Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/52b48d-28a8-48f5-a4df-4db40a36563e/1/cLnV_EvZ7xNP1ltCxzP0Hm7hgog.roa
File: cLnV_EvZ7xNP1ltCxzP0Hm7hgog.roa (raw, json)
Hash identifier: 0ATj01xmRge4hCVyaihU+euuMK67tNO98pnicUNz7Uk=
Subject key identifier: 70:B9:D5:FC:4B:D9:EF:13:4F:D6:5B:42:C7:33:F4:1E:6E:E1:82:88
Certificate issuer: /CN=7792c3fc69154ac7d515bcac9daa07e78bc229cc
Certificate serial: 14C762B4
Authority key identifier: 77:92:C3:FC:69:15:4A:C7:D5:15:BC:AC:9D:AA:07:E7:8B:C2:29:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d5LD_GkVSsfVFbysnaoH54vCKcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/52b48d-28a8-48f5-a4df-4db40a36563e/1/cLnV_EvZ7xNP1ltCxzP0Hm7hgog.roa
Signing time: Sat 01 Jan 2022 14:01:28 +0000
ROA not before: Sat 01 Jan 2022 14:01:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62336
IP address blocks: 185.99.56.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 348611252 (0x14c762b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7792c3fc69154ac7d515bcac9daa07e78bc229cc
Validity
Not Before: Jan 1 14:01:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70b9d5fc4bd9ef134fd65b42c733f41e6ee18288
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:76:20:99:8b:6c:07:84:13:38:1e:51:75:74:
e4:7d:1e:49:08:a4:43:a5:99:ac:13:ce:39:80:a2:
f5:22:45:7a:aa:df:e5:ae:73:aa:6b:e3:53:2b:dd:
94:db:c7:40:96:87:03:5a:23:22:ef:b3:b6:97:02:
c3:6f:e6:04:9e:4d:8c:53:4e:aa:35:5d:f9:87:72:
77:ed:f0:2a:b4:e1:fa:f0:64:4d:d0:f4:78:48:26:
1c:36:f8:72:6c:4b:60:0e:75:a8:80:08:4e:6f:f7:
23:34:d4:d4:ed:f7:0f:15:7c:7d:34:73:7c:96:ca:
2a:60:37:b5:6e:65:c1:76:bf:85:af:d1:2a:8e:64:
59:28:e5:24:43:86:81:e7:89:8b:80:61:c1:97:15:
38:17:a4:26:fc:69:94:01:df:06:34:35:d2:19:27:
8e:7f:de:bb:f5:6b:3b:f1:72:df:40:d1:68:0d:9c:
52:d8:13:14:82:72:25:72:15:db:fa:42:95:b4:1c:
d4:9e:aa:38:09:31:88:e6:d5:b2:c0:d0:88:c8:91:
ed:8d:b6:5d:ce:09:cd:d3:cc:75:30:18:81:a3:f9:
92:2e:a0:86:39:9d:b6:32:5f:11:59:06:c8:88:96:
93:c3:fa:8b:37:59:6c:c3:fd:fa:be:dc:8e:e1:f0:
fb:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:B9:D5:FC:4B:D9:EF:13:4F:D6:5B:42:C7:33:F4:1E:6E:E1:82:88
X509v3 Authority Key Identifier:
keyid:77:92:C3:FC:69:15:4A:C7:D5:15:BC:AC:9D:AA:07:E7:8B:C2:29:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5LD_GkVSsfVFbysnaoH54vCKcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/52b48d-28a8-48f5-a4df-4db40a36563e/1/cLnV_EvZ7xNP1ltCxzP0Hm7hgog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/52b48d-28a8-48f5-a4df-4db40a36563e/1/d5LD_GkVSsfVFbysnaoH54vCKcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.99.56.0/22
Signature Algorithm: sha256WithRSAEncryption
aa:fa:13:7b:70:70:a8:3f:04:57:28:63:75:82:92:93:42:67:
d0:24:0d:eb:17:61:b9:7e:17:e7:64:90:db:13:9c:a9:04:af:
aa:25:2d:2f:81:c2:88:a8:5b:0f:0b:1c:b2:dc:03:ed:6f:16:
37:12:67:38:38:6e:9c:a1:33:e1:08:65:70:20:aa:07:7a:c8:
53:38:08:0b:55:6e:6c:02:01:14:5b:5a:3c:63:d5:4b:80:6b:
36:30:35:50:5e:e6:e2:39:c0:37:65:34:22:89:ad:77:98:0f:
dc:69:93:b2:14:d7:c6:68:fe:d0:1f:90:c4:55:48:ac:81:5b:
0a:b2:a0:22:8f:60:e4:6e:b7:81:b2:13:b7:89:90:a9:99:90:
d5:27:96:a6:c9:74:aa:29:0d:52:e3:61:67:6e:7f:11:24:d4:
53:bb:f5:57:a3:1e:76:87:fc:36:0f:1c:32:7f:a3:78:c4:59:
76:45:3f:44:c4:dc:48:36:6d:98:07:d8:6a:8d:cc:1f:37:13:
ab:2e:de:2f:11:7e:0e:74:08:e2:0c:bc:1a:ba:d2:3e:d9:c1:
f1:21:37:db:ed:d3:00:9b:cf:2e:bf:59:2b:d1:1c:ab:b2:f6:
21:0d:b9:bb:e8:14:d9:96:7d:43:36:1e:4d:10:8a:75:55:d1:
f9:ca:da:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:44 2024 by rpki-client on console-fra.rpki-client.org