Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/5260d0-1855-4f30-b8ef-7c998079a6a9/1/R8Sad56pv5YZB3Cro05i18fm7f8.roa
File: R8Sad56pv5YZB3Cro05i18fm7f8.roa (raw, json)
Hash identifier: xi2GuoYK7Ng74p5BLznJ5UaUs1iFo1fg6npMr0awVlU=
Subject key identifier: 47:C4:9A:77:9E:A9:BF:96:19:07:70:AB:A3:4E:62:D7:C7:E6:ED:FF
Certificate issuer: /CN=5cfe3881f3c44774f51cc75ee7e6f91c5565a606
Certificate serial: 09F41F62
Authority key identifier: 5C:FE:38:81:F3:C4:47:74:F5:1C:C7:5E:E7:E6:F9:1C:55:65:A6:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XP44gfPER3T1HMde5-b5HFVlpgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/5260d0-1855-4f30-b8ef-7c998079a6a9/1/R8Sad56pv5YZB3Cro05i18fm7f8.roa
Signing time: Sat 01 Jan 2022 14:08:06 +0000
ROA not before: Sat 01 Jan 2022 14:08:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.133.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166993762 (0x9f41f62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cfe3881f3c44774f51cc75ee7e6f91c5565a606
Validity
Not Before: Jan 1 14:08:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=47c49a779ea9bf96190770aba34e62d7c7e6edff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:cc:a8:a7:d0:e3:ba:df:0f:2a:82:89:63:45:
03:8d:d1:54:67:7a:ad:8b:ed:c3:59:63:f6:a2:ec:
f6:d4:ba:dc:7a:e9:f5:80:b4:0e:11:cd:ae:db:02:
fe:1c:38:55:3b:19:6d:42:46:07:72:91:de:79:1d:
0c:f2:1f:17:8b:e8:92:60:e8:e3:ff:e2:68:73:85:
bc:87:13:4f:67:e2:b0:48:88:6f:39:30:b5:ff:66:
06:5e:79:28:48:21:fd:06:98:21:3b:1d:af:3f:a6:
2f:4c:09:66:39:4e:ff:bd:e8:53:39:be:7e:30:32:
a7:62:02:53:78:ab:16:ca:3a:73:c3:0b:7c:bf:5e:
bb:7e:b4:75:af:5a:29:9c:b5:8b:38:f8:ed:17:ef:
7f:f6:94:c5:29:f2:b2:a7:c1:1d:a5:49:3e:8b:d2:
d6:44:77:d0:32:24:98:a4:c9:32:77:c9:0b:c5:d2:
ff:3c:e9:15:7e:0d:87:58:0e:0f:c3:47:cf:24:e1:
84:20:f4:76:a3:45:39:e9:ec:79:63:05:ec:33:63:
8b:48:86:39:25:67:56:7c:5c:b1:69:0a:e2:b7:4f:
29:b5:e5:bb:58:a1:e6:ad:78:ad:07:ea:a1:8a:9a:
86:3e:aa:e5:b0:d2:ae:49:89:83:e2:b2:ae:b7:c2:
7f:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:C4:9A:77:9E:A9:BF:96:19:07:70:AB:A3:4E:62:D7:C7:E6:ED:FF
X509v3 Authority Key Identifier:
keyid:5C:FE:38:81:F3:C4:47:74:F5:1C:C7:5E:E7:E6:F9:1C:55:65:A6:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XP44gfPER3T1HMde5-b5HFVlpgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/5260d0-1855-4f30-b8ef-7c998079a6a9/1/R8Sad56pv5YZB3Cro05i18fm7f8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/5260d0-1855-4f30-b8ef-7c998079a6a9/1/XP44gfPER3T1HMde5-b5HFVlpgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.133.70.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:45:6e:02:d4:19:47:e4:b4:b4:58:15:47:0e:c1:95:10:1d:
aa:39:b3:33:c0:52:aa:b6:bb:6c:73:50:22:c2:42:a3:7f:09:
d8:67:32:91:6b:09:46:44:b9:88:84:dd:25:a7:2e:58:20:ba:
ca:ed:5f:3c:6d:76:75:cb:47:23:a4:00:bd:77:1a:0d:1d:1b:
6c:63:27:6c:cc:b2:62:59:a8:0e:e5:8e:60:7d:94:2d:7c:2b:
47:d0:d0:e2:49:e2:d7:7c:a9:1c:2e:5c:2d:4b:1c:54:ef:27:
d0:fe:58:b3:83:bd:b2:db:16:da:4c:6f:d2:9f:ca:52:62:a6:
f6:d1:70:63:f3:fe:d6:f3:5a:9c:f1:3f:31:97:de:56:74:d4:
9c:e7:98:4d:2b:8e:ef:38:dd:52:4a:1d:c0:5c:0f:51:c6:07:
fa:f3:80:ac:92:f4:63:ba:39:f4:08:39:e2:10:cd:05:28:77:
40:07:24:3e:90:fa:38:4d:72:0a:b7:ca:df:81:47:99:20:20:
64:75:7a:b4:02:9a:a8:e7:18:d4:70:be:f8:4c:c4:10:03:2e:
39:41:7c:6c:63:c5:d0:88:4f:c6:87:23:87:be:a4:e3:97:8c:
67:ed:bf:b1:3a:23:71:b2:d4:21:66:9f:f5:2b:b6:a1:8e:5d:
55:bf:7f:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:25 2024 by rpki-client on console-fra.rpki-client.org