Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/01e70b-945c-4817-8189-7e179466298c/1/5bQ9Sfq8MoOBA8SLjRS6E6497E8.roa
File: 5bQ9Sfq8MoOBA8SLjRS6E6497E8.roa (raw, json)
Hash identifier: rjtswneiLYW/s5Nbri2ikGV0MYdLb8dAQhVwXcdobFc=
Subject key identifier: E5:B4:3D:49:FA:BC:32:83:81:03:C4:8B:8D:14:BA:13:AE:3D:EC:4F
Certificate issuer: /CN=8562f4a8936593cdec6dad7e2ecf1b79bf65c05a
Certificate serial: 051A2080
Authority key identifier: 85:62:F4:A8:93:65:93:CD:EC:6D:AD:7E:2E:CF:1B:79:BF:65:C0:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWL0qJNlk83sba1-Ls8beb9lwFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/01e70b-945c-4817-8189-7e179466298c/1/5bQ9Sfq8MoOBA8SLjRS6E6497E8.roa
Signing time: Sat 01 Jan 2022 00:58:14 +0000
ROA not before: Sat 01 Jan 2022 00:58:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60405
IP address blocks: 185.172.34.0/24 maxlen: 24
185.172.32.0/24 maxlen: 24
185.172.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85598336 (0x51a2080)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8562f4a8936593cdec6dad7e2ecf1b79bf65c05a
Validity
Not Before: Jan 1 00:58:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5b43d49fabc32838103c48b8d14ba13ae3dec4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fd:18:91:10:63:c1:ef:e2:8b:5e:b3:28:fd:
25:3e:d2:9a:6a:de:bc:97:3f:02:d5:33:52:59:a1:
34:90:69:68:5b:33:e9:96:1a:80:a3:0e:40:4b:d3:
b2:c4:cc:c7:1a:60:27:e8:7f:c4:1c:97:c1:79:aa:
c7:1b:fa:4a:ee:8c:a2:96:1f:f4:3c:16:ae:30:97:
4f:97:11:92:6e:84:9c:01:82:83:30:db:79:4c:ac:
41:77:6b:48:61:0f:18:a6:3a:fc:ce:13:1e:75:85:
66:41:d0:cc:9a:23:fa:9b:cf:4a:a1:aa:3e:42:f1:
e8:b5:a9:e9:eb:14:37:f6:88:e4:df:43:01:8c:c1:
0e:1b:87:e0:b5:5c:c2:92:23:6b:d1:22:8c:30:63:
65:68:58:a9:5f:7e:02:8f:b0:a1:b0:d4:ad:b2:80:
2b:3c:db:a8:18:48:a6:e3:c9:40:7a:d9:41:01:9e:
39:27:28:54:dd:f2:80:96:f4:83:37:25:bb:7f:8b:
32:17:29:c0:d1:6c:b8:86:d4:ed:b5:63:9f:53:7b:
71:7f:e5:c3:40:6f:aa:23:ef:67:d1:84:d7:fc:80:
8f:be:06:7b:79:40:60:82:b0:f6:66:91:e1:5b:da:
1a:ff:eb:79:36:b5:7b:d1:b8:f0:54:a7:4a:18:e2:
c7:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:B4:3D:49:FA:BC:32:83:81:03:C4:8B:8D:14:BA:13:AE:3D:EC:4F
X509v3 Authority Key Identifier:
keyid:85:62:F4:A8:93:65:93:CD:EC:6D:AD:7E:2E:CF:1B:79:BF:65:C0:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWL0qJNlk83sba1-Ls8beb9lwFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/01e70b-945c-4817-8189-7e179466298c/1/5bQ9Sfq8MoOBA8SLjRS6E6497E8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/01e70b-945c-4817-8189-7e179466298c/1/hWL0qJNlk83sba1-Ls8beb9lwFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.32.0/24
185.172.34.0/23
Signature Algorithm: sha256WithRSAEncryption
93:b7:91:0c:b4:9e:5f:bd:4d:73:34:85:4c:84:ad:c6:af:a9:
6e:19:7e:fb:38:51:b6:3c:95:98:98:2d:bf:37:84:a6:81:1f:
07:5c:f0:09:97:60:b4:91:c1:b7:6d:3b:13:9c:64:2c:a9:69:
ef:d5:5e:c0:77:e6:cd:fb:3b:65:8b:7c:57:cb:b1:0c:42:19:
ac:b9:a8:20:ab:02:3e:bb:39:74:90:54:61:e7:a1:f5:7a:e3:
06:15:91:97:1c:f0:2b:74:2c:88:f8:11:60:c8:b2:17:1d:c8:
56:15:4d:c7:8a:3d:4a:a4:fe:c7:dd:fd:38:51:a3:95:4e:fa:
46:fb:a7:b6:8e:f2:75:90:f2:da:8f:7e:38:a6:9b:ac:f7:01:
c2:4a:a5:a4:67:39:0a:e1:0f:af:b5:2c:e5:a4:8e:cc:36:3c:
82:c0:72:40:f6:b6:d6:b8:37:fa:ed:64:37:84:b4:4a:2d:7a:
ab:f0:5b:83:fc:47:19:44:d1:3c:33:e8:b9:80:71:f3:d2:d6:
31:86:c6:fe:e9:64:71:90:af:5a:81:57:43:22:f7:46:a3:b7:
23:9c:41:1a:98:1a:2d:9a:e2:69:ad:a4:06:e3:3e:d0:ab:17:
56:18:2d:30:2d:5e:bb:1b:34:52:79:52:7e:e6:c5:44:74:2f:
3c:9e:f9:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:36 2024 by rpki-client on console-fra.rpki-client.org