Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/kDN5ytOvHJXuNJQr2lyA6GWqFRY.roa
File: kDN5ytOvHJXuNJQr2lyA6GWqFRY.roa (raw, json)
Hash identifier: YC5H9iNC65Q0vBnnTUKx0D/NKJ8AnZ2KzNXQPnp2f70=
Subject key identifier: 90:33:79:CA:D3:AF:1C:95:EE:34:94:2B:DA:5C:80:E8:65:AA:15:16
Certificate issuer: /CN=99ce569a14c2db3772f23187ce68e6541ec0048e
Certificate serial: 0A90F8A1
Authority key identifier: 99:CE:56:9A:14:C2:DB:37:72:F2:31:87:CE:68:E6:54:1E:C0:04:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mc5WmhTC2zdy8jGHzmjmVB7ABI4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/kDN5ytOvHJXuNJQr2lyA6GWqFRY.roa
Signing time: Sat 01 Jan 2022 16:05:32 +0000
ROA not before: Sat 01 Jan 2022 16:05:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202580
IP address blocks: 185.170.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177272993 (0xa90f8a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99ce569a14c2db3772f23187ce68e6541ec0048e
Validity
Not Before: Jan 1 16:05:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=903379cad3af1c95ee34942bda5c80e865aa1516
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:9c:7f:79:f2:d2:21:46:50:d7:47:4b:82:9f:
9a:2d:dc:2f:99:72:b6:a3:73:fe:44:3f:94:e8:1c:
b7:42:c0:54:a4:f9:27:5f:9e:ae:60:1b:ce:02:4d:
b1:81:2b:39:01:75:75:7f:9a:0d:02:9a:62:cf:16:
8d:c7:12:e5:6e:0a:1f:0a:e2:a7:56:c2:a7:42:da:
94:dd:93:40:66:dc:4d:b3:80:70:0a:70:dc:54:03:
a4:bf:70:6d:04:44:8f:d2:6b:df:48:7c:0c:8a:50:
bf:1b:0f:f2:4c:2f:a3:3c:d7:58:ae:69:30:7b:4f:
da:8c:90:d3:ee:6b:0e:23:96:cb:54:05:b2:df:b0:
0a:27:4e:bb:39:88:8a:24:d2:62:61:ad:ae:b4:ae:
c6:07:d2:fd:e0:79:d1:0d:02:70:bb:2e:fc:b8:5c:
52:ae:ed:c3:c7:cc:28:5b:ec:40:b4:5b:b1:c6:d0:
d3:1d:75:ff:44:a1:5b:98:8b:15:eb:97:f3:9b:f6:
74:ec:3b:8c:eb:ba:18:18:ec:9e:40:32:67:bb:21:
35:13:bf:dd:b0:39:51:c5:78:33:d4:e2:0b:5d:6d:
ec:bb:18:52:95:dc:19:51:59:34:ad:1e:54:2b:e5:
e0:e5:2c:02:e1:13:23:68:7c:b7:6d:09:94:ef:0e:
f8:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:33:79:CA:D3:AF:1C:95:EE:34:94:2B:DA:5C:80:E8:65:AA:15:16
X509v3 Authority Key Identifier:
keyid:99:CE:56:9A:14:C2:DB:37:72:F2:31:87:CE:68:E6:54:1E:C0:04:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mc5WmhTC2zdy8jGHzmjmVB7ABI4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/kDN5ytOvHJXuNJQr2lyA6GWqFRY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/mc5WmhTC2zdy8jGHzmjmVB7ABI4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.170.129.0/24
Signature Algorithm: sha256WithRSAEncryption
86:46:fe:3c:5e:aa:64:10:62:2d:a9:88:a2:c6:d3:04:b1:b4:
44:7d:c8:aa:40:ba:f3:cb:54:45:81:86:81:f9:06:33:15:d8:
a8:ed:b4:0e:5d:42:14:7e:32:b5:38:c5:b6:db:44:41:b9:d5:
f4:6b:a7:27:82:67:91:ac:1b:4b:3f:d9:18:6e:52:44:39:45:
f8:7a:56:27:38:d0:0d:63:1f:69:65:c5:28:ed:73:8d:38:56:
2a:24:c1:75:e6:b2:b4:27:41:26:8e:66:36:a8:ab:2d:34:95:
af:de:90:1d:ba:ad:12:5f:85:23:c8:4e:75:db:a2:5e:e4:af:
f9:c9:2c:49:d1:e7:60:5b:13:93:f4:21:1c:18:8c:4d:0d:2b:
19:53:55:bd:eb:b7:54:7d:b2:c4:f6:58:03:6f:f2:bc:fe:45:
28:dc:4e:c0:e7:95:a4:04:ba:7f:c2:fb:6d:93:2f:57:e3:c8:
57:9e:47:57:10:6a:cc:c3:5e:28:7b:dc:3b:0b:44:90:9e:b9:
8e:5d:fe:b0:ac:79:5b:a4:d7:68:6e:f7:ba:6b:ee:89:a1:c3:
57:9c:79:75:b9:f3:f8:fb:75:cb:0c:9c:d6:ad:e1:1c:f6:43:
0c:44:28:61:23:65:3d:6d:13:1e:45:0d:0a:c3:5c:8f:84:75:
48:32:89:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:21 2023 by rpki-client on console-fra.rpki-client.org