Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/07cc25-8597-430b-bc52-448b9b95b09e/1/7P18XL-8P3SLoBfsuDqf7e1CnTU.roa
File: 7P18XL-8P3SLoBfsuDqf7e1CnTU.roa (raw, json)
Hash identifier: IkxeYQbE8vAvRZGZD0reL7HFi0XpqetHGIlQddz+y6w=
Subject key identifier: EC:FD:7C:5C:BF:BC:3F:74:8B:A0:17:EC:B8:3A:9F:ED:ED:42:9D:35
Certificate issuer: /CN=26d38293f669db48b6d0bd1036adfdef6bd3d375
Certificate serial: 08DEF8BC
Authority key identifier: 26:D3:82:93:F6:69:DB:48:B6:D0:BD:10:36:AD:FD:EF:6B:D3:D3:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JtOCk_Zp20i20L0QNq3972vT03U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/07cc25-8597-430b-bc52-448b9b95b09e/1/7P18XL-8P3SLoBfsuDqf7e1CnTU.roa
Signing time: Sat 01 Jan 2022 12:58:22 +0000
ROA not before: Sat 01 Jan 2022 12:58:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49956
IP address blocks: 185.163.8.0/22 maxlen: 22
185.114.168.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148830396 (0x8def8bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26d38293f669db48b6d0bd1036adfdef6bd3d375
Validity
Not Before: Jan 1 12:58:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ecfd7c5cbfbc3f748ba017ecb83a9feded429d35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b1:93:52:29:65:c6:19:d4:eb:54:4d:b4:8c:
01:77:0f:2b:39:f4:85:94:99:49:a5:79:78:d8:8d:
27:af:40:11:47:02:8b:55:6e:c0:7c:a5:49:c5:5a:
e4:99:09:13:32:c9:5f:fc:4f:d1:96:a3:23:98:e3:
a8:e4:f6:6d:34:e7:b6:eb:01:ca:dd:92:40:6e:3b:
8c:00:01:58:bf:80:1b:b0:e4:71:aa:53:4d:93:21:
c8:de:89:e9:3f:52:2e:bb:b1:20:88:b8:9e:3e:cb:
e2:c1:e5:38:39:55:4a:d0:f1:f9:24:a2:5d:96:f0:
1f:a7:d8:7c:a7:11:a5:33:be:17:d5:7a:05:0a:5a:
28:ff:48:7a:a9:08:43:41:e8:d1:77:de:29:24:e6:
08:67:00:88:50:b6:34:6d:a0:6e:2c:f6:19:70:4d:
1e:00:ec:1a:28:fd:79:24:ca:b0:74:49:39:da:bf:
6c:25:9f:87:7d:2d:c7:78:50:9c:ad:ce:84:10:ac:
f6:cd:66:1b:ef:1d:75:94:d5:d9:19:d7:4e:5f:ae:
83:ff:ad:c0:e6:b0:f1:db:79:59:f6:15:15:39:44:
eb:24:e3:52:13:26:18:37:08:f3:49:ec:1a:98:9e:
23:30:42:85:49:8f:98:fa:7a:a6:32:27:fc:93:62:
c4:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:FD:7C:5C:BF:BC:3F:74:8B:A0:17:EC:B8:3A:9F:ED:ED:42:9D:35
X509v3 Authority Key Identifier:
keyid:26:D3:82:93:F6:69:DB:48:B6:D0:BD:10:36:AD:FD:EF:6B:D3:D3:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JtOCk_Zp20i20L0QNq3972vT03U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/07cc25-8597-430b-bc52-448b9b95b09e/1/7P18XL-8P3SLoBfsuDqf7e1CnTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/07cc25-8597-430b-bc52-448b9b95b09e/1/JtOCk_Zp20i20L0QNq3972vT03U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.114.168.0/22
185.163.8.0/22
Signature Algorithm: sha256WithRSAEncryption
08:25:b7:91:30:d9:ef:d2:7c:64:f2:27:26:12:9d:10:3a:a2:
57:98:5f:26:43:f4:05:7a:a2:d6:28:d5:b0:61:f4:23:4c:e8:
7d:66:23:40:8e:f4:b9:69:e5:ba:b0:29:71:bf:6f:88:92:b5:
4d:48:48:66:27:4d:cc:a9:28:cb:75:82:64:86:dd:e4:63:28:
75:f8:64:4f:69:7c:9a:07:7e:c3:a2:c6:10:83:60:a3:27:c7:
55:8d:36:b8:f7:04:5a:15:f1:ef:85:c5:73:8b:56:79:30:3a:
d6:42:0e:5e:3e:24:84:bd:ba:84:e0:aa:10:c0:2a:54:df:f7:
80:57:04:86:21:81:ed:84:e0:ec:0e:fb:31:50:dc:76:1f:77:
54:d5:cb:31:77:78:0d:ec:87:55:95:84:17:a1:63:72:56:0c:
c7:98:23:52:27:67:a0:a6:75:01:e3:3e:d8:94:8e:e9:c8:1b:
d4:5c:ac:c8:b6:0f:ab:11:3c:ec:08:0e:fd:91:8b:6a:96:24:
27:ba:8e:00:6c:17:c6:71:f4:9e:9a:01:c8:56:b8:1b:8d:91:
42:a2:ba:ec:ae:63:76:e3:4e:e1:08:d4:bb:a0:01:e3:59:ab:
3d:15:e4:ce:c6:a4:c6:fe:d2:2d:db:04:99:a0:32:b3:b7:87:
9b:5b:63:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:48 2024 by rpki-client on console-fra.rpki-client.org