Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/95FdVic3_GdNAGwX7jmJwRYKJE8.roa
File: 95FdVic3_GdNAGwX7jmJwRYKJE8.roa (raw, json)
Hash identifier: lNeEahT2M7dg5CXoGyzPALuVXH//SvF8BZlpiMK8s0A=
Subject key identifier: F7:91:5D:56:27:37:FC:67:4D:00:6C:17:EE:39:89:C1:16:0A:24:4F
Certificate issuer: /CN=788f5b210f3c3eb42065960e85d061e9d9d63ab8
Certificate serial: 0281BB38
Authority key identifier: 78:8F:5B:21:0F:3C:3E:B4:20:65:96:0E:85:D0:61:E9:D9:D6:3A:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eI9bIQ88PrQgZZYOhdBh6dnWOrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/95FdVic3_GdNAGwX7jmJwRYKJE8.roa
Signing time: Wed 27 Apr 2022 13:19:29 +0000
ROA not before: Wed 27 Apr 2022 13:19:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203551
IP address blocks: 185.238.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42056504 (0x281bb38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=788f5b210f3c3eb42065960e85d061e9d9d63ab8
Validity
Not Before: Apr 27 13:19:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f7915d562737fc674d006c17ee3989c1160a244f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:26:90:e8:ed:b8:cf:6a:e4:11:11:27:d2:71:
12:3e:1b:15:f9:45:92:ee:7a:e9:e2:12:59:64:48:
28:16:dc:84:0d:5c:3e:34:d4:88:b8:89:03:e8:16:
b5:73:72:eb:f1:60:c1:61:4a:2f:e4:b3:aa:49:c0:
0e:b0:b7:62:2a:c1:17:55:3e:50:0b:bf:6b:20:ac:
ea:8a:6b:a4:4a:16:25:5d:94:63:dd:c9:a0:21:eb:
9b:09:8f:97:c4:a9:34:5e:3f:69:22:91:e7:d0:95:
8d:7c:9a:e4:b1:b9:15:5d:1d:72:15:82:08:52:b8:
01:c0:3f:f9:8a:15:67:2a:bb:3a:d3:21:6e:83:63:
c2:83:65:c5:22:62:66:15:bd:bf:ba:56:15:63:2d:
d6:65:f3:05:df:bd:23:bd:5e:c1:a2:c8:c3:f4:7b:
6a:74:f4:b5:e3:6c:ac:41:b4:79:9d:1c:25:e9:ff:
4e:8d:c8:d8:1c:fb:9f:97:a2:c4:c0:68:f0:08:a7:
40:34:3d:86:b0:35:00:5c:ce:d7:2d:32:46:d6:6b:
9f:2e:02:d9:0b:26:6a:c4:f0:62:02:4c:f0:32:ff:
dc:d0:18:99:a4:1c:0a:55:48:94:68:7e:c1:f0:4a:
8d:d0:97:e1:0d:21:df:0d:9d:c9:26:bd:c5:25:89:
07:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:91:5D:56:27:37:FC:67:4D:00:6C:17:EE:39:89:C1:16:0A:24:4F
X509v3 Authority Key Identifier:
keyid:78:8F:5B:21:0F:3C:3E:B4:20:65:96:0E:85:D0:61:E9:D9:D6:3A:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eI9bIQ88PrQgZZYOhdBh6dnWOrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/95FdVic3_GdNAGwX7jmJwRYKJE8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/eI9bIQ88PrQgZZYOhdBh6dnWOrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.62.0/24
Signature Algorithm: sha256WithRSAEncryption
66:bd:52:d1:3a:ad:7b:f6:f5:05:d1:84:f2:57:aa:3c:83:94:
e1:36:5d:d6:fd:3d:66:65:62:cf:6a:1e:e3:c2:a3:24:af:59:
7c:7e:96:87:13:cd:83:83:ce:34:48:3e:b2:8c:a3:98:d8:cb:
22:04:b6:2b:67:93:b2:70:10:43:3c:25:7b:50:9a:f0:d5:5e:
6c:c1:a0:ab:a0:8d:50:2e:4a:2a:f2:ea:31:52:98:44:ec:63:
a5:65:64:da:08:fe:cb:6a:fb:24:1d:1c:15:4a:3a:0b:17:1c:
bc:69:4a:5b:5c:3f:93:62:e1:e1:37:01:71:39:d9:7c:e8:c4:
19:12:db:41:0e:b8:c8:d7:25:5c:49:11:00:8f:54:ce:09:d0:
4b:a6:45:20:3d:8d:b4:cf:ce:65:b9:e7:3c:23:12:80:8f:6f:
23:ef:3e:3b:79:3b:70:12:9a:ad:ea:2a:31:f8:d4:f3:21:a9:
80:eb:d8:5e:8a:a2:50:ee:b4:8a:f5:2e:85:c3:ee:60:15:c9:
7c:fb:01:87:96:36:ed:5e:48:ea:09:51:aa:04:41:d5:64:22:
ad:8f:46:5a:97:8e:09:84:38:f8:34:0c:b9:0b:c0:4d:af:2d:
7c:9a:cf:ce:1c:eb:c9:5d:93:16:57:b8:ab:20:b6:89:f1:da:
9d:fb:2d:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:44 2024 by rpki-client on console-fra.rpki-client.org