Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/iYUTx6vJHEUuy70mbS0dAwgp9w4.roa
File: iYUTx6vJHEUuy70mbS0dAwgp9w4.roa (raw, json)
Hash identifier: 5GyUyEBa3Z/ZZAqojbc+S/b9oxWfS72/IFyORlw7V4w=
Subject key identifier: 89:85:13:C7:AB:C9:1C:45:2E:CB:BD:26:6D:2D:1D:03:08:29:F7:0E
Certificate issuer: /CN=788f5b210f3c3eb42065960e85d061e9d9d63ab8
Certificate serial: 01A37B0D
Authority key identifier: 78:8F:5B:21:0F:3C:3E:B4:20:65:96:0E:85:D0:61:E9:D9:D6:3A:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eI9bIQ88PrQgZZYOhdBh6dnWOrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/iYUTx6vJHEUuy70mbS0dAwgp9w4.roa
Signing time: Fri 21 Jan 2022 14:14:34 +0000
ROA not before: Fri 21 Jan 2022 14:14:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201027
IP address blocks: 185.238.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27491085 (0x1a37b0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=788f5b210f3c3eb42065960e85d061e9d9d63ab8
Validity
Not Before: Jan 21 14:14:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=898513c7abc91c452ecbbd266d2d1d030829f70e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ef:dd:1e:7a:b2:c1:2a:cd:b4:51:3a:ef:4f:
3c:a5:02:b0:53:b3:96:37:0c:f7:a5:6a:f5:bd:4a:
52:a2:37:d0:da:58:ac:62:72:6c:7f:23:03:1e:df:
6d:46:e9:64:9c:94:99:88:95:7e:9c:eb:51:34:18:
f6:8c:82:94:55:47:b5:da:a6:fb:90:f4:0c:41:63:
34:dd:91:52:7f:b8:69:c4:b1:12:0a:72:10:47:8d:
d8:19:cd:cf:f7:c6:69:ea:a7:68:c7:62:8f:bd:dc:
35:b9:f3:34:99:54:96:bc:5a:ca:be:18:8f:c0:5a:
32:d0:83:ea:ac:1c:74:ca:de:25:df:2b:cc:d2:b3:
80:1b:01:2d:56:83:fe:5a:e2:ae:29:eb:65:9c:6a:
28:87:1b:2c:c5:c1:59:04:a3:9c:83:fb:9d:78:52:
0e:df:14:ff:37:5b:1e:58:a2:dd:d2:14:83:f3:22:
3d:ec:e9:f6:f0:86:a9:22:9b:87:df:b1:d2:da:9d:
bf:19:b8:e7:c4:0e:59:0a:35:0f:ac:58:3f:f3:22:
7f:f2:47:58:69:90:3a:e4:0c:c7:86:95:0d:9c:9a:
3e:08:63:c7:d3:26:77:50:1f:48:55:b9:58:66:36:
00:43:86:48:1e:df:32:39:13:55:e4:0d:f0:84:0a:
cc:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:85:13:C7:AB:C9:1C:45:2E:CB:BD:26:6D:2D:1D:03:08:29:F7:0E
X509v3 Authority Key Identifier:
keyid:78:8F:5B:21:0F:3C:3E:B4:20:65:96:0E:85:D0:61:E9:D9:D6:3A:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eI9bIQ88PrQgZZYOhdBh6dnWOrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/iYUTx6vJHEUuy70mbS0dAwgp9w4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/eI9bIQ88PrQgZZYOhdBh6dnWOrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.63.0/24
Signature Algorithm: sha256WithRSAEncryption
18:4b:4e:31:a3:49:1d:ee:83:81:93:1d:15:6c:c3:a0:6d:f0:
bf:e0:da:81:47:3c:87:30:56:25:2b:8e:21:4c:ce:ea:96:c0:
36:dc:2d:4f:2d:9b:2f:e7:d2:8b:0c:f2:b9:17:22:35:37:76:
74:5c:b5:a1:d4:ae:f1:81:66:d6:9e:49:9c:b9:5e:f6:dc:c7:
9e:91:dc:63:71:e4:c2:45:cc:c6:7d:46:b0:86:00:e8:26:c3:
95:a0:a2:45:70:c6:98:bd:52:9b:e9:e7:3a:ac:63:7a:2d:08:
23:03:f5:24:e7:2e:1c:87:c0:47:b2:dc:6a:71:5d:4b:89:be:
fa:85:bf:e7:7d:11:c3:c5:04:41:85:49:45:9c:f5:61:f0:bb:
d2:11:b8:9b:82:75:5f:ad:1e:a9:80:be:ca:1d:a6:a0:99:5b:
80:e3:4b:9f:f5:04:c6:62:5a:a3:7b:93:cc:59:c2:74:d4:2f:
90:84:8a:b0:4e:2c:34:6e:46:87:fd:19:bd:cd:9b:cd:bc:c3:
a7:05:79:29:b0:92:18:6e:aa:52:2d:83:b7:58:79:4b:36:b7:
60:b5:6c:93:d1:f5:4c:1f:3a:3a:22:de:cb:fc:1f:56:79:46:
f1:74:d8:15:6b:10:0f:f3:07:48:b2:3c:34:cc:cd:64:51:55:
28:6a:92:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:44 2024 by rpki-client on console-fra.rpki-client.org