Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/55d584-19a1-47c0-95a6-bc8e0b69ac12/1/EPxVaKkriCh4PNwB_8nhxOgtmho.roa
File: EPxVaKkriCh4PNwB_8nhxOgtmho.roa (raw, json)
Hash identifier: MIjRx6g3sICXzamYo3arkchGEKWBg1Mljb9tHKYwOts=
Subject key identifier: 10:FC:55:68:A9:2B:88:28:78:3C:DC:01:FF:C9:E1:C4:E8:2D:9A:1A
Certificate issuer: /CN=b448d626a920e42dacd0e948e966a5e4bcc3c11c
Certificate serial: 01AA65FA
Authority key identifier: B4:48:D6:26:A9:20:E4:2D:AC:D0:E9:48:E9:66:A5:E4:BC:C3:C1:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tEjWJqkg5C2s0OlI6Wal5LzDwRw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/55d584-19a1-47c0-95a6-bc8e0b69ac12/1/EPxVaKkriCh4PNwB_8nhxOgtmho.roa
Signing time: Sat 01 Jan 2022 14:58:58 +0000
ROA not before: Sat 01 Jan 2022 14:58:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396982
IP address blocks: 185.207.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27944442 (0x1aa65fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b448d626a920e42dacd0e948e966a5e4bcc3c11c
Validity
Not Before: Jan 1 14:58:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=10fc5568a92b8828783cdc01ffc9e1c4e82d9a1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:54:aa:db:72:2d:32:50:ed:55:60:2e:1b:b6:
32:88:04:83:a6:30:ad:6e:ec:3b:0c:f4:9c:47:2c:
7f:95:ea:70:3b:d8:99:3b:b6:55:18:1b:de:e6:b0:
7c:9b:d9:0e:ad:6c:4a:89:06:3c:11:5a:20:2e:6c:
be:fc:00:38:3c:12:08:d4:84:d0:59:5f:d0:be:ea:
dd:ff:da:9a:67:8e:23:37:0e:03:ce:e4:d7:e3:6a:
0c:ff:75:06:98:5e:eb:98:c0:eb:29:98:0d:09:49:
d2:34:45:c2:03:d0:86:01:ca:61:0a:72:db:46:2b:
65:92:b0:76:18:9d:05:12:c9:b1:f4:aa:6c:d4:a1:
87:ae:6e:1b:6f:b0:57:12:7d:e8:f2:0c:30:bc:b4:
03:53:b9:98:8e:51:0f:cf:90:e8:f4:44:90:9e:e6:
ab:1b:a1:f8:45:52:90:32:76:28:0b:b2:d1:4d:f0:
69:c0:ed:d6:87:c4:3f:34:93:29:65:f3:ff:40:2f:
c2:38:85:66:52:d9:b3:de:cc:5d:4e:93:60:2d:8c:
8e:a5:4a:a2:a9:2e:69:d4:b9:84:38:8f:17:05:5a:
8f:2f:58:10:ca:81:8d:ff:93:a9:32:ef:b5:60:0d:
97:46:03:31:3b:02:e7:f9:7b:9b:f1:bf:f9:09:1b:
04:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:FC:55:68:A9:2B:88:28:78:3C:DC:01:FF:C9:E1:C4:E8:2D:9A:1A
X509v3 Authority Key Identifier:
keyid:B4:48:D6:26:A9:20:E4:2D:AC:D0:E9:48:E9:66:A5:E4:BC:C3:C1:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tEjWJqkg5C2s0OlI6Wal5LzDwRw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/55d584-19a1-47c0-95a6-bc8e0b69ac12/1/EPxVaKkriCh4PNwB_8nhxOgtmho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/55d584-19a1-47c0-95a6-bc8e0b69ac12/1/tEjWJqkg5C2s0OlI6Wal5LzDwRw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.237.0/24
Signature Algorithm: sha256WithRSAEncryption
38:79:33:c2:82:fb:62:b5:ad:dd:fb:94:3e:f2:d2:e7:fb:99:
4f:6e:41:43:ba:69:29:77:a8:d1:55:a0:aa:ed:eb:68:46:83:
52:fb:14:c4:5f:06:f2:dc:2d:c3:3b:cd:72:cb:a4:a2:53:17:
81:f1:bf:c0:69:1f:2b:c6:e6:ad:96:38:cd:0a:5b:e9:81:ba:
84:33:62:a6:9f:73:8b:b0:20:96:f5:a6:c4:aa:e6:47:2f:4f:
ba:f6:ef:26:08:23:d0:37:01:27:9a:46:d5:e5:3b:75:72:3a:
ca:0c:09:5f:e1:1b:b3:5e:e4:01:9c:7b:b0:93:68:16:87:4e:
78:fa:dc:74:49:0e:86:98:bf:d7:d3:d9:9a:1d:cf:3b:3e:ed:
9e:fc:aa:6a:ce:d7:42:33:d9:0f:22:2b:7c:f5:65:29:7b:09:
68:d6:af:15:40:43:66:e3:ea:d7:46:d9:31:6c:ef:c9:9a:cd:
c7:d0:a5:4b:a2:38:28:d2:c0:a8:84:b7:0e:ac:13:1f:4b:11:
2b:40:14:3d:55:e5:d4:5e:cb:eb:1d:a3:63:6b:87:7b:d7:1c:
6e:ee:ff:2c:5f:94:88:c9:b5:18:e3:d5:57:62:b3:bb:a4:17:
d6:3b:ae:cb:2c:7d:c7:a8:b4:dc:5b:49:1f:5c:33:6c:ad:81:
63:ee:b3:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:54 2024 by rpki-client on console-fra.rpki-client.org