Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/eM32ABCD2gaQWc6zstk0ShXCIyE.roa
File: eM32ABCD2gaQWc6zstk0ShXCIyE.roa (raw, json)
Hash identifier: R02sf+RPM+LLk0w0USiDB/dicwHl3TvlV41/SRUsRBg=
Subject key identifier: 78:CD:F6:00:10:83:DA:06:90:59:CE:B3:B2:D9:34:4A:15:C2:23:21
Certificate issuer: /CN=5324defbaade93e998e13a942029dd593b8b2ea3
Certificate serial: 018217DAAC46A343D0447AA3062D223811D0
Authority key identifier: 53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/eM32ABCD2gaQWc6zstk0ShXCIyE.roa
Signing time: Tue 19 Jul 2022 19:06:23 +0000
ROA not before: Tue 19 Jul 2022 19:06:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 185.118.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:17:da:ac:46:a3:43:d0:44:7a:a3:06:2d:22:38:11:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5324defbaade93e998e13a942029dd593b8b2ea3
Validity
Not Before: Jul 19 19:06:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=78cdf6001083da069059ceb3b2d9344a15c22321
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c3:99:ae:68:9f:c2:88:d3:b8:62:2a:32:5c:
15:91:fd:1b:43:4e:52:bc:c3:32:b0:14:a6:5a:2d:
ce:18:c5:14:74:1b:20:91:e5:06:6b:41:80:23:a0:
e1:01:77:6c:6a:24:13:82:ff:47:76:cf:de:04:61:
00:28:b8:87:98:47:f1:2d:6d:1d:52:10:f6:35:ce:
25:96:4e:94:8d:38:c5:fd:ba:30:b5:f0:62:bb:7e:
0c:89:7f:df:5f:a7:38:00:7b:51:f7:10:a7:13:27:
6e:bf:b1:d4:3f:34:55:5b:57:82:9e:8a:e5:6a:eb:
97:02:5f:e5:6b:cb:78:f5:f7:10:5d:9d:5b:f8:d2:
82:2f:bc:db:1a:7b:10:02:56:b6:6d:4a:dd:6c:31:
8b:fe:7d:d4:5c:d5:1b:0a:7b:9f:9d:32:e9:a1:52:
5a:95:1f:4b:a9:1e:20:d0:b8:d9:d0:60:a5:28:d1:
59:47:99:d7:6d:99:3a:4e:a4:1b:25:e8:3b:12:0a:
ec:93:23:34:be:a1:d8:6a:74:17:cb:60:ee:c8:08:
27:0e:d6:ea:3a:14:54:62:5b:91:13:6d:00:33:73:
89:3d:7c:65:61:ee:44:d2:f2:89:1e:32:03:98:67:
6b:3f:6a:f8:e5:d7:b1:8d:07:2a:fe:e7:54:02:cf:
15:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:CD:F6:00:10:83:DA:06:90:59:CE:B3:B2:D9:34:4A:15:C2:23:21
X509v3 Authority Key Identifier:
keyid:53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/eM32ABCD2gaQWc6zstk0ShXCIyE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/UyTe-6rek-mY4TqUICndWTuLLqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.118.141.0/24
Signature Algorithm: sha256WithRSAEncryption
03:23:de:16:0e:3c:ec:c8:dc:94:8a:12:a1:9b:97:53:3c:20:
2e:1a:54:a9:25:30:68:2d:e0:60:d3:4c:b9:5b:1f:32:5d:c7:
93:9c:04:78:a8:d9:cf:31:02:69:0d:83:e8:f7:2f:7f:56:96:
2b:07:86:bb:ba:ae:e9:b6:21:3c:1e:00:fb:58:41:63:9f:d8:
bb:7b:d3:a2:71:09:6d:9b:6c:03:68:60:45:5e:bd:68:04:1b:
58:ac:cd:7c:1b:0e:54:7c:7d:41:8f:8f:72:77:40:d2:e7:75:
e2:2c:26:69:ea:d9:bd:f3:11:e1:2d:9c:3f:5d:34:1a:c4:cc:
57:2b:f1:9f:b0:31:f5:23:5b:0a:96:b0:00:75:bc:dd:9a:a4:
cb:6c:ac:cb:06:3e:ee:35:b7:cb:40:e9:79:43:10:e6:2a:45:
d9:2b:f6:a2:e0:ca:85:18:77:44:5e:37:96:b2:fe:59:5b:73:
51:b8:12:61:f4:c2:07:df:2b:e3:db:26:1c:76:41:ec:06:dc:
f3:4c:12:3f:cc:89:ea:3d:e5:12:e3:09:72:b8:cb:d2:26:99:
e4:8e:63:5d:94:75:49:26:dd:8b:16:47:91:bc:a2:b1:ba:ee:
56:79:58:5d:47:d7:14:31:06:c6:6d:3a:b2:d7:8c:f8:e4:d6:
cf:1e:4a:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:09 2024 by rpki-client on console-ams.rpki-client.org