Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/c0d463-a174-4f5d-b4ee-96967fcd42e9/1/siJUqMavzNzMxcwf35xIBbExYLc.roa
File: siJUqMavzNzMxcwf35xIBbExYLc.roa (raw, json)
Hash identifier: u0/WKaebh58bOlxFm3t8kQyt4RZllFJ1pJbZOLAKM+I=
Subject key identifier: B2:22:54:A8:C6:AF:CC:DC:CC:C5:CC:1F:DF:9C:48:05:B1:31:60:B7
Certificate issuer: /CN=e6fc17bea555b6d38321f94028e515fba4fa74dc
Certificate serial: 0E01BE6A
Authority key identifier: E6:FC:17:BE:A5:55:B6:D3:83:21:F9:40:28:E5:15:FB:A4:FA:74:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5vwXvqVVttODIflAKOUV-6T6dNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/c0d463-a174-4f5d-b4ee-96967fcd42e9/1/siJUqMavzNzMxcwf35xIBbExYLc.roa
Signing time: Sat 01 Jan 2022 01:58:49 +0000
ROA not before: Sat 01 Jan 2022 01:58:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203409
IP address blocks: 185.135.68.0/24 maxlen: 24
185.135.69.0/24 maxlen: 24
185.135.70.0/23 maxlen: 23
185.135.70.0/24 maxlen: 24
185.135.68.0/23 maxlen: 23
185.135.68.0/22 maxlen: 22
185.135.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 234995306 (0xe01be6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6fc17bea555b6d38321f94028e515fba4fa74dc
Validity
Not Before: Jan 1 01:58:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b22254a8c6afccdcccc5cc1fdf9c4805b13160b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:de:a8:f8:a7:e1:e9:3c:61:ad:b8:bf:62:71:
a5:a8:c1:f3:72:27:5b:70:e3:48:73:c4:29:c0:92:
e0:78:ac:35:dc:ed:62:f5:48:69:1f:8b:30:6a:46:
fc:50:04:33:3e:fa:62:8e:9b:a1:1f:0f:ee:97:23:
ab:19:11:ea:3b:d2:fc:0d:a1:00:71:49:f5:36:b0:
f7:92:40:85:fd:36:31:b9:66:2c:0b:53:b7:1d:72:
78:29:2a:0a:fa:f0:fe:c4:39:0c:ad:ed:98:3e:49:
96:71:26:12:98:48:55:43:6e:19:9b:85:70:54:d1:
06:fa:3b:b4:67:f5:09:86:51:58:59:f8:b4:eb:e8:
9c:18:e4:92:74:95:86:09:6e:c4:e9:ac:7b:eb:39:
ed:cd:65:64:81:12:ca:3a:99:ee:5d:de:09:ea:a3:
3c:b6:e0:f6:9c:99:8d:37:9c:8a:32:3f:21:f0:46:
a6:a1:12:a0:6c:fc:bd:8d:b2:8b:52:6b:f9:37:22:
d3:2f:eb:93:56:3f:d8:43:98:49:3e:f5:20:57:e1:
ad:30:72:fa:29:c3:75:e0:cf:5c:1a:ec:d4:d3:3f:
68:d0:fa:cf:2e:44:36:21:0e:35:07:52:25:c2:9f:
50:75:cb:ea:d7:82:28:09:ad:6f:35:50:8c:3e:77:
86:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:22:54:A8:C6:AF:CC:DC:CC:C5:CC:1F:DF:9C:48:05:B1:31:60:B7
X509v3 Authority Key Identifier:
keyid:E6:FC:17:BE:A5:55:B6:D3:83:21:F9:40:28:E5:15:FB:A4:FA:74:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5vwXvqVVttODIflAKOUV-6T6dNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/c0d463-a174-4f5d-b4ee-96967fcd42e9/1/siJUqMavzNzMxcwf35xIBbExYLc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/c0d463-a174-4f5d-b4ee-96967fcd42e9/1/5vwXvqVVttODIflAKOUV-6T6dNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.135.68.0/22
Signature Algorithm: sha256WithRSAEncryption
27:f4:86:d9:12:56:a0:57:0e:9c:3d:5f:ad:76:7e:92:c7:54:
ad:f3:50:04:a1:c0:2d:23:8d:97:dd:a7:81:09:6a:64:39:89:
2d:85:7e:ea:55:4f:94:81:96:67:db:f6:46:13:18:49:57:83:
7a:23:48:fe:e7:5f:c6:08:f4:60:75:7c:9b:21:3c:51:86:06:
9b:48:38:d0:49:7c:40:be:eb:8f:7f:ea:c3:25:ad:df:ba:d1:
3a:1f:38:5f:48:73:2e:55:f0:47:09:0b:0c:36:56:13:53:c0:
e9:da:cb:08:44:2f:28:3d:61:8e:1a:02:a5:2f:d4:9b:37:46:
36:08:6e:d0:d4:2b:6b:eb:8e:fb:37:eb:cf:03:e8:6d:22:88:
54:0d:01:11:46:a2:24:c1:8b:b1:ad:20:b4:e3:3c:93:25:b4:
b5:21:70:68:74:1a:b9:46:91:73:2f:ba:37:26:12:13:51:f8:
eb:07:18:28:12:20:e6:00:af:f4:4f:39:7c:8f:ad:bf:88:8a:
44:4d:93:06:2b:8a:70:5c:7b:bd:84:c9:67:3e:84:cc:b0:cf:
e3:0b:92:fd:d5:fb:87:44:5c:b0:71:54:d8:75:33:7d:3e:8d:
1c:1d:d8:a1:3e:52:ae:fa:2d:43:21:5e:0d:81:8c:e9:bf:a5:
88:5f:bd:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:20 2023 by rpki-client on console.sobornost.net