2:70:fb:18:3b:
5d:d5:b9:4c:c2:69:ad:84:44:3a:46:90:11:3b:9e:33:a6:9a:
d0:7a:dc:b0:ac:2c:1f:4e:22:a4:af:5b:d5:da:eb:32:77:63:
18:46:33:a5:9a:72:eb:72:ea:cf:2d:40:7d:bd:ed:dc:76:89:
96:e0:f7:0d:4b:0b:57:8f:f2:3a:4e:77:09:ab:df:59:23:f2:
6d:90:e1:75:03:1e:92:57:78:7b:9c:0f:e3:d1:13:18:16:52:
57:2f:14:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:17 2023 by rpki-client on console-fra.rpki-client.org