Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/32c5ce-28b2-47d7-abd5-2e9d6ca08701/1/TdHZNvIxpCKMWokxgS5fsHIHq9w.roa
File: TdHZNvIxpCKMWokxgS5fsHIHq9w.roa (raw, json)
Hash identifier: UzG90iGuKxe8RU1WjGmosgaQVeZPiT47npZ/gY6JnaE=
Subject key identifier: 4D:D1:D9:36:F2:31:A4:22:8C:5A:89:31:81:2E:5F:B0:72:07:AB:DC
Certificate issuer: /CN=65865968a1d8f4f377865c913af3b9af890d7cce
Certificate serial: 0FA71A22
Authority key identifier: 65:86:59:68:A1:D8:F4:F3:77:86:5C:91:3A:F3:B9:AF:89:0D:7C:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZYZZaKHY9PN3hlyROvO5r4kNfM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/32c5ce-28b2-47d7-abd5-2e9d6ca08701/1/TdHZNvIxpCKMWokxgS5fsHIHq9w.roa
Signing time: Sat 01 Jan 2022 02:57:21 +0000
ROA not before: Sat 01 Jan 2022 02:57:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5578
IP address blocks: 185.161.174.0/23 maxlen: 23
185.161.174.0/24 maxlen: 24
185.161.175.0/24 maxlen: 24
2a07:c387::/32 maxlen: 32
2a07:c380:50::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 262609442 (0xfa71a22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65865968a1d8f4f377865c913af3b9af890d7cce
Validity
Not Before: Jan 1 02:57:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4dd1d936f231a4228c5a8931812e5fb07207abdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:62:0a:ca:f4:8e:9a:d7:1a:1b:39:19:12:1f:
b5:6b:4a:3f:20:d6:6a:ea:f7:aa:e4:c9:21:f0:25:
b0:ef:65:0d:9e:74:a7:4e:20:98:a3:11:bd:77:f9:
97:1b:77:aa:99:0c:cb:27:08:34:c3:8f:e7:14:07:
5f:22:2d:81:82:87:f5:19:b4:27:4c:8e:ee:65:8f:
6e:60:6b:42:31:5f:16:78:62:6d:9e:e1:7d:e0:a7:
1c:fb:df:e1:f2:bc:1f:74:55:7a:23:8f:f4:75:2a:
b0:be:a1:59:1c:d9:86:ae:47:8a:d7:e6:90:c7:a7:
f7:b2:11:dc:48:7b:a9:56:76:c6:c5:a1:0e:cc:26:
0d:60:5f:ea:d2:63:e0:44:84:67:5f:7e:d6:20:14:
8d:c3:51:54:a0:e0:8d:86:47:43:0a:d3:02:8f:34:
b6:f6:22:d3:43:69:5d:58:79:aa:2c:e5:9a:4e:01:
de:ff:94:e8:5c:58:aa:2d:15:26:59:e8:4f:4f:c1:
07:df:ab:e2:c2:53:ec:4d:df:13:37:56:2c:fd:b1:
16:45:4d:ce:97:c6:42:bf:ed:46:9f:1f:a5:af:fb:
8c:23:11:14:d1:59:e2:58:e4:53:33:0a:04:c1:b7:
64:8b:d3:be:8c:61:0b:e0:a4:4b:70:2f:21:02:d0:
23:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:D1:D9:36:F2:31:A4:22:8C:5A:89:31:81:2E:5F:B0:72:07:AB:DC
X509v3 Authority Key Identifier:
keyid:65:86:59:68:A1:D8:F4:F3:77:86:5C:91:3A:F3:B9:AF:89:0D:7C:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZYZZaKHY9PN3hlyROvO5r4kNfM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/32c5ce-28b2-47d7-abd5-2e9d6ca08701/1/TdHZNvIxpCKMWokxgS5fsHIHq9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/32c5ce-28b2-47d7-abd5-2e9d6ca08701/1/ZYZZaKHY9PN3hlyROvO5r4kNfM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.174.0/23
IPv6:
2a07:c380:50::/48
2a07:c387::/32
Signature Algorithm: sha256WithRSAEncryption
7f:3f:19:59:84:68:23:1c:5e:00:34:b6:8c:15:1b:35:43:45:
13:36:1b:4e:ed:84:83:f5:39:59:25:e7:8f:f5:3b:0b:b0:38:
c2:7c:c0:f9:68:7c:71:d8:6d:51:3e:1c:99:a1:e4:91:0e:a9:
38:ea:b6:27:7e:db:3d:e3:3c:83:53:1b:25:72:d4:90:e4:19:
cd:4f:1c:30:4c:9a:da:e0:a3:6c:77:a9:df:b5:0a:d1:95:06:
7a:27:62:d8:56:7a:9a:61:23:59:92:32:68:dc:3b:e2:18:65:
59:dc:2f:5e:33:73:dc:de:d5:69:a7:6d:28:92:cb:f9:5e:05:
63:6b:2a:ca:ff:78:90:37:c1:2e:0f:1f:73:c8:ad:a5:81:b1:
58:c4:74:1a:b6:d9:b7:66:75:10:90:be:00:e9:a6:6b:31:ba:
50:cb:1d:ca:d6:de:78:bd:f5:08:4e:56:25:b3:79:24:df:e2:
47:0d:95:a8:c3:69:b8:e8:7b:77:eb:20:16:04:13:f8:c7:97:
58:08:cf:48:42:ed:56:dc:3c:b4:24:a4:6a:1b:b0:4f:b6:a4:
92:bf:4d:cd:01:9e:82:26:0f:00:6d:8c:41:95:af:ea:5e:77:
e1:b5:2c:96:35:6e:19:02:86:bc:f1:ef:15:49:fb:05:21:91:
cd:42:e2:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:37 2023 by rpki-client on console.sobornost.net