Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/3a39e9-3d40-46f8-bb0f-5ba43b118f75/1/IelZ7kcfcg51Tbqda17yY9GtCPM.roa
File: IelZ7kcfcg51Tbqda17yY9GtCPM.roa (raw, json)
Hash identifier: jrgm6FzHaRxD6Iv77C0BzL/bJ8Dv6JsaYZpSROLMqI0=
Subject key identifier: 21:E9:59:EE:47:1F:72:0E:75:4D:BA:9D:6B:5E:F2:63:D1:AD:08:F3
Certificate issuer: /CN=0a2a157f00515f95b6df5dc0d52eb1b5d43fde5c
Certificate serial: 01824A8E1CED403D7D2B337BA3C0E32D05F7
Authority key identifier: 0A:2A:15:7F:00:51:5F:95:B6:DF:5D:C0:D5:2E:B1:B5:D4:3F:DE:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CioVfwBRX5W2313A1S6xtdQ_3lw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/3a39e9-3d40-46f8-bb0f-5ba43b118f75/1/IelZ7kcfcg51Tbqda17yY9GtCPM.roa
Signing time: Fri 29 Jul 2022 15:23:23 +0000
ROA not before: Fri 29 Jul 2022 15:23:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198102
IP address blocks: 185.211.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:4a:8e:1c:ed:40:3d:7d:2b:33:7b:a3:c0:e3:2d:05:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a2a157f00515f95b6df5dc0d52eb1b5d43fde5c
Validity
Not Before: Jul 29 15:23:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=21e959ee471f720e754dba9d6b5ef263d1ad08f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f6:ea:5f:3d:c9:01:a9:41:d1:0c:f7:fd:49:
f0:a9:81:32:a2:24:29:b8:2b:4e:61:d6:cd:7d:19:
57:18:ae:8d:0b:35:3d:04:d7:65:71:fc:27:b5:62:
d2:a0:7d:6e:47:7e:fb:97:b4:c1:15:89:96:bd:5e:
6e:c6:f3:aa:12:93:a5:52:b3:9e:17:bb:a7:09:0c:
44:9e:03:f5:6f:c6:1c:dd:e2:75:dc:a6:1d:cf:7c:
77:9b:c9:e9:f7:e9:e5:d8:99:65:b1:e6:d6:fe:27:
df:f8:16:f6:3b:19:7e:b7:3b:81:3d:84:90:40:c1:
48:91:36:d6:b2:12:e4:63:ea:0b:c2:ee:99:38:c1:
4d:0b:18:02:f1:ca:46:ce:07:02:c5:91:1d:81:4a:
ef:b2:69:da:a3:31:f3:86:c8:1e:5a:c4:3d:17:7b:
ae:b9:91:9c:0e:91:5b:23:8b:e6:87:c9:c7:7c:f3:
01:0a:75:0a:76:67:f8:26:27:b6:e6:2d:76:22:d4:
3f:6d:fe:b2:cb:c3:0f:35:33:3d:dc:b9:f6:14:86:
7f:e9:b1:42:b9:70:e4:ec:ea:85:bb:5e:87:83:ba:
0e:2f:54:f3:8c:1c:14:b1:42:14:16:b0:59:c4:1e:
74:84:08:72:4b:74:db:f4:64:1d:d6:a0:cb:c9:fe:
11:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:E9:59:EE:47:1F:72:0E:75:4D:BA:9D:6B:5E:F2:63:D1:AD:08:F3
X509v3 Authority Key Identifier:
keyid:0A:2A:15:7F:00:51:5F:95:B6:DF:5D:C0:D5:2E:B1:B5:D4:3F:DE:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CioVfwBRX5W2313A1S6xtdQ_3lw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/3a39e9-3d40-46f8-bb0f-5ba43b118f75/1/IelZ7kcfcg51Tbqda17yY9GtCPM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/3a39e9-3d40-46f8-bb0f-5ba43b118f75/1/CioVfwBRX5W2313A1S6xtdQ_3lw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.211.14.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:01:2f:b2:f1:52:fd:5a:3f:3a:3f:33:f8:b8:1d:89:e9:8d:
e7:77:eb:55:ad:89:18:d6:2f:5e:73:ff:92:51:71:68:c0:05:
79:37:19:78:f5:aa:7a:d7:fe:25:6b:93:37:35:d6:6c:c8:15:
2b:08:ee:5d:45:7f:5f:52:e8:12:98:71:b9:18:f0:21:55:ac:
fe:37:fb:3a:28:d5:f0:01:e6:b3:41:12:52:2d:ab:31:29:74:
31:ed:44:93:d4:c1:00:8e:cc:85:13:65:a1:e6:96:20:53:9e:
ca:60:0e:89:19:79:89:fb:59:fc:de:ae:72:76:4f:2b:53:8a:
bc:02:db:da:6a:cd:52:f9:b8:5c:af:47:55:ce:a2:48:94:37:
f3:61:a9:6c:ee:c1:f0:4c:a4:4c:fe:04:95:41:4a:96:45:04:
a7:ef:9a:7d:4f:09:b3:2e:ca:23:c1:5c:65:f9:17:75:bc:e3:
e7:31:36:3d:89:74:7c:f3:c5:58:0d:03:58:08:e4:0a:cf:24:
6d:1e:99:c6:6a:e0:46:bf:ba:89:0c:6a:9b:a9:ae:d4:a0:c6:
24:8a:06:32:d2:6c:7f:42:3a:54:31:92:2b:71:45:07:49:62:
db:ac:7e:97:05:04:df:c8:12:86:ef:00:78:14:6a:1f:7c:a0:
74:73:1d:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:29 2024 by rpki-client on console-fra.rpki-client.org