Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/bebc33-e901-4559-bdd0-b53204d93c33/1/ePpkwcIt9s6Anad9vFjV7V192hI.roa
File: ePpkwcIt9s6Anad9vFjV7V192hI.roa (raw, json)
Hash identifier: L7Mpl4OVRbS0yiOWweRcf7s53gdbGl90DENdkLJ2Vso=
Subject key identifier: 78:FA:64:C1:C2:2D:F6:CE:80:9D:A7:7D:BC:58:D5:ED:5D:7D:DA:12
Certificate issuer: /CN=81e34878f96b3997aa78f4c7fb695ef0dbc6d360
Certificate serial: 1221C6C3
Authority key identifier: 81:E3:48:78:F9:6B:39:97:AA:78:F4:C7:FB:69:5E:F0:DB:C6:D3:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/geNIePlrOZeqePTH-2le8NvG02A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/bebc33-e901-4559-bdd0-b53204d93c33/1/ePpkwcIt9s6Anad9vFjV7V192hI.roa
Signing time: Sat 01 Jan 2022 10:59:29 +0000
ROA not before: Sat 01 Jan 2022 10:59:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202831
IP address blocks: 185.20.108.0/22 maxlen: 22
2a00:4de0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 304203459 (0x1221c6c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81e34878f96b3997aa78f4c7fb695ef0dbc6d360
Validity
Not Before: Jan 1 10:59:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=78fa64c1c22df6ce809da77dbc58d5ed5d7dda12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:24:22:ba:16:42:5b:ba:c9:7a:75:6c:e3:35:
71:62:2a:8b:cd:56:c5:fa:7d:a1:2d:ed:20:ff:8b:
7a:b7:18:92:2a:8a:da:06:de:67:23:35:60:e4:40:
1d:29:c4:10:0e:ef:75:d1:9f:e8:f9:c2:76:14:0b:
6a:c5:6d:94:b9:31:e8:66:48:ff:75:19:88:f1:21:
ad:80:61:4c:07:1f:b9:47:47:c5:68:82:ae:f3:b9:
cf:7a:b8:e6:4a:7b:f5:12:ca:df:21:cc:89:74:5c:
f6:cb:be:22:fb:fc:32:7e:f9:14:ef:6a:cc:24:d4:
8f:5d:32:df:e3:15:f4:11:a2:46:ce:53:59:fb:65:
b1:82:ae:c8:5b:9c:a8:52:11:4a:d8:68:96:8e:f7:
a8:fc:fb:57:9c:e5:81:69:cb:fb:c8:9a:a2:ef:93:
8d:05:7b:99:c8:0f:c7:80:af:e8:ee:89:76:ec:2a:
62:74:1e:a0:32:f4:1c:96:63:d6:d7:2a:66:50:7e:
1e:93:1c:85:d7:e4:50:aa:84:e2:01:72:72:f4:37:
71:1e:a0:1e:d6:15:d8:d6:47:e1:d9:be:de:21:45:
71:d1:54:5b:1b:cb:83:3b:07:19:93:6d:8a:68:34:
81:11:86:cc:89:23:88:6a:a4:a6:94:9d:c6:bd:b5:
93:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:FA:64:C1:C2:2D:F6:CE:80:9D:A7:7D:BC:58:D5:ED:5D:7D:DA:12
X509v3 Authority Key Identifier:
keyid:81:E3:48:78:F9:6B:39:97:AA:78:F4:C7:FB:69:5E:F0:DB:C6:D3:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/geNIePlrOZeqePTH-2le8NvG02A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/bebc33-e901-4559-bdd0-b53204d93c33/1/ePpkwcIt9s6Anad9vFjV7V192hI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/bebc33-e901-4559-bdd0-b53204d93c33/1/geNIePlrOZeqePTH-2le8NvG02A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.20.108.0/22
IPv6:
2a00:4de0::/29
Signature Algorithm: sha256WithRSAEncryption
a8:11:87:c3:ee:11:9a:3c:47:40:0d:43:73:61:e1:f3:24:4f:
ab:4e:a0:36:6a:c1:df:4d:78:3e:8f:46:20:ac:8c:76:50:e5:
f0:7f:be:42:76:50:e4:51:62:c5:4e:dc:9b:57:1d:45:ba:e2:
f4:f0:46:02:54:e7:08:a6:ea:0d:60:5b:12:06:95:3b:7a:14:
17:29:7a:5a:3c:e8:ca:c7:8f:bd:53:4a:93:87:0f:86:c6:bb:
ef:81:f9:6f:a7:67:7d:63:e2:be:c1:8b:dc:65:16:5b:a1:75:
a8:fa:ef:0c:53:3d:41:4e:e4:30:7a:51:d3:ef:f8:e7:f5:9a:
07:17:7d:98:84:b8:a4:dc:9e:bd:70:5c:54:78:a7:76:5c:96:
a8:4c:5b:43:38:8d:96:4e:a7:db:f7:ea:82:09:4f:df:8b:dd:
07:bc:54:09:f0:5b:66:f0:f2:dc:2c:ce:b4:6a:73:05:ac:7b:
57:c5:ef:9e:f1:ef:3a:76:ef:16:85:38:57:fd:ed:32:5b:e0:
d6:58:4e:56:3c:17:36:7e:47:1c:3b:dd:d4:cc:fd:51:5f:26:
88:bc:c0:f2:ab:fa:b5:f9:9a:ff:45:1a:47:eb:86:52:dc:38:
61:42:96:b2:92:21:f8:45:0c:8f:ce:0d:44:6a:25:6e:1c:c4:
b6:b6:e5:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:39 2024 by rpki-client on console-ams.rpki-client.org