Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/11BXMAS8ZdUJEJHz8HKaQrVvLHs.roa
File: 11BXMAS8ZdUJEJHz8HKaQrVvLHs.roa (raw, json)
Hash identifier: G9zv4X9GJ3QP8taxTm+ROJz5s8CL2uvnNp/w6xVlW6s=
Subject key identifier: D7:50:57:30:04:BC:65:D5:09:10:91:F3:F0:72:9A:42:B5:6F:2C:7B
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 08C3A6D0
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/11BXMAS8ZdUJEJHz8HKaQrVvLHs.roa
Signing time: Sat 01 Jan 2022 07:04:30 +0000
ROA not before: Sat 01 Jan 2022 07:04:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34962
IP address blocks: 193.38.248.0/24 maxlen: 24
185.255.112.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147039952 (0x8c3a6d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jan 1 07:04:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d750573004bc65d5091091f3f0729a42b56f2c7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b1:48:f0:32:81:06:e2:13:68:18:ba:1d:d5:
30:9c:b0:24:2d:09:88:ef:5b:f2:df:fc:80:c6:db:
f2:2a:96:27:d1:89:6f:e8:1f:a6:a4:85:ce:e7:a6:
2c:d4:a5:78:2f:80:67:1c:e6:35:26:6d:70:e6:3f:
91:72:89:fe:63:be:bc:15:3e:7b:ed:f1:d8:09:68:
86:21:fb:95:f5:3a:5c:52:66:70:ed:0d:17:23:af:
a1:f6:1e:6d:64:b0:54:ef:1d:88:8a:aa:80:00:71:
39:0e:f8:ff:6c:f5:df:86:79:da:8a:c7:d9:c8:4c:
03:40:50:bf:51:ef:d2:e1:3f:4d:e2:8e:ad:7f:60:
23:16:05:36:12:27:09:b8:ed:ba:24:a8:9c:c9:fd:
33:fc:28:37:cf:01:89:9c:e7:cf:46:d5:50:bb:5d:
1a:fb:cb:63:8b:f4:e2:1d:98:77:55:a8:6b:d2:e3:
db:53:5e:78:75:4d:c3:29:6f:0e:e1:d7:e9:05:68:
a3:4f:ec:e1:1a:f7:f2:9b:48:9d:23:37:1c:b7:f4:
c7:5b:ba:91:24:56:4f:12:5c:11:3e:4d:9c:59:55:
fb:bf:55:95:a5:1c:66:d0:fc:ae:ba:6c:9d:9d:77:
20:6e:e1:12:e8:d5:cb:2e:28:75:35:a5:d8:b3:75:
d3:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:50:57:30:04:BC:65:D5:09:10:91:F3:F0:72:9A:42:B5:6F:2C:7B
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/11BXMAS8ZdUJEJHz8HKaQrVvLHs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.112.0/24
193.38.248.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:07:c4:2e:58:b1:7d:1c:b9:35:4b:1b:44:b6:66:d6:1e:d3:
65:11:d1:4e:de:96:f0:ed:44:11:5e:ab:cd:2b:0b:b5:84:21:
b2:72:25:6a:20:24:93:5f:25:7f:24:fd:19:55:df:d2:33:fe:
7b:69:11:7f:ce:8d:0d:d5:ea:11:1b:e8:2c:79:9e:21:75:82:
70:6a:b8:86:15:cc:63:f9:3b:aa:92:96:b1:bb:1c:46:65:e5:
d4:d7:c2:b3:6e:67:b0:fb:f7:6c:82:b6:48:45:0e:6b:d2:ed:
3a:d0:9e:3b:47:c9:e5:cb:34:2f:ad:6d:c0:42:60:72:5b:30:
47:df:61:14:88:22:c6:d8:65:6d:c4:3a:2f:5b:81:a5:3b:f0:
c0:21:3b:ee:91:b6:81:fb:14:80:0a:8b:d4:f4:f3:79:36:15:
c9:f4:2f:e0:f8:21:b7:3c:f9:9b:af:3c:b1:85:8a:f7:5c:0d:
45:2b:6e:f8:78:0e:73:f4:81:90:b8:e3:75:15:da:fe:ce:1d:
af:3a:8d:a4:04:5c:88:d1:47:4f:95:67:51:2e:48:5e:5a:37:
e4:97:59:df:75:58:3b:d1:fc:8a:f6:44:9d:95:1a:bc:0c:70:
d6:2d:d4:f8:3a:01:4d:f5:56:96:64:e1:8c:b5:ae:d8:35:43:
fb:46:62:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:34 2023 by rpki-client on console-fra.rpki-client.org