Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/153ff7-d4b2-407f-a216-9f6aa4cf0799/1/EKCkeIkP7FLwfD0f5_SR8yri8sY.roa
File: EKCkeIkP7FLwfD0f5_SR8yri8sY.roa (raw, json)
Hash identifier: G3+G9XN2g3PdsXOFwJ229lb57TFyVdXvFtU1R0odNvI=
Subject key identifier: 10:A0:A4:78:89:0F:EC:52:F0:7C:3D:1F:E7:F4:91:F3:2A:E2:F2:C6
Certificate issuer: /CN=dab80ea0f9965f6880329b12fec27a9390fc1cb7
Certificate serial: 01FDEB0B
Authority key identifier: DA:B8:0E:A0:F9:96:5F:68:80:32:9B:12:FE:C2:7A:93:90:FC:1C:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2rgOoPmWX2iAMpsS_sJ6k5D8HLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/153ff7-d4b2-407f-a216-9f6aa4cf0799/1/EKCkeIkP7FLwfD0f5_SR8yri8sY.roa
Signing time: Sat 01 Jan 2022 10:04:41 +0000
ROA not before: Sat 01 Jan 2022 10:04:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13101
IP address blocks: 185.230.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33417995 (0x1fdeb0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dab80ea0f9965f6880329b12fec27a9390fc1cb7
Validity
Not Before: Jan 1 10:04:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=10a0a478890fec52f07c3d1fe7f491f32ae2f2c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:65:56:93:9a:f1:2d:c3:df:eb:67:65:ad:2f:
8c:87:eb:b3:16:58:12:9b:0b:70:dd:be:22:3d:90:
be:e1:15:1e:85:e8:fe:d7:2d:cf:13:dc:19:e8:64:
46:ed:4e:c5:89:48:99:e0:f6:4d:16:8a:f8:7d:08:
27:62:0c:8b:1a:f9:2a:68:e0:97:51:a5:63:13:4d:
2f:40:57:4b:8c:71:79:40:93:cc:52:06:17:df:87:
2c:3e:f2:9e:ad:5d:c9:b2:d5:87:26:a6:db:56:86:
50:70:7c:37:6a:87:72:c6:5d:20:cc:75:5a:4c:0b:
f6:52:f6:df:79:b5:da:18:0f:6b:02:07:7d:eb:cd:
63:e5:79:6a:a5:d4:9d:b5:4c:eb:ff:4a:ae:94:4a:
9f:93:a0:77:dc:a9:cb:a4:40:7a:14:4a:3f:56:04:
ff:fe:26:70:df:73:c8:4e:a2:77:46:f9:52:0d:93:
90:5a:c0:07:00:59:21:d3:d0:cd:fc:32:af:9f:ed:
62:f2:f1:18:ee:ac:34:b0:15:cb:f0:dd:f3:9b:b1:
02:a2:5d:b7:eb:74:20:bb:92:29:eb:dd:5b:fb:03:
dd:4d:74:3b:11:4e:24:29:a5:f9:a8:9d:1a:66:fb:
42:43:10:35:3e:1e:fc:f9:3f:bd:a1:3e:f2:12:22:
5d:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:A0:A4:78:89:0F:EC:52:F0:7C:3D:1F:E7:F4:91:F3:2A:E2:F2:C6
X509v3 Authority Key Identifier:
keyid:DA:B8:0E:A0:F9:96:5F:68:80:32:9B:12:FE:C2:7A:93:90:FC:1C:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2rgOoPmWX2iAMpsS_sJ6k5D8HLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/153ff7-d4b2-407f-a216-9f6aa4cf0799/1/EKCkeIkP7FLwfD0f5_SR8yri8sY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/153ff7-d4b2-407f-a216-9f6aa4cf0799/1/2rgOoPmWX2iAMpsS_sJ6k5D8HLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.196.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:d6:3d:b8:44:9a:81:ae:19:66:93:af:5d:9a:19:e0:87:6c:
57:4d:e7:ce:e0:29:37:25:97:17:05:82:cc:78:d1:06:ff:05:
3d:8b:46:f1:19:8b:f8:04:b6:e0:0c:7b:57:61:51:19:21:d4:
41:90:bd:4a:c4:15:81:96:d8:8f:b6:4d:74:d3:ca:e1:83:4c:
7c:bc:6a:86:c9:a9:c1:db:8e:df:d3:91:9b:ab:a4:52:f9:d1:
c5:a7:74:e8:e0:4b:a1:a5:3d:85:94:26:83:da:02:64:c1:b6:
21:2d:f7:fb:ba:8d:34:28:cc:f0:8d:a5:76:0b:54:fb:dc:a4:
35:01:57:48:26:b7:bd:0c:47:03:ee:37:9d:60:02:4b:62:c2:
a4:87:02:d7:13:9e:fe:e0:4b:7e:dc:d9:a0:28:52:55:7f:33:
8d:4a:83:99:4a:6f:80:72:e9:bf:c6:d1:d3:78:90:60:c2:b3:
77:cb:f7:56:e2:b4:c1:81:c8:7b:9b:12:39:57:01:63:8a:43:
09:5e:f9:9a:1d:ad:c3:47:46:c6:d0:a9:ed:9d:28:63:2d:63:
a9:37:bd:bd:05:73:ca:4b:f1:81:7c:fe:1f:ce:e2:6a:1e:6a:
7c:73:81:63:a6:3f:bc:6b:28:47:c2:13:f3:b0:c9:76:73:ae:
cf:76:fe:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:02 2024 by rpki-client on console-ams.rpki-client.org