Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8e3f7b-c78f-4663-bf1d-f5dbdf722f5d/1/ekxsWUxyjX4i8Cfu4UuWV6U61Uc.roa
File: ekxsWUxyjX4i8Cfu4UuWV6U61Uc.roa (raw, json)
Hash identifier: mpzKBKD7CxSHGtwuWxzb0KkQERyySFrWp3WngjZVxSI=
Subject key identifier: 7A:4C:6C:59:4C:72:8D:7E:22:F0:27:EE:E1:4B:96:57:A5:3A:D5:47
Certificate issuer: /CN=afea396f4de355da8dc079a1e885e0c3375ece32
Certificate serial: 18F05513
Authority key identifier: AF:EA:39:6F:4D:E3:55:DA:8D:C0:79:A1:E8:85:E0:C3:37:5E:CE:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r-o5b03jVdqNwHmh6IXgwzdezjI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8e3f7b-c78f-4663-bf1d-f5dbdf722f5d/1/ekxsWUxyjX4i8Cfu4UuWV6U61Uc.roa
Signing time: Sat 01 Jan 2022 13:58:30 +0000
ROA not before: Sat 01 Jan 2022 13:58:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199728
IP address blocks: 185.48.112.0/24 maxlen: 24
185.48.114.0/23 maxlen: 23
185.48.113.0/24 maxlen: 24
2a04:adc0::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 418403603 (0x18f05513)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afea396f4de355da8dc079a1e885e0c3375ece32
Validity
Not Before: Jan 1 13:58:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a4c6c594c728d7e22f027eee14b9657a53ad547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c6:27:31:db:74:e0:92:2d:e7:65:ef:9b:8e:
0a:f6:ab:5b:5e:56:a3:64:59:c1:0f:52:4d:39:55:
e9:c4:4e:9d:2a:a2:1a:73:14:8f:fa:8a:d9:2c:a7:
94:38:76:13:c6:b8:e8:ff:d8:89:6f:87:a0:e7:05:
ff:4f:5d:e5:32:7f:8e:39:d4:bb:d9:cb:e2:c2:73:
0c:f0:33:f7:4b:4f:12:b0:b8:71:72:45:74:be:98:
83:46:67:e6:b7:00:0e:9d:d4:c0:b4:8c:4a:5d:0e:
3c:94:67:34:02:83:1d:1d:0c:7a:14:dc:dc:f8:78:
a6:82:6d:1e:cc:bd:2f:ce:90:45:6b:c2:d1:53:c6:
ff:69:04:98:df:57:88:a2:ce:96:f0:87:6b:22:07:
ce:6f:2b:d8:c8:0f:0e:1d:37:07:1e:38:2b:96:5e:
0e:20:93:4a:e5:2c:a6:ef:9a:c5:73:24:e7:40:ea:
20:60:2b:6a:9c:41:fe:ac:e1:28:c3:b8:db:cc:af:
44:02:05:54:c5:f3:9f:c8:b3:00:e6:c4:11:0e:bc:
d2:ce:31:6b:21:cf:28:60:3d:6d:08:d2:39:2e:bd:
fa:85:f1:09:73:0b:61:2e:53:a5:c2:bd:5a:28:69:
66:6b:c8:b5:78:7e:2a:f3:2a:3d:ad:19:cd:3d:f3:
b7:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:4C:6C:59:4C:72:8D:7E:22:F0:27:EE:E1:4B:96:57:A5:3A:D5:47
X509v3 Authority Key Identifier:
keyid:AF:EA:39:6F:4D:E3:55:DA:8D:C0:79:A1:E8:85:E0:C3:37:5E:CE:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r-o5b03jVdqNwHmh6IXgwzdezjI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8e3f7b-c78f-4663-bf1d-f5dbdf722f5d/1/ekxsWUxyjX4i8Cfu4UuWV6U61Uc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8e3f7b-c78f-4663-bf1d-f5dbdf722f5d/1/r-o5b03jVdqNwHmh6IXgwzdezjI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.48.112.0/22
IPv6:
2a04:adc0::/29
Signature Algorithm: sha256WithRSAEncryption
9c:d2:90:0d:a3:a5:0c:bd:a5:46:27:fa:5a:84:f5:04:63:2f:
0f:65:2c:5e:94:3d:ba:e9:59:b5:c8:92:ab:64:ff:12:1b:f9:
28:82:1b:93:87:79:1c:a6:e9:4a:b2:00:8f:4e:19:f7:49:a3:
67:61:1f:4c:b0:35:a1:2c:e5:84:0a:d8:15:f8:87:8a:0e:70:
05:bb:07:09:f7:5d:c1:dc:33:1c:fd:a2:8b:2a:00:59:bf:ac:
2c:a5:5a:b6:b7:dc:7c:4e:77:c5:04:e8:c3:ed:4b:52:ec:d9:
0d:1e:c5:99:ec:ba:d0:37:08:b4:64:22:e1:70:fd:dd:c3:05:
3b:40:7b:31:b5:8d:53:f4:6a:8d:e8:49:3d:a4:47:5d:e4:12:
8c:57:58:80:79:38:96:98:f2:4c:b1:5b:f2:64:4b:34:6e:7e:
df:03:98:ec:3f:6a:1d:e1:25:1e:15:c2:e3:9b:e5:dc:c1:3e:
85:41:cd:a5:5a:3e:79:eb:56:38:17:d8:1b:22:de:ce:0a:86:
12:5f:77:a6:94:59:71:cd:48:ad:b4:5d:de:09:83:4b:67:75:
77:3d:17:ca:e7:3b:30:10:58:1a:18:2d:3d:c9:ed:ad:f5:37:
b4:ee:41:41:3c:5c:e0:a2:34:ee:d8:a2:2f:fb:6e:cc:f8:31:
63:a7:4b:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:17 2024 by rpki-client on console-fra.rpki-client.org