Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/e3aa51-6129-493d-91d2-51751b29f8b4/1/aGzwc2wjp2Cc6H_NUuAv4Azd0Rc.roa
File: aGzwc2wjp2Cc6H_NUuAv4Azd0Rc.roa (raw, json)
Hash identifier: IzEQn18lZTDZWN74ot8ltQVHlfu6kKc3Q6Z/8ieiQGk=
Subject key identifier: 68:6C:F0:73:6C:23:A7:60:9C:E8:7F:CD:52:E0:2F:E0:0C:DD:D1:17
Certificate issuer: /CN=29878a2888c9ac3123c795ff9681f1957ca0f964
Certificate serial: 066F48E4
Authority key identifier: 29:87:8A:28:88:C9:AC:31:23:C7:95:FF:96:81:F1:95:7C:A0:F9:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYeKKIjJrDEjx5X_loHxlXyg-WQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/e3aa51-6129-493d-91d2-51751b29f8b4/1/aGzwc2wjp2Cc6H_NUuAv4Azd0Rc.roa
Signing time: Sat 01 Jan 2022 04:59:53 +0000
ROA not before: Sat 01 Jan 2022 04:59:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50304
IP address blocks: 185.97.215.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107956452 (0x66f48e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29878a2888c9ac3123c795ff9681f1957ca0f964
Validity
Not Before: Jan 1 04:59:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=686cf0736c23a7609ce87fcd52e02fe00cddd117
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b3:47:ac:98:00:2c:63:3a:58:80:d7:e6:e5:
8d:15:81:90:72:67:34:55:c5:78:cf:e2:65:6c:ce:
52:2c:46:38:fc:53:23:a0:ed:8c:52:52:fe:3c:49:
e4:17:6c:24:c7:df:b0:4e:35:81:c8:74:04:e8:2c:
a1:f9:63:86:5e:e3:ac:18:d7:07:bb:72:9c:b7:43:
a7:c9:65:28:27:fe:3e:d6:2a:bf:58:f4:18:18:cf:
24:1b:45:8c:de:60:46:5a:1b:41:c0:ac:05:4b:a4:
a5:7a:2a:25:67:12:ab:76:4d:dd:06:72:ef:65:27:
83:80:17:ed:53:53:f2:62:00:c7:29:05:40:70:03:
04:c9:70:17:d8:1f:c3:5e:70:10:1c:53:b1:9b:1d:
6f:bf:6d:c6:eb:a8:59:10:03:ca:d5:cc:ff:91:23:
77:2c:21:c2:b7:0b:bd:5c:81:9f:b4:2c:85:e9:ba:
1e:94:84:ea:f7:5d:ee:6a:a3:17:61:58:3e:50:0b:
54:ed:2b:3d:c3:f2:6c:1a:50:a5:bd:11:c4:62:a0:
24:94:48:c4:45:90:d2:92:de:2a:f8:4f:44:98:34:
8a:ba:6f:a4:5c:23:0d:fe:0b:dd:85:27:2e:9b:de:
37:91:13:72:56:da:98:3a:8a:09:ac:60:0f:e2:ce:
22:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:6C:F0:73:6C:23:A7:60:9C:E8:7F:CD:52:E0:2F:E0:0C:DD:D1:17
X509v3 Authority Key Identifier:
keyid:29:87:8A:28:88:C9:AC:31:23:C7:95:FF:96:81:F1:95:7C:A0:F9:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYeKKIjJrDEjx5X_loHxlXyg-WQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e3aa51-6129-493d-91d2-51751b29f8b4/1/aGzwc2wjp2Cc6H_NUuAv4Azd0Rc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e3aa51-6129-493d-91d2-51751b29f8b4/1/KYeKKIjJrDEjx5X_loHxlXyg-WQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.97.215.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:a1:e3:c7:08:3c:92:7e:d6:b9:de:31:65:84:26:33:65:b4:
bd:56:8f:5a:37:a4:a6:e7:8c:4e:15:fd:9f:70:2e:a7:84:03:
9b:95:25:c6:14:5f:c6:69:50:33:01:6a:ec:cf:a5:e8:1c:87:
48:26:0b:75:b3:fe:bd:92:e7:83:08:bc:d8:cd:a6:4b:17:54:
9d:8f:d6:b7:eb:81:0b:f8:47:44:98:53:2f:ed:95:14:ff:5f:
0b:b2:cd:96:1e:07:f2:d3:0e:d3:25:95:24:a2:b3:c4:f2:c5:
77:48:96:d8:61:0f:72:bb:0f:20:7c:2e:df:be:8e:3b:19:07:
7a:46:c6:a6:e7:a2:9b:9b:83:27:cf:18:55:a5:c9:64:74:ce:
b2:52:cb:c2:02:7e:08:2a:65:09:82:df:f8:98:a7:f4:6b:8a:
90:5e:3a:5b:7e:03:ef:47:69:f4:13:68:60:38:cd:a3:75:19:
61:ea:55:b8:96:56:83:21:a8:c3:e8:1e:bf:7e:84:33:af:59:
fe:e5:ca:41:55:5f:d5:51:a0:6a:e1:45:12:5f:16:34:fd:f4:
1c:93:22:12:a8:8f:78:10:da:4b:7f:de:03:bb:41:cf:85:3d:
72:22:b9:4c:06:15:e3:11:f7:dd:69:ea:d7:6c:32:eb:60:3e:
57:3b:15:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:31 2023 by rpki-client on console-ams.rpki-client.org