Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/cIczQcVoUYLR0sph7s9QzFiCFXg.roa
File: cIczQcVoUYLR0sph7s9QzFiCFXg.roa (raw, json)
Hash identifier: A3k4eFAG2EpEnsqaiyRHPwpFX3pUyVbnM/a47gaelm8=
Subject key identifier: 70:87:33:41:C5:68:51:82:D1:D2:CA:61:EE:CF:50:CC:58:82:15:78
Certificate issuer: /CN=788f5b210f3c3eb42065960e85d061e9d9d63ab8
Certificate serial: 02A7395A
Authority key identifier: 78:8F:5B:21:0F:3C:3E:B4:20:65:96:0E:85:D0:61:E9:D9:D6:3A:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eI9bIQ88PrQgZZYOhdBh6dnWOrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/cIczQcVoUYLR0sph7s9QzFiCFXg.roa
Signing time: Fri 13 May 2022 13:09:40 +0000
ROA not before: Fri 13 May 2022 13:09:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60195
IP address blocks: 185.238.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44513626 (0x2a7395a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=788f5b210f3c3eb42065960e85d061e9d9d63ab8
Validity
Not Before: May 13 13:09:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70873341c5685182d1d2ca61eecf50cc58821578
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:df:23:53:e5:44:1c:57:00:ea:d4:56:f2:0d:
5d:ba:9e:c3:2a:06:15:50:8a:4b:e8:fb:0f:47:3d:
19:1b:e9:d1:96:85:c2:df:4a:6b:d2:21:b4:f2:c7:
43:9c:92:6a:bc:3c:bc:88:3d:b2:9e:82:81:97:0e:
5b:df:d0:57:ab:c5:8c:5e:0a:e5:47:63:9e:c7:95:
65:7e:eb:b7:43:68:b7:cf:03:ee:0b:cc:47:6c:20:
c6:c9:d0:35:90:ac:ce:d4:79:b7:bf:9a:18:5b:61:
4a:5f:f1:b8:5f:ef:82:2e:08:23:bf:5d:b4:bf:21:
21:be:f0:ec:8d:f3:e0:9d:25:60:55:b6:e5:90:cb:
30:2f:e4:0e:10:f8:ba:bc:ab:1b:98:28:3d:35:51:
92:0f:63:f6:bb:b9:38:b8:b9:fe:b8:e9:ff:6b:fa:
48:14:51:5c:ac:24:52:be:ab:77:21:7b:9f:d4:23:
af:12:38:f2:ad:23:fe:59:4d:3a:ce:9a:84:a7:3d:
b9:5c:a0:49:e6:7f:f9:de:62:ca:37:27:01:33:37:
32:3c:58:ee:ba:17:31:51:72:81:c8:bc:62:b1:b2:
8a:e1:2c:0e:a7:19:60:74:c8:d7:95:dd:79:95:2b:
a1:57:06:55:b4:77:86:74:ed:ad:3b:e1:ae:6f:a4:
07:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:87:33:41:C5:68:51:82:D1:D2:CA:61:EE:CF:50:CC:58:82:15:78
X509v3 Authority Key Identifier:
keyid:78:8F:5B:21:0F:3C:3E:B4:20:65:96:0E:85:D0:61:E9:D9:D6:3A:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eI9bIQ88PrQgZZYOhdBh6dnWOrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/cIczQcVoUYLR0sph7s9QzFiCFXg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/eI9bIQ88PrQgZZYOhdBh6dnWOrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.61.0/24
Signature Algorithm: sha256WithRSAEncryption
e7:de:07:44:85:4f:f8:5e:8d:10:57:62:09:af:76:68:79:9d:
bc:17:19:b7:bc:19:a6:8c:cc:dd:30:a0:31:f7:74:0a:01:69:
ac:8b:0a:49:76:9d:b4:c0:4b:cd:7b:d7:73:6a:2f:0f:af:f4:
a6:93:2e:db:34:fd:81:7b:21:e8:2c:ba:7b:24:c5:16:92:17:
30:fb:26:86:bc:64:e9:db:b0:12:92:f7:e2:4e:05:06:5e:53:
9b:30:46:fb:69:2b:83:87:7a:6d:e1:55:e6:08:f2:3a:58:5f:
01:38:ec:6e:51:58:54:94:bc:4f:86:e4:b5:a2:14:bf:fb:76:
33:19:fc:f2:da:9b:92:96:e9:d9:f3:9c:36:d3:d9:79:94:32:
04:6c:0b:01:a8:c9:3c:4d:c5:9b:77:a0:25:f6:a1:ae:d5:59:
fa:e1:4e:0b:bc:e4:93:ad:79:4f:ce:1b:58:71:b0:7a:14:45:
a6:be:1e:94:02:1b:d6:24:2c:25:10:ae:45:5c:4e:75:08:db:
e3:9d:03:c9:9b:3d:b2:34:c9:dd:2e:b4:86:cd:0b:b5:fc:14:
eb:d5:cb:b4:01:60:c3:15:a2:c1:de:9c:dd:99:c2:4f:3f:f7:
59:a3:25:bc:6e:ae:37:8b:48:e0:a8:7d:cf:0b:a4:07:a6:40:
72:6e:cf:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:44 2024 by rpki-client on console-fra.rpki-client.org