Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/rgGEFAnMJtNa1k-pUjdKRzxgfIk.roa
File: rgGEFAnMJtNa1k-pUjdKRzxgfIk.roa (raw, json)
Hash identifier: jLvTRRnm67+atCCEkenRaE6QnqTfzztuV5mazhrYXec=
Subject key identifier: AE:01:84:14:09:CC:26:D3:5A:D6:4F:A9:52:37:4A:47:3C:60:7C:89
Certificate issuer: /CN=5324defbaade93e998e13a942029dd593b8b2ea3
Certificate serial: 1A2B23B8
Authority key identifier: 53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/rgGEFAnMJtNa1k-pUjdKRzxgfIk.roa
Signing time: Sat 01 Jan 2022 12:55:15 +0000
ROA not before: Sat 01 Jan 2022 12:55:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 185.212.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 439034808 (0x1a2b23b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5324defbaade93e998e13a942029dd593b8b2ea3
Validity
Not Before: Jan 1 12:55:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae01841409cc26d35ad64fa952374a473c607c89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:94:90:62:cf:7a:8d:30:76:1c:79:0a:b6:da:
ff:8c:0e:4e:5a:57:e2:be:b6:b3:81:85:d1:d1:2f:
1f:de:c4:a0:38:fe:44:f4:54:cb:22:3f:31:06:9c:
8d:04:e9:cb:11:a1:66:14:37:b9:c2:d2:ab:cf:17:
ea:74:e8:c4:fd:6e:7e:4d:7c:fc:cb:44:0e:c6:0c:
03:31:6d:bc:8b:95:3c:cf:aa:a9:ae:58:a0:2e:87:
73:f9:83:22:da:32:d9:e7:cb:e1:5a:76:e0:e6:93:
25:a4:65:11:80:87:e9:3b:db:d2:64:36:7b:7e:57:
9f:e4:01:1c:25:ed:1a:4b:3a:20:d6:df:11:63:b0:
86:f7:8e:28:93:48:f7:87:7c:a2:06:cb:0b:66:92:
cd:a4:11:01:05:67:46:60:01:03:ab:9a:db:57:6f:
f5:e2:79:be:45:0d:dc:a8:b1:f3:ec:fd:99:96:4f:
01:90:d5:12:a5:41:f0:59:df:7f:a1:1f:16:3c:eb:
bb:2b:41:87:b5:39:14:c7:85:4f:df:a9:fb:66:a3:
87:ad:93:f5:e1:2d:b6:56:aa:b4:3b:1d:b3:f8:51:
f6:a1:ec:b1:3c:4e:31:1b:49:d8:cf:f3:3f:24:b1:
35:f9:b0:94:40:d8:47:57:5f:0c:70:8f:37:ec:25:
54:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:01:84:14:09:CC:26:D3:5A:D6:4F:A9:52:37:4A:47:3C:60:7C:89
X509v3 Authority Key Identifier:
keyid:53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/rgGEFAnMJtNa1k-pUjdKRzxgfIk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/UyTe-6rek-mY4TqUICndWTuLLqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.175.0/24
Signature Algorithm: sha256WithRSAEncryption
59:7b:38:93:38:43:b3:4e:71:9c:ba:03:e7:b3:aa:19:1e:30:
e8:95:67:a6:74:e8:dc:fb:4a:9e:d7:5a:ee:f1:3c:7d:2f:0a:
62:62:96:89:37:b1:7a:85:e8:6d:1f:f3:46:3f:2a:55:a8:4a:
de:1f:7c:9f:8b:dd:08:c1:48:55:4d:3a:4f:a5:f4:85:96:41:
82:16:a5:84:a4:ac:99:83:44:c3:66:3b:26:4c:46:80:00:95:
0c:7d:83:b4:f3:48:dd:fe:7b:98:24:7f:9d:03:2a:1c:04:5b:
46:bf:81:1d:d2:26:6d:fc:1a:6a:1f:6e:d4:c4:26:fb:65:28:
0c:4f:7b:bb:39:36:e8:07:d7:b9:ba:da:66:64:a6:b6:1a:c1:
ce:f3:e3:d0:04:40:29:77:74:bd:d0:5f:eb:96:01:b2:93:7c:
5c:a9:76:da:da:bc:a4:fb:9c:ce:2d:89:d0:d0:d9:c8:6d:02:
f2:87:5a:fa:ed:ae:18:6a:76:c9:cb:41:a8:cb:bc:c2:e2:7b:
74:83:4e:ee:01:c8:e5:15:0a:c1:be:b0:f2:1e:ac:00:6d:73:
3e:dd:cc:57:dd:4a:ca:b6:ae:da:90:c2:5b:96:cb:d5:8d:77:
5d:a9:c0:04:44:fa:75:a0:85:4a:bf:5d:fb:23:0a:e3:52:f5:
00:54:f4:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:19 2024 by rpki-client on console-fra.rpki-client.org