Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/02f354-98cd-4325-9fbe-762432fdd4dd/1/EqAr1ROidRLSjTFwSUaEtQjaFEw.roa
File: EqAr1ROidRLSjTFwSUaEtQjaFEw.roa (raw, json)
Hash identifier: 8938WrCE6NIn7unglwYFehS8v0MQRxg5T0+sVddRP08=
Subject key identifier: 12:A0:2B:D5:13:A2:75:12:D2:8D:31:70:49:46:84:B5:08:DA:14:4C
Certificate issuer: /CN=cd57ec4c4025adab88b92074ad46056e9f93099f
Certificate serial: 1AF8FC69
Authority key identifier: CD:57:EC:4C:40:25:AD:AB:88:B9:20:74:AD:46:05:6E:9F:93:09:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zVfsTEAlrauIuSB0rUYFbp-TCZ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/02f354-98cd-4325-9fbe-762432fdd4dd/1/EqAr1ROidRLSjTFwSUaEtQjaFEw.roa
Signing time: Sat 01 Jan 2022 12:56:42 +0000
ROA not before: Sat 01 Jan 2022 12:56:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199391
IP address blocks: 185.38.200.0/24 maxlen: 24
185.38.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 452525161 (0x1af8fc69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd57ec4c4025adab88b92074ad46056e9f93099f
Validity
Not Before: Jan 1 12:56:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=12a02bd513a27512d28d3170494684b508da144c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:3c:c2:4c:48:58:a8:1d:63:ed:df:99:9e:da:
ee:08:26:d4:90:9f:67:2b:65:60:67:b1:16:a0:3c:
cf:3f:49:d6:d7:e2:e6:f3:19:3a:cb:20:90:03:b2:
90:95:79:72:76:b1:89:f2:05:07:f2:e1:c8:ea:3d:
18:9f:45:aa:82:63:f5:cd:17:31:c7:dd:14:ed:9d:
c4:d8:20:1d:af:be:e0:b7:db:de:34:54:e7:67:51:
82:fd:d3:00:32:81:d9:37:ae:3a:28:9e:d5:62:ce:
9b:da:dc:74:82:54:fc:17:e3:a6:59:f9:35:28:32:
08:b7:7d:be:37:d4:0d:6d:1f:d3:42:58:12:3b:33:
c0:af:6a:f4:48:95:13:6f:c3:a0:63:d1:fb:86:b1:
5e:ab:c7:8e:8a:a9:79:3d:05:b9:ee:f0:97:c9:ea:
17:2a:7c:4f:b6:cb:3b:03:63:3f:6f:07:c2:1c:fc:
bf:4e:f1:17:ba:2a:55:9e:f9:89:ca:6e:d2:3a:33:
60:a0:78:2c:9e:9f:38:5b:44:30:ad:1a:54:19:b9:
5a:d8:9c:16:cf:66:17:30:a0:ee:47:c4:71:11:da:
0e:dc:49:45:29:3d:e3:5f:ce:f9:ae:01:cc:4b:c6:
78:1b:6e:54:a7:88:df:4d:b2:89:2f:4e:d0:94:02:
5e:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:A0:2B:D5:13:A2:75:12:D2:8D:31:70:49:46:84:B5:08:DA:14:4C
X509v3 Authority Key Identifier:
keyid:CD:57:EC:4C:40:25:AD:AB:88:B9:20:74:AD:46:05:6E:9F:93:09:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zVfsTEAlrauIuSB0rUYFbp-TCZ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/02f354-98cd-4325-9fbe-762432fdd4dd/1/EqAr1ROidRLSjTFwSUaEtQjaFEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/02f354-98cd-4325-9fbe-762432fdd4dd/1/zVfsTEAlrauIuSB0rUYFbp-TCZ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.38.200.0/23
Signature Algorithm: sha256WithRSAEncryption
04:56:68:f2:70:16:a3:ba:e3:8d:69:cd:17:c4:f9:36:e3:e4:
5b:1c:76:af:eb:57:15:aa:66:d5:47:7d:dc:b6:d7:5f:01:14:
03:9a:0d:83:e3:c5:9a:e9:90:22:39:34:7e:a1:89:f5:e4:63:
1b:98:0f:5e:52:71:9e:80:15:b0:e0:5d:4a:48:0f:64:ad:bf:
3b:85:90:70:87:a1:02:ef:1d:69:c7:c4:bf:06:3d:e6:37:4e:
ca:70:c5:f7:30:5a:62:32:51:96:a7:3a:86:92:0c:a6:4d:5e:
c9:65:fd:18:f0:4b:d4:f0:5c:b2:73:6f:18:91:2c:6b:3f:c6:
fc:4a:95:67:f3:e0:be:6f:13:f5:1c:95:2a:04:4d:93:76:b1:
5b:7d:5d:8d:75:8b:25:2e:ed:78:a3:9a:c7:6d:b0:9f:5a:9b:
3d:04:af:4c:af:c0:da:ba:eb:84:be:3a:b5:de:04:e5:9f:2e:
f2:65:1f:e7:f6:00:70:2d:a5:d1:39:52:f9:78:10:92:b3:16:
b9:e8:a4:dc:5d:f7:97:3e:98:d7:19:32:57:af:1f:0a:c2:a8:
43:8c:ba:a9:8b:04:e4:13:24:db:b0:bf:8e:be:25:71:40:f4:
94:82:d9:c4:e7:3c:4f:37:35:05:d0:32:63:8f:33:b5:24:f1:
08:fa:48:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:22 2024 by rpki-client on console-fra.rpki-client.org