Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/72a4e3-f793-4f9a-ba4e-0590394a2efa/1/EYSnOtsOeDFiGw4q4T4hLykYiTc.roa
File: EYSnOtsOeDFiGw4q4T4hLykYiTc.roa (raw, json)
Hash identifier: 6hdpaRB/cEqD2yZkp8MZ/7i1yyRSvqlztZ9vPpgwzuI=
Subject key identifier: 11:84:A7:3A:DB:0E:78:31:62:1B:0E:2A:E1:3E:21:2F:29:18:89:37
Certificate issuer: /CN=6fdbbe7e978029c6ceaa557b4a76da68074311b1
Certificate serial: 0187BD35551D7F6358C07AA08AB3AB0CAF23
Authority key identifier: 6F:DB:BE:7E:97:80:29:C6:CE:AA:55:7B:4A:76:DA:68:07:43:11:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b9u-fpeAKcbOqlV7SnbaaAdDEbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/72a4e3-f793-4f9a-ba4e-0590394a2efa/1/EYSnOtsOeDFiGw4q4T4hLykYiTc.roa
Signing time: Wed 26 Apr 2023 10:56:41 +0000
ROA not before: Wed 26 Apr 2023 10:56:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51175
IP address blocks: 185.191.244.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:bd:35:55:1d:7f:63:58:c0:7a:a0:8a:b3:ab:0c:af:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fdbbe7e978029c6ceaa557b4a76da68074311b1
Validity
Not Before: Apr 26 10:56:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1184a73adb0e7831621b0e2ae13e212f29188937
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f5:df:f9:a4:dc:01:1f:74:53:fb:17:d0:4e:
d6:ca:ea:79:e9:a2:f9:2c:0c:03:c4:c1:bd:e2:e1:
36:0d:99:73:b6:c9:2a:b8:6c:e5:f4:42:e9:a2:cc:
50:21:f6:85:10:40:8e:82:16:e8:67:88:a7:0b:0a:
34:b3:26:cf:16:ae:5e:38:68:4e:1f:40:0e:ac:e1:
40:da:94:46:c7:33:cf:9b:58:1e:c4:ed:8a:21:18:
1d:b3:69:3a:25:ba:b4:db:88:6f:06:d8:89:4b:c2:
b9:6f:d3:64:d3:64:30:11:7a:b8:ab:17:43:c8:53:
4b:42:2d:46:5d:39:33:9f:68:fd:d9:73:b9:70:77:
4d:c7:37:43:d8:a3:ef:d9:a6:b1:f2:3b:af:80:d9:
79:79:5c:34:94:f8:bd:80:92:52:1b:c3:2b:8c:43:
2f:28:2b:32:64:aa:46:ae:9c:ac:2f:1d:33:85:ab:
b1:ce:0b:fc:b2:d9:a4:10:85:e2:ae:19:11:f3:50:
00:68:0c:15:0c:6b:b2:ac:61:e2:ec:61:07:43:a3:
40:94:bc:d9:9e:a0:f7:a5:da:65:87:f9:46:7e:16:
b0:0d:88:ce:8e:9a:fb:0e:79:db:df:12:2a:06:f7:
b6:d7:24:7c:2d:c7:2c:2d:ed:30:ff:4e:be:44:52:
90:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:84:A7:3A:DB:0E:78:31:62:1B:0E:2A:E1:3E:21:2F:29:18:89:37
X509v3 Authority Key Identifier:
keyid:6F:DB:BE:7E:97:80:29:C6:CE:AA:55:7B:4A:76:DA:68:07:43:11:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9u-fpeAKcbOqlV7SnbaaAdDEbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/72a4e3-f793-4f9a-ba4e-0590394a2efa/1/EYSnOtsOeDFiGw4q4T4hLykYiTc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/72a4e3-f793-4f9a-ba4e-0590394a2efa/1/b9u-fpeAKcbOqlV7SnbaaAdDEbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.191.244.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:b6:ce:70:b6:24:46:1e:b5:3f:dc:5c:f7:9b:c8:dc:c3:91:
cc:ce:e7:46:86:8f:0c:8a:9a:75:ad:50:a4:d8:6f:38:5d:39:
71:d6:f5:a3:a9:9f:d5:8c:6e:63:50:12:8c:5b:f7:84:7f:21:
8e:56:b7:de:44:91:fd:b7:5b:5c:17:d2:e9:ee:f2:9c:8c:c4:
dd:dc:97:7f:d7:8a:b0:32:a6:c8:84:1c:47:a4:04:4f:10:75:
c4:42:31:91:97:61:43:7a:b0:8f:66:89:62:51:6e:cc:c1:8c:
e2:57:33:f5:e7:cc:9c:63:87:0e:e8:34:dc:93:3a:28:5a:89:
2b:fe:90:a3:79:ba:8f:48:02:43:3d:2b:b1:73:00:bf:ec:36:
ee:b0:ab:d5:d4:fd:c9:6a:49:e0:fa:d4:3c:c8:8d:cc:61:31:
a0:0d:c4:93:24:84:6f:3e:57:d6:13:f5:12:5f:a1:2a:9b:b1:
48:2b:4b:73:cc:72:3a:34:51:b5:ea:16:20:10:a6:67:81:57:
b3:77:9c:31:fd:46:6a:d3:3b:cb:42:df:de:13:c9:bd:80:49:
df:d6:aa:b5:b6:79:6d:d6:08:cf:80:14:d4:59:db:b6:df:9a:
c8:6d:3a:a6:08:f3:2d:d6:b7:24:e0:53:96:9e:fe:c7:15:d7:
ec:54:a5:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:12 2025 by rpki-client