Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/fPIxuxZiAGHYnE6dfviNsu5HYRM.roa
File: fPIxuxZiAGHYnE6dfviNsu5HYRM.roa (raw, json)
Hash identifier: bmIQwLlYpZydvnSaMYGfMfs19OGKUVxo+tMGc0mjyzI=
Subject key identifier: 7C:F2:31:BB:16:62:00:61:D8:9C:4E:9D:7E:F8:8D:B2:EE:47:61:13
Certificate issuer: /CN=99ce569a14c2db3772f23187ce68e6541ec0048e
Certificate serial: 01844310DF52DB273DF8D9ED7C604DEF4497
Authority key identifier: 99:CE:56:9A:14:C2:DB:37:72:F2:31:87:CE:68:E6:54:1E:C0:04:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mc5WmhTC2zdy8jGHzmjmVB7ABI4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/fPIxuxZiAGHYnE6dfviNsu5HYRM.roa
Signing time: Fri 04 Nov 2022 14:34:49 +0000
ROA not before: Fri 04 Nov 2022 14:34:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210539
IP address blocks: 185.170.128.0/24 maxlen: 24
185.170.130.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:43:10:df:52:db:27:3d:f8:d9:ed:7c:60:4d:ef:44:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99ce569a14c2db3772f23187ce68e6541ec0048e
Validity
Not Before: Nov 4 14:34:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7cf231bb16620061d89c4e9d7ef88db2ee476113
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:71:10:f1:84:b5:d1:a4:42:dd:08:92:51:41:
bc:df:d0:6e:f6:30:1a:cc:e6:95:80:0a:b8:bc:4f:
cb:8b:b9:4f:72:6d:d2:8b:1b:aa:b9:4d:aa:ad:06:
9f:12:39:f7:e0:04:9d:05:21:d6:bd:8e:18:fe:28:
c8:84:c9:8e:f4:dc:fa:36:12:9a:8d:f5:27:5c:32:
fa:41:00:fd:87:a0:5d:e6:d4:8b:45:5e:ce:c3:19:
6f:28:73:d1:fd:33:b4:2b:f9:ac:be:a0:23:56:72:
a4:b4:45:08:3c:cf:72:b8:5a:d9:79:99:26:ae:62:
6b:75:93:b2:f7:78:9a:9b:e3:a5:f8:1d:fc:dd:d8:
f6:4a:5f:f5:be:22:54:09:34:9f:61:d8:97:de:94:
8b:a8:6b:27:87:0f:73:59:78:33:62:86:de:13:59:
ac:ac:79:24:14:9e:e3:1c:2c:e1:0b:5d:48:2d:79:
27:67:cf:ea:6a:c3:92:f9:29:75:10:98:4d:90:80:
87:18:cb:05:91:df:19:0c:e6:8b:b8:7d:cc:17:b5:
4d:43:c6:68:0f:98:62:bc:9d:59:e9:72:44:f1:39:
2f:d1:54:fb:23:05:74:fb:f2:16:6a:e8:8f:4e:00:
f2:49:58:b8:56:21:cf:d5:dd:22:79:5b:49:5e:c5:
0b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:F2:31:BB:16:62:00:61:D8:9C:4E:9D:7E:F8:8D:B2:EE:47:61:13
X509v3 Authority Key Identifier:
keyid:99:CE:56:9A:14:C2:DB:37:72:F2:31:87:CE:68:E6:54:1E:C0:04:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mc5WmhTC2zdy8jGHzmjmVB7ABI4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/fPIxuxZiAGHYnE6dfviNsu5HYRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/mc5WmhTC2zdy8jGHzmjmVB7ABI4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.170.128.0/24
185.170.130.0/24
Signature Algorithm: sha256WithRSAEncryption
55:b6:15:0d:d3:91:a0:12:47:ba:9b:f9:f8:67:30:f6:8b:ea:
da:c2:ef:33:8f:06:48:8a:f5:bb:0c:fc:7c:74:c8:73:ce:e3:
37:e5:4b:11:23:f6:5e:74:d3:54:1a:36:0e:08:f9:38:96:54:
59:83:4a:f3:c0:77:1a:dc:8c:57:39:fe:87:62:9a:23:ff:0f:
a3:8a:b8:15:6e:dd:5f:12:ba:98:91:7e:62:8a:dd:8b:88:3b:
f6:de:e3:e2:b3:9c:09:76:57:0f:58:bd:fc:fc:ca:d0:54:96:
36:f7:52:92:30:27:1f:66:a8:4f:b4:62:ca:5b:1c:48:ce:0a:
9d:4e:3d:9d:2a:4f:37:51:24:85:cb:83:1f:9d:5e:bf:b8:3b:
80:31:3d:e6:9c:49:e7:49:a0:5e:c9:51:94:b4:86:76:71:15:
5b:f1:61:75:c2:68:0c:dd:02:9e:20:b9:a1:20:27:a7:cb:d5:
8a:42:3f:cd:78:0b:32:f0:b0:0b:f8:e7:cf:12:26:78:9f:4c:
cb:21:0e:8e:b4:4c:75:73:f3:16:4a:95:cf:2e:fb:15:11:7b:
06:9b:f3:eb:65:fc:3a:54:53:b2:11:83:a9:3c:6c:07:fc:e0:
7a:34:3a:8e:46:63:00:38:57:b4:ae:89:b3:28:5c:27:17:e7:
51:80:96:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:21 2023 by rpki-client on console-fra.rpki-client.org