Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/E8vVxLUKPEOK5D5B-7pvu_abTjI.roa
File: E8vVxLUKPEOK5D5B-7pvu_abTjI.roa (raw, json)
Hash identifier: j4uU7+X82itSqubXQCfzBnGEmycxN76W+vik1rz9Jls=
Subject key identifier: 13:CB:D5:C4:B5:0A:3C:43:8A:E4:3E:41:FB:BA:6F:BB:F6:9B:4E:32
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 0182FA936FDDF90AD4CB4BC86FC58022B6A8
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/E8vVxLUKPEOK5D5B-7pvu_abTjI.roa
Signing time: Thu 01 Sep 2022 19:42:22 +0000
ROA not before: Thu 01 Sep 2022 19:42:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 23033
IP address blocks: 185.255.115.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:fa:93:6f:dd:f9:0a:d4:cb:4b:c8:6f:c5:80:22:b6:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Sep 1 19:42:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=13cbd5c4b50a3c438ae43e41fbba6fbbf69b4e32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c3:1c:ea:7c:4b:0e:8c:62:56:8c:4a:8d:13:
0c:76:28:b4:31:16:2a:1d:f3:ed:be:2e:02:af:ea:
8d:45:7d:a1:f0:04:4b:b9:6d:5b:52:87:07:d0:27:
59:de:04:0a:ca:04:b3:19:ca:a8:68:5b:ec:0b:87:
1b:a7:03:fd:02:37:50:58:49:13:eb:16:92:38:5d:
3a:cc:2d:bc:e7:f7:dc:aa:0a:71:f2:67:df:b8:12:
51:da:ee:ea:47:a3:0c:9b:1f:b8:ba:5b:cb:60:e9:
63:8b:32:12:1d:73:29:57:1c:bb:99:f8:ef:2a:d9:
da:a5:bd:8d:7d:bb:0c:83:81:c6:8d:8e:0a:d4:a0:
7b:fa:eb:f6:36:0b:7f:bb:e7:15:20:db:b4:11:6a:
13:32:5f:35:76:10:25:e7:6b:51:1c:74:9d:ab:fc:
50:e4:8c:2a:62:fd:9b:ed:24:e1:18:4b:61:f7:5a:
63:87:c8:8a:3d:4a:2b:7a:31:c9:26:dc:6a:4e:a3:
af:29:90:8f:42:b8:a6:4b:81:50:20:4a:50:81:91:
6e:59:58:2e:2d:bb:6f:64:72:2d:c3:58:f7:6d:26:
b6:36:e7:f0:d0:68:38:3c:96:62:42:bd:86:ab:af:
3c:f1:a8:9d:b0:b0:06:ac:a2:7d:2d:60:c9:6d:71:
43:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:CB:D5:C4:B5:0A:3C:43:8A:E4:3E:41:FB:BA:6F:BB:F6:9B:4E:32
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/E8vVxLUKPEOK5D5B-7pvu_abTjI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.115.0/24
Signature Algorithm: sha256WithRSAEncryption
34:27:f5:ff:66:07:2c:1d:3f:63:22:54:73:2c:38:6d:9b:e8:
6d:19:5a:65:b2:1c:17:dc:b3:16:f1:25:e8:40:d4:a1:00:54:
b3:53:76:54:ed:b6:43:a2:9a:0b:83:c1:d1:8a:33:00:76:cc:
93:6e:d8:56:0c:0a:34:d3:fd:03:55:85:4e:0d:af:e9:b2:bb:
e1:df:46:1e:88:be:52:cd:d4:0a:82:22:a3:a6:60:6c:fb:b4:
71:65:2b:04:67:d3:c4:50:35:8c:c1:8c:1a:75:82:ee:9b:96:
47:dd:a0:05:67:bd:1d:64:da:1e:33:ca:27:79:d1:f7:93:27:
9b:e5:78:d1:a5:e8:6a:40:80:7f:01:6a:4b:de:04:99:5f:37:
ea:7e:4c:4b:a5:97:f2:9e:e7:19:b7:3a:ef:d9:fd:68:46:2e:
bd:b9:5a:26:94:70:fb:fb:81:1f:93:6a:a1:06:20:e6:35:f2:
a2:0f:be:aa:1f:23:4c:8a:bb:88:ff:de:32:9e:33:7f:fd:ec:
46:aa:bb:c8:91:47:8a:ba:f5:8c:8c:f1:06:40:30:f7:cb:f6:
0f:0f:b6:4b:ae:6d:32:0f:75:74:0d:e3:d8:bb:6d:a4:89:fe:
2e:f2:3b:fd:ee:4d:5d:e7:e7:57:7e:ed:70:43:a2:20:40:d8:
41:60:7c:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:27 2023 by rpki-client on console-ams.rpki-client.org