Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/DkyVfwFkdk4opjjepctsYvHiTMs.roa
File: DkyVfwFkdk4opjjepctsYvHiTMs.roa (raw, json)
Hash identifier: RvJaxH9gyeNj+38yF/8zgn3VscoLoOXbUbEu//Y7n6A=
Subject key identifier: 0E:4C:95:7F:01:64:76:4E:28:A6:38:DE:A5:CB:6C:62:F1:E2:4C:CB
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 08C582A9
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/DkyVfwFkdk4opjjepctsYvHiTMs.roa
Signing time: Sat 01 Jan 2022 07:04:32 +0000
ROA not before: Sat 01 Jan 2022 07:04:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49981
IP address blocks: 185.236.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147161769 (0x8c582a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jan 1 07:04:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e4c957f0164764e28a638dea5cb6c62f1e24ccb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:ae:f6:3e:84:0e:b6:6d:82:72:6a:7f:12:13:
18:1c:78:e1:48:04:7e:54:d9:20:d7:98:02:ea:c1:
d6:f2:90:1b:0f:11:fb:f5:26:8a:63:4e:29:af:98:
00:c0:7d:a6:ac:f9:c6:b1:16:88:ef:4f:33:40:36:
48:4b:25:f5:31:af:49:b1:68:4a:02:8a:89:74:eb:
9b:cb:3f:7b:61:7c:3a:d0:f5:3a:95:7d:0b:d8:cc:
45:d5:36:b6:b1:fb:cd:71:39:85:80:ee:46:94:35:
77:e0:4b:8f:91:d5:cf:da:b5:85:43:f7:fa:43:27:
de:eb:68:da:3b:32:98:0a:e9:4f:28:d8:9f:8f:95:
77:a7:39:80:85:7f:93:ae:aa:fc:c2:39:59:28:7c:
3c:87:e4:79:40:5f:6f:6a:dc:b2:38:88:b1:ec:f9:
01:cf:3e:43:c1:d2:39:b4:e4:56:52:90:93:0c:27:
91:28:9a:be:ff:4d:a8:c5:96:9b:d1:bc:63:90:ee:
ad:46:f4:a1:42:a1:84:ac:07:f9:ca:e1:98:b5:c0:
a7:56:bc:f3:33:b2:d7:8d:64:b1:24:6e:ed:58:39:
b5:e1:ba:5d:36:10:a2:c2:b1:a9:74:d2:d1:82:cd:
52:f9:30:ad:5e:13:5a:ec:80:ce:d4:90:fe:87:27:
23:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:4C:95:7F:01:64:76:4E:28:A6:38:DE:A5:CB:6C:62:F1:E2:4C:CB
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/DkyVfwFkdk4opjjepctsYvHiTMs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.11.0/24
Signature Algorithm: sha256WithRSAEncryption
66:1d:5b:0b:1a:4e:47:6a:00:af:ff:05:c0:5c:88:11:47:53:
89:f9:44:66:d3:0f:55:65:e1:b5:b0:3f:e9:34:2d:37:b4:07:
89:d3:e2:b6:d4:b8:11:8c:8b:8c:f0:df:ea:8b:99:54:31:24:
53:0c:73:a4:7c:0f:8b:a4:4e:d5:c5:60:b7:c7:86:4e:88:05:
62:2b:90:6a:9c:75:6c:72:af:d8:03:80:d0:af:46:b3:a4:c6:
97:17:70:56:51:ef:cb:e5:5e:0a:e5:96:85:a5:91:6b:8d:14:
cf:e1:40:20:fc:4e:60:b0:d3:51:ae:36:64:b7:a3:5a:0f:ed:
72:4d:37:c9:a7:78:81:d6:48:05:37:90:ed:2f:e0:7e:06:52:
5a:20:cc:48:99:b6:ab:7e:53:50:e3:70:a0:ea:d6:a4:e3:92:
d6:65:7e:78:a8:67:34:bd:59:97:9d:71:bc:ce:74:3f:45:73:
b6:bc:cc:23:85:f4:34:99:e3:15:1d:bf:cc:81:34:eb:26:fa:
5a:c1:a4:16:cf:86:0b:0b:54:0f:72:eb:f9:92:1a:a3:20:a8:
f5:66:62:b3:fa:b9:ba:11:ea:be:29:eb:16:81:ff:ec:bd:0d:
63:b9:73:76:5d:5e:43:a5:73:5d:d7:9e:f3:6e:e7:64:3d:fd:
b8:2f:81:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:27 2023 by rpki-client on console-ams.rpki-client.org