Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/E17LpejzqPrSQoH86_VvVQbHBxY.roa
File: E17LpejzqPrSQoH86_VvVQbHBxY.roa (raw, json)
Hash identifier: phxIBIy+3Kh+rR/5dpyONRM3hLM/G1AlXSTx4TkuxjY=
Subject key identifier: 13:5E:CB:A5:E8:F3:A8:FA:D2:42:81:FC:EB:F5:6F:55:06:C7:07:16
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 0A27AF42
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/E17LpejzqPrSQoH86_VvVQbHBxY.roa
Signing time: Sun 05 Jun 2022 22:23:20 +0000
ROA not before: Sun 05 Jun 2022 22:23:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58212
IP address blocks: 185.236.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170372930 (0xa27af42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jun 5 22:23:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=135ecba5e8f3a8fad24281fcebf56f5506c70716
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:a2:c2:e5:09:62:4d:db:93:f0:ba:8a:e3:7a:
c0:f8:05:9d:a5:5a:c4:63:29:b5:92:57:4f:21:7e:
d8:81:69:fa:1c:2a:df:2e:d0:1b:a6:23:be:73:57:
0f:90:2f:5a:1d:f4:75:88:1b:43:a8:8b:5f:1c:fb:
84:7c:52:d2:c8:1a:ff:02:bf:82:1a:fd:4f:d4:d2:
28:c2:3b:c0:61:3f:95:6b:df:9f:36:36:e4:3f:48:
31:a5:9a:88:45:98:9c:ad:08:f5:3b:38:df:0d:15:
25:86:b0:25:ab:f3:ba:45:2b:8b:9c:b5:54:b6:76:
b5:fa:99:62:8f:e8:42:d7:1f:86:54:96:86:55:6e:
a4:7a:9c:a2:5a:f6:f0:e3:95:24:63:ac:1b:5d:78:
e2:4a:5d:0e:33:67:56:cf:8d:58:6f:4d:8e:9d:1c:
47:89:1d:b5:be:95:b7:9a:a9:2c:b7:5d:b5:91:09:
fa:ef:51:89:ea:e1:e9:25:6e:49:e0:fe:6a:1e:12:
ca:72:33:d5:9b:35:1a:d2:12:2e:00:8f:9d:dd:a5:
60:fd:13:11:20:43:66:fe:15:ea:c7:b4:c5:0e:14:
aa:4c:4a:33:21:35:c9:a6:43:fb:a1:c8:fe:ca:18:
99:35:56:2b:da:5e:9a:e2:8f:27:b2:f6:ec:05:9c:
c6:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:5E:CB:A5:E8:F3:A8:FA:D2:42:81:FC:EB:F5:6F:55:06:C7:07:16
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/E17LpejzqPrSQoH86_VvVQbHBxY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.8.0/24
Signature Algorithm: sha256WithRSAEncryption
85:4d:db:f4:33:1c:1c:f9:11:65:16:cf:2d:97:03:02:fb:4d:
84:c1:a2:74:3b:73:9a:47:f8:36:d3:aa:76:62:30:36:27:d8:
9e:91:9b:2f:5b:5a:87:ae:92:9f:21:7d:a5:86:16:f9:0e:b4:
b3:09:af:4b:8e:ae:0e:03:7f:6e:f9:40:4b:e6:44:14:42:78:
78:10:d3:5a:35:4f:28:5d:4c:bc:94:1e:bf:5a:a0:3d:99:c3:
78:ca:bf:63:56:8d:53:e7:bc:f8:c4:4b:9c:5d:24:f2:40:c2:
5d:c6:74:ef:ec:e2:71:08:4d:50:1a:2d:bf:36:90:4e:30:ee:
84:43:ed:c0:3c:27:c7:35:df:c1:24:30:88:12:8e:c0:70:cb:
22:2b:2b:a7:ab:19:4e:44:46:8b:60:14:d4:3b:b3:6f:40:e8:
7e:ad:97:b2:3c:23:59:7a:ee:78:de:a1:1a:3b:75:db:6b:46:
56:13:ca:47:60:ef:52:01:d9:2a:06:6b:03:6f:59:6d:3a:b2:
0b:79:a3:96:fb:54:2f:23:13:04:0d:26:31:4a:f9:e6:5b:e5:
75:b5:bd:0b:c1:d2:12:cf:ac:08:f3:c4:00:17:39:59:74:45:
ca:c5:1a:fa:ea:08:bb:d8:39:ed:fc:01:30:cb:4e:8a:32:e1:
2d:a0:a1:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:27 2023 by rpki-client on console-ams.rpki-client.org