Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/395224-8ca2-444f-985b-5f0b4ce64867/1/G5LJmGk0UJ-rFWQzhadyB-w9PnU.roa
File: G5LJmGk0UJ-rFWQzhadyB-w9PnU.roa (raw, json)
Hash identifier: AXnu9eFdcVSNyWdL+9aMTAnZKrKZ9jSAwMLRQhHEOwo=
Subject key identifier: 1B:92:C9:98:69:34:50:9F:AB:15:64:33:85:A7:72:07:EC:3D:3E:75
Certificate issuer: /CN=c66479bdf7edb90b51aa729634104c0d2802ac9f
Certificate serial: 0D9B2ED8
Authority key identifier: C6:64:79:BD:F7:ED:B9:0B:51:AA:72:96:34:10:4C:0D:28:02:AC:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmR5vfftuQtRqnKWNBBMDSgCrJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/395224-8ca2-444f-985b-5f0b4ce64867/1/G5LJmGk0UJ-rFWQzhadyB-w9PnU.roa
Signing time: Sat 01 Jan 2022 10:56:21 +0000
ROA not before: Sat 01 Jan 2022 10:56:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200780
IP address blocks: 185.73.206.0/24 maxlen: 24
185.73.204.0/22 maxlen: 22
185.73.204.0/24 maxlen: 24
185.73.205.0/24 maxlen: 24
2a05:46c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 228273880 (0xd9b2ed8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66479bdf7edb90b51aa729634104c0d2802ac9f
Validity
Not Before: Jan 1 10:56:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1b92c9986934509fab15643385a77207ec3d3e75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:49:9f:7c:0d:6b:b4:52:51:b0:09:65:0d:46:
f8:6e:8a:8a:7b:95:ef:89:b8:3d:45:bf:2e:ee:f6:
94:20:be:2a:9b:f6:00:96:7e:6f:54:19:ac:b4:d6:
77:a0:25:d3:3a:98:eb:81:93:d1:8d:bd:70:d2:3e:
e7:66:7d:52:38:d6:a3:00:57:16:c0:16:32:e8:fa:
36:17:87:30:c1:f5:10:43:ad:81:a7:15:35:e3:07:
43:95:11:f5:47:f9:54:6e:72:c2:f6:a5:27:be:8f:
ef:29:f5:fc:55:55:6c:a1:02:0a:16:22:41:e9:43:
eb:e7:e8:27:47:d6:a3:67:19:d5:71:3c:c9:51:0f:
41:8a:53:18:63:d1:3e:5d:99:13:a4:01:42:9e:2b:
b5:b5:8b:d2:75:fa:1c:c9:11:f6:9c:46:a8:8e:17:
a3:03:a3:b7:62:e8:0b:9f:78:d1:ce:ed:e2:67:fd:
77:84:6a:df:95:2c:74:b0:da:f4:0d:60:f4:07:02:
77:43:90:da:ff:bd:a9:44:e5:e5:05:f3:1b:08:a1:
74:d2:9a:25:fa:d1:5a:c0:67:ed:e0:3d:fe:d1:d1:
80:7d:dc:4d:c2:87:a8:46:c8:d5:0f:27:cc:73:7d:
44:4b:17:a8:2b:c4:05:31:4b:e0:11:95:1b:c2:ca:
9a:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:92:C9:98:69:34:50:9F:AB:15:64:33:85:A7:72:07:EC:3D:3E:75
X509v3 Authority Key Identifier:
keyid:C6:64:79:BD:F7:ED:B9:0B:51:AA:72:96:34:10:4C:0D:28:02:AC:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmR5vfftuQtRqnKWNBBMDSgCrJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/395224-8ca2-444f-985b-5f0b4ce64867/1/G5LJmGk0UJ-rFWQzhadyB-w9PnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/395224-8ca2-444f-985b-5f0b4ce64867/1/xmR5vfftuQtRqnKWNBBMDSgCrJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.73.204.0/22
IPv6:
2a05:46c0::/29
Signature Algorithm: sha256WithRSAEncryption
35:f4:2f:c5:0a:91:e7:12:f1:82:bb:43:eb:9f:02:39:55:f9:
b6:99:dc:b7:cb:80:81:d9:ee:69:80:72:ba:49:32:71:43:92:
fa:ce:65:9d:ae:ac:cc:61:7f:3d:ef:bd:6f:f4:34:85:47:7f:
7e:9d:03:f2:28:fd:af:cf:36:32:de:43:8f:e3:92:b8:a9:ca:
2f:27:e9:96:54:15:44:d9:f0:15:52:05:9c:ea:c7:af:15:d5:
b5:64:50:61:cf:7a:38:89:f8:a3:9a:01:06:01:c4:cc:38:4b:
34:9e:78:a6:3f:5d:45:94:32:37:b9:e8:b6:4f:17:95:fd:67:
13:53:90:7a:32:13:f2:12:e4:b7:64:a9:95:5f:24:4d:57:de:
bd:79:57:bd:a0:cf:df:0f:30:10:76:d5:03:60:2f:41:d8:f8:
16:5b:52:e0:d6:29:44:51:92:8a:db:dd:79:25:86:1e:cf:70:
73:b6:da:22:a6:40:d4:79:55:a3:95:4e:8c:5f:37:e4:b4:6f:
8a:67:f9:30:47:71:53:df:2e:c1:11:06:64:cc:bd:7c:2a:fc:
c9:f0:93:a7:7c:31:f5:b0:33:df:c4:2c:a5:77:2f:d4:23:6b:
33:a4:e7:80:4d:9a:ca:99:19:bf:c5:b5:26:82:ec:0d:d7:23:
24:2f:25:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:43 2023 by rpki-client on console.sobornost.net