Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/32779d-3656-44c0-8ab5-981fbb3442dd/1/5pM29xTjuAqL02GOHs524ovjo2A.roa
File: 5pM29xTjuAqL02GOHs524ovjo2A.roa (raw, json)
Hash identifier: tX7xFsg1qElcOTqmqiZOOpl+U5kpM74WBGTX68QeoF8=
Subject key identifier: E6:93:36:F7:14:E3:B8:0A:8B:D3:61:8E:1E:CE:76:E2:8B:E3:A3:60
Certificate issuer: /CN=ecf7ca9ffafe72a30966f7e43d92b58e774ce741
Certificate serial: 02221417
Authority key identifier: EC:F7:CA:9F:FA:FE:72:A3:09:66:F7:E4:3D:92:B5:8E:77:4C:E7:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7PfKn_r-cqMJZvfkPZK1jndM50E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/32779d-3656-44c0-8ab5-981fbb3442dd/1/5pM29xTjuAqL02GOHs524ovjo2A.roa
Signing time: Sat 01 Jan 2022 06:57:36 +0000
ROA not before: Sat 01 Jan 2022 06:57:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213220
IP address blocks: 185.236.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35787799 (0x2221417)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ecf7ca9ffafe72a30966f7e43d92b58e774ce741
Validity
Not Before: Jan 1 06:57:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e69336f714e3b80a8bd3618e1ece76e28be3a360
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:3a:6c:6e:35:95:16:d8:d6:99:2b:90:bb:ac:
26:a7:ad:4b:32:01:8f:98:2b:f5:c2:02:b7:36:43:
ff:a9:7d:3c:3c:05:54:31:62:92:42:6c:c5:72:58:
e8:94:33:30:62:12:4b:22:6f:91:31:98:f2:b7:39:
79:3e:e2:98:d3:41:6b:e1:b2:03:36:51:01:93:7a:
09:d4:cf:d7:f6:94:de:76:40:05:c6:cc:55:f0:57:
dc:e5:4e:b0:30:48:3c:6f:39:a2:a1:2d:95:1c:61:
c8:d0:70:4d:72:3e:73:7c:39:cf:e7:7f:5f:88:24:
bd:86:f8:7c:70:1e:92:35:9b:df:37:20:93:26:49:
ea:6b:1c:d5:05:c4:78:36:29:48:2f:13:c7:68:86:
5e:9b:f8:ad:ce:6c:c8:e4:f1:1f:1b:97:4f:31:21:
6d:e8:97:50:f3:c8:ad:28:0f:7b:ac:fe:4c:ed:59:
bf:1d:df:5f:f3:6e:a3:e3:13:9f:a0:c8:cd:b1:83:
0c:8d:ea:ef:fc:06:d1:5d:01:60:f3:98:ac:9a:28:
d4:a6:1a:6c:e9:c1:33:3d:5f:89:b5:c8:c9:cb:d5:
cd:19:49:7e:d3:24:33:52:2b:44:6d:fb:63:a6:c4:
e7:e1:96:91:19:50:27:58:0f:ef:e6:b3:5f:76:b2:
c5:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:93:36:F7:14:E3:B8:0A:8B:D3:61:8E:1E:CE:76:E2:8B:E3:A3:60
X509v3 Authority Key Identifier:
keyid:EC:F7:CA:9F:FA:FE:72:A3:09:66:F7:E4:3D:92:B5:8E:77:4C:E7:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7PfKn_r-cqMJZvfkPZK1jndM50E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/32779d-3656-44c0-8ab5-981fbb3442dd/1/5pM29xTjuAqL02GOHs524ovjo2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/32779d-3656-44c0-8ab5-981fbb3442dd/1/7PfKn_r-cqMJZvfkPZK1jndM50E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.20.0/24
Signature Algorithm: sha256WithRSAEncryption
55:dd:3a:f7:f6:7d:91:36:0e:f1:e4:b1:49:85:58:cd:16:ef:
72:a8:ba:7c:07:10:3d:47:a7:4b:f0:dd:35:da:aa:32:7f:5c:
82:aa:95:c7:48:76:ef:a3:7f:d9:4c:1c:26:ee:0c:77:19:8c:
13:5d:97:32:60:dc:99:b8:26:e9:9f:90:36:7e:61:31:f1:67:
c5:77:e3:c5:55:c7:b5:90:90:a2:8f:8f:26:e1:b1:49:c3:1d:
03:66:e8:37:b1:58:c4:cf:c4:5f:e7:40:d7:b6:e0:11:f1:5f:
27:f6:dd:f4:20:7d:64:14:35:c0:e9:30:29:ca:b1:58:35:10:
3d:d5:06:4e:38:cd:9f:3f:b4:0e:a8:b5:98:46:e1:7e:58:2c:
57:2f:ab:dd:bd:44:6b:03:02:8f:64:e2:a5:4e:12:43:52:4b:
a9:e3:ff:88:25:c9:05:3c:f1:50:cf:c5:0c:8b:05:1a:01:cf:
0b:d2:47:d6:d5:b5:5b:d1:7b:99:76:bd:74:ea:4b:6c:ce:3c:
e7:69:ab:42:1d:2c:55:19:6f:d9:94:65:74:2d:fe:6f:2a:88:
bf:79:89:c1:94:8a:41:de:b6:69:5d:3b:aa:74:61:18:b5:74:
e8:40:54:3b:ad:97:07:86:85:4b:f5:c7:9e:b9:04:1d:3d:03:
10:80:14:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:52 2024 by rpki-client on console-fra.rpki-client.org