Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/3bd13d-fe95-486f-80ef-f073548352bf/1/Cp2up2MzJi07TT0IVZLwLEPz5Vo.roa
File: Cp2up2MzJi07TT0IVZLwLEPz5Vo.roa (raw, json)
Hash identifier: YCgvM8IgxBTu66G1LcbX3SpwgPGUC+1QVpwLKAx8GQU=
Subject key identifier: 0A:9D:AE:A7:63:33:26:2D:3B:4D:3D:08:55:92:F0:2C:43:F3:E5:5A
Certificate issuer: /CN=3d2384b784f197ea03dac2feda7895fc4b740729
Certificate serial: 06DBEB81
Authority key identifier: 3D:23:84:B7:84:F1:97:EA:03:DA:C2:FE:DA:78:95:FC:4B:74:07:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PSOEt4Txl-oD2sL-2niV_Et0Byk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/3bd13d-fe95-486f-80ef-f073548352bf/1/Cp2up2MzJi07TT0IVZLwLEPz5Vo.roa
Signing time: Sat 01 Jan 2022 12:57:51 +0000
ROA not before: Sat 01 Jan 2022 12:57:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206626
IP address blocks: 185.85.56.0/24 maxlen: 24
185.85.56.0/23 maxlen: 23
185.85.57.0/24 maxlen: 24
185.85.56.0/22 maxlen: 22
185.85.58.0/23 maxlen: 23
185.85.58.0/24 maxlen: 24
185.85.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115075969 (0x6dbeb81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d2384b784f197ea03dac2feda7895fc4b740729
Validity
Not Before: Jan 1 12:57:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a9daea76333262d3b4d3d085592f02c43f3e55a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:35:d1:bb:d2:40:c9:6d:49:e9:ce:81:52:17:
84:fc:e5:2e:c9:2a:79:9f:bb:e0:fb:8d:02:8e:67:
fd:90:dc:a2:37:79:2f:92:c2:28:74:4a:54:d0:45:
2f:06:ba:15:95:5f:25:90:31:7d:05:ad:a5:1e:9e:
ec:90:03:58:2a:3d:91:3e:fe:30:1c:3b:d5:7b:21:
5f:80:90:51:5d:26:32:a2:d0:74:7b:3a:83:b4:93:
91:a3:00:d6:81:ba:8a:18:61:16:ad:9c:23:75:ed:
12:67:95:e2:ef:87:db:1b:de:e7:40:59:80:44:35:
ad:6f:b1:ed:6f:46:25:64:d7:8f:92:ff:da:74:c6:
a3:c6:e9:75:95:1a:d3:68:71:c7:d9:69:3f:5a:d6:
62:4d:e5:a2:6f:2f:a5:c1:44:9b:b3:a6:d3:94:36:
23:ff:a5:86:a9:53:35:09:76:09:8a:b3:60:10:06:
4f:03:b0:e2:06:0b:9d:af:34:a9:7d:e0:72:9f:09:
42:9b:f3:3d:0f:2e:1e:92:27:60:02:98:ca:42:c6:
1e:56:c4:57:db:74:e5:ba:cb:64:63:ca:7a:72:d0:
b5:56:59:bd:c2:58:49:81:b4:50:85:bc:19:9c:95:
8b:23:29:e0:2f:b5:f8:31:97:f7:4a:1f:46:34:98:
85:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:9D:AE:A7:63:33:26:2D:3B:4D:3D:08:55:92:F0:2C:43:F3:E5:5A
X509v3 Authority Key Identifier:
keyid:3D:23:84:B7:84:F1:97:EA:03:DA:C2:FE:DA:78:95:FC:4B:74:07:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PSOEt4Txl-oD2sL-2niV_Et0Byk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/3bd13d-fe95-486f-80ef-f073548352bf/1/Cp2up2MzJi07TT0IVZLwLEPz5Vo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/3bd13d-fe95-486f-80ef-f073548352bf/1/PSOEt4Txl-oD2sL-2niV_Et0Byk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.85.56.0/22
Signature Algorithm: sha256WithRSAEncryption
33:4e:b3:1c:13:24:a7:35:7a:da:4a:0d:50:99:30:76:40:f0:
83:96:bd:27:78:51:12:32:62:f3:7b:27:b3:3e:d6:50:df:fe:
ae:80:28:76:fa:15:23:ff:48:ed:62:a9:73:65:f8:bb:94:0b:
a4:09:07:36:bc:be:9c:5c:0b:1f:4b:05:b8:01:42:e9:8c:ee:
9c:94:14:56:3b:d5:39:d8:65:17:7a:a9:8a:7d:9e:d5:54:f1:
8e:38:12:a0:64:6e:c0:b3:d8:54:2c:12:04:67:1f:42:38:95:
ba:ff:65:91:9e:6d:51:d7:52:7b:79:f6:62:b2:c1:c3:13:24:
9e:4f:df:f8:9e:a7:61:8a:05:f9:84:5c:e5:4c:ee:54:8a:88:
69:10:4b:8d:77:1e:af:43:70:54:4f:1d:21:d4:64:f7:35:4b:
e4:ec:7d:00:4a:5f:91:9d:49:cc:f4:9a:8c:d2:31:ef:61:27:
39:45:41:ab:c1:f4:7a:7b:28:53:f9:89:02:66:b5:a4:8f:59:
bd:8a:e2:f9:1f:31:6d:ce:d3:b4:1d:25:b3:50:1a:32:c4:fd:
87:6e:6c:61:84:60:37:fe:85:f4:0e:1d:da:c7:17:c3:0e:6c:
a0:39:36:ee:d2:4f:5d:a9:2d:2e:ae:60:8e:9a:39:78:9d:17:
f8:12:fc:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:00 2023 by rpki-client on console-ams.rpki-client.org