Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/bc48d2-28e8-405d-9f9a-03897f4cb35d/1/2xFNk7ZGi8l9egvspVf6cnVODTQ.roa
File: 2xFNk7ZGi8l9egvspVf6cnVODTQ.roa (raw, json)
Hash identifier: onsDP7lxrbUm9GgdNaSPOELVN8rIUEeykIlyPw4iMKA=
Subject key identifier: DB:11:4D:93:B6:46:8B:C9:7D:7A:0B:EC:A5:57:FA:72:75:4E:0D:34
Certificate issuer: /CN=fc96311f207e30e04e5ed18960b31fb3ba67d9cc
Certificate serial: 078FE6A7
Authority key identifier: FC:96:31:1F:20:7E:30:E0:4E:5E:D1:89:60:B3:1F:B3:BA:67:D9:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_JYxHyB-MOBOXtGJYLMfs7pn2cw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/bc48d2-28e8-405d-9f9a-03897f4cb35d/1/2xFNk7ZGi8l9egvspVf6cnVODTQ.roa
Signing time: Sat 01 Jan 2022 15:58:18 +0000
ROA not before: Sat 01 Jan 2022 15:58:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24931
IP address blocks: 185.187.116.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126871207 (0x78fe6a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc96311f207e30e04e5ed18960b31fb3ba67d9cc
Validity
Not Before: Jan 1 15:58:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db114d93b6468bc97d7a0beca557fa72754e0d34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:bc:f4:16:6a:96:a6:26:82:d8:17:ec:a5:13:
cb:c2:e2:4f:56:dd:ad:2d:95:e0:86:19:20:a5:48:
17:3f:d0:90:bb:f9:e7:89:6a:6f:84:b3:58:76:de:
45:99:b6:ba:bc:85:76:25:3e:34:ce:4d:7f:29:11:
4a:e6:c4:99:ec:f1:53:63:3e:ba:56:81:af:2a:b6:
a2:c7:68:28:81:f6:bd:d4:5c:58:62:3c:56:b1:1a:
81:71:3f:2a:d7:ba:60:c2:d9:e7:68:67:2e:06:79:
6c:b1:06:f7:d9:96:42:0b:34:0f:98:e3:46:b2:e1:
39:85:d9:6a:80:0f:28:9e:79:af:6e:7b:58:18:5d:
45:4e:f2:26:d8:f6:88:c8:4c:94:8d:74:bc:34:9b:
03:f6:43:70:02:00:c6:84:8f:1b:aa:0f:d3:29:fc:
96:76:0e:c7:47:f5:a6:6e:aa:9b:3c:94:e1:2b:4b:
f4:4f:ef:28:9a:ba:05:cf:16:46:0c:22:bc:78:9c:
76:81:73:e0:53:f9:9e:31:bf:f0:1e:88:10:49:a2:
77:9c:d0:49:63:e6:19:30:9c:07:d6:98:86:13:92:
a3:ad:3b:a8:87:15:b2:80:23:a0:72:e5:a2:24:c3:
e8:15:5f:ae:a7:99:fc:34:22:e0:83:eb:47:44:3f:
9c:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:11:4D:93:B6:46:8B:C9:7D:7A:0B:EC:A5:57:FA:72:75:4E:0D:34
X509v3 Authority Key Identifier:
keyid:FC:96:31:1F:20:7E:30:E0:4E:5E:D1:89:60:B3:1F:B3:BA:67:D9:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_JYxHyB-MOBOXtGJYLMfs7pn2cw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/bc48d2-28e8-405d-9f9a-03897f4cb35d/1/2xFNk7ZGi8l9egvspVf6cnVODTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/bc48d2-28e8-405d-9f9a-03897f4cb35d/1/_JYxHyB-MOBOXtGJYLMfs7pn2cw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.116.0/24
Signature Algorithm: sha256WithRSAEncryption
12:54:70:e0:bf:dd:cc:a2:a9:3c:17:f9:ce:3a:bd:df:f9:e1:
ff:b8:17:e7:65:6a:1b:a5:96:89:11:cb:62:15:93:89:92:9a:
2f:bc:e1:c2:d6:94:c6:01:e8:de:6d:26:78:5d:c5:13:f2:2b:
33:82:39:7e:35:f3:4b:c2:52:b7:1b:1f:a6:66:76:d2:06:66:
2d:c5:8d:75:82:3c:10:87:f4:82:b3:76:09:d0:e8:d3:35:6a:
fe:fa:8c:c2:30:41:87:64:5e:37:2c:34:1d:e0:9e:80:35:b6:
6c:50:86:b3:d7:75:3d:df:3b:46:f2:f2:e1:7b:ad:8e:2b:bb:
e3:21:b3:3a:05:79:93:81:72:91:7e:41:8e:2b:70:e1:37:a3:
d0:11:8d:ad:f6:0d:32:3b:06:68:ad:73:a5:d7:6c:36:28:97:
a8:76:84:3f:77:70:7d:a3:0a:e6:bd:41:45:70:78:dc:ef:ec:
63:27:c0:62:aa:a3:d7:7f:0c:48:e1:04:ab:29:3b:8b:3a:c1:
a9:b6:f8:fe:de:41:0d:f1:fa:47:d3:bf:18:c7:32:bd:83:68:
c2:d2:ba:a8:fa:bc:24:d1:22:72:e3:b6:51:2f:c1:a4:ac:4f:
d6:0f:c7:e8:91:48:4b:15:e9:a4:b4:08:35:bd:a5:75:b9:0d:
df:af:ca:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:48 2024 by rpki-client on console-fra.rpki-client.org