Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/b9c906-1e85-4573-8f62-8257d51928a9/1/eSoBWb7EUh_bC5s7gSqGKXxq08U.roa
File: eSoBWb7EUh_bC5s7gSqGKXxq08U.roa (raw, json)
Hash identifier: +6yvHHrZ5HXlI8ttzlrN8iGg+sM1Fb0+Lj3x3o+L0Kk=
Subject key identifier: 79:2A:01:59:BE:C4:52:1F:DB:0B:9B:3B:81:2A:86:29:7C:6A:D3:C5
Certificate issuer: /CN=7d35c0b209135c22cc8005a7c2e222c63c136cb0
Certificate serial: 34B527FB
Authority key identifier: 7D:35:C0:B2:09:13:5C:22:CC:80:05:A7:C2:E2:22:C6:3C:13:6C:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fTXAsgkTXCLMgAWnwuIixjwTbLA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/b9c906-1e85-4573-8f62-8257d51928a9/1/eSoBWb7EUh_bC5s7gSqGKXxq08U.roa
Signing time: Sat 01 Jan 2022 12:05:12 +0000
ROA not before: Sat 01 Jan 2022 12:05:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 10393
IP address blocks: 185.39.237.0/24 maxlen: 24
185.39.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 884287483 (0x34b527fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d35c0b209135c22cc8005a7c2e222c63c136cb0
Validity
Not Before: Jan 1 12:05:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=792a0159bec4521fdb0b9b3b812a86297c6ad3c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:97:2a:6b:a7:a6:a1:61:6a:52:10:b2:9f:e8:
c2:04:8d:b8:40:d5:00:1d:27:e1:43:fd:98:b2:d9:
5f:a0:62:27:ca:0d:d0:ed:75:e9:17:90:db:8c:4f:
ff:e8:2c:37:c8:0d:65:98:79:89:5b:29:29:0c:af:
29:eb:7d:9c:f7:cd:36:f4:c6:ae:cf:e0:a4:ef:b4:
06:6a:ab:99:3a:25:81:03:57:1d:11:38:87:e3:05:
24:e5:94:93:81:48:f1:80:3b:d9:46:e2:a8:72:77:
4c:4b:63:52:cc:c0:30:39:64:df:5f:e5:7f:35:63:
39:30:88:84:0a:97:9b:63:55:98:d1:d8:f5:d9:6a:
45:43:22:00:7f:ab:be:4f:fd:44:4b:00:18:57:5f:
35:d5:08:e8:d8:ad:f6:06:04:7d:14:86:cc:50:78:
d6:39:77:5c:1a:b2:d9:c7:a0:f3:6c:52:68:71:67:
8b:4a:3d:e9:a5:63:28:27:09:76:7a:ab:9f:c2:a5:
48:4e:0e:73:f0:c3:8c:0b:b1:e2:7e:da:47:2a:3c:
c5:e5:fb:64:6b:fd:fb:40:79:ca:56:ab:96:83:25:
68:51:52:c1:6e:a6:b7:5f:bd:fd:05:d7:58:36:a5:
c2:7f:f3:19:24:6f:22:8b:84:e4:df:a6:03:cb:42:
50:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:2A:01:59:BE:C4:52:1F:DB:0B:9B:3B:81:2A:86:29:7C:6A:D3:C5
X509v3 Authority Key Identifier:
keyid:7D:35:C0:B2:09:13:5C:22:CC:80:05:A7:C2:E2:22:C6:3C:13:6C:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fTXAsgkTXCLMgAWnwuIixjwTbLA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/b9c906-1e85-4573-8f62-8257d51928a9/1/eSoBWb7EUh_bC5s7gSqGKXxq08U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/b9c906-1e85-4573-8f62-8257d51928a9/1/fTXAsgkTXCLMgAWnwuIixjwTbLA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.39.236.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:fc:3a:31:22:34:17:6b:c5:44:b9:2f:6e:af:2f:9d:95:47:
70:06:c8:05:25:c1:4b:ef:9a:2a:c6:6b:ea:ba:0b:e5:05:17:
52:76:1b:78:1a:ed:6e:0b:27:35:7d:6b:4f:5f:e5:ee:4a:3b:
e3:ae:25:58:34:e5:76:c6:bc:c3:70:18:3a:80:51:44:65:e9:
4b:3d:2e:db:cb:57:ec:dd:6a:d8:79:3b:0d:dd:77:40:51:53:
80:1b:53:9d:37:26:4f:f7:ce:b1:42:00:2a:6c:73:60:5c:d8:
9a:07:32:c4:bd:1d:84:4a:4f:30:55:ec:96:86:c6:2a:d9:4f:
92:56:ad:b8:ee:19:f1:13:50:e9:ba:11:55:f3:35:63:2d:a3:
6b:7d:68:79:78:13:9a:1c:8e:e4:eb:eb:6f:71:8e:e7:98:fc:
bb:53:2d:92:90:b4:2c:24:4f:da:3d:8e:c8:c0:3f:08:9c:c0:
7b:d9:23:19:65:9e:11:8b:b5:82:6e:e1:96:03:87:bf:56:96:
37:7a:89:d0:78:cc:85:13:f4:a9:f3:b2:3c:52:92:a5:56:92:
b9:d0:74:a7:19:5d:08:88:69:d3:12:b3:98:c2:ac:24:eb:65:
c7:85:28:74:04:11:b7:cc:cc:94:c9:42:62:a7:74:f9:49:86:
be:fd:ed:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:43:37 2025 by rpki-client