Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/34b93c-a03d-4ada-83fc-bc637a8512b1/1/ELpIt7qc5AFmGkvEdbcoQmyYg2o.roa
File: ELpIt7qc5AFmGkvEdbcoQmyYg2o.roa (raw, json)
Hash identifier: rMTW+JTtWDXHhi31Zxb6I6prZf3WXux2OEmpy027c+o=
Subject key identifier: 10:BA:48:B7:BA:9C:E4:01:66:1A:4B:C4:75:B7:28:42:6C:98:83:6A
Certificate issuer: /CN=23ee5e71409b21fd5c820f3d3ac3fdc0fce75a0b
Certificate serial: 01857183314A7948F31CB188598D73D85E31
Authority key identifier: 23:EE:5E:71:40:9B:21:FD:5C:82:0F:3D:3A:C3:FD:C0:FC:E7:5A:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I-5ecUCbIf1cgg89OsP9wPznWgs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/34b93c-a03d-4ada-83fc-bc637a8512b1/1/ELpIt7qc5AFmGkvEdbcoQmyYg2o.roa
Signing time: Mon 02 Jan 2023 08:05:01 +0000
ROA not before: Mon 02 Jan 2023 08:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 185.210.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:83:31:4a:79:48:f3:1c:b1:88:59:8d:73:d8:5e:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23ee5e71409b21fd5c820f3d3ac3fdc0fce75a0b
Validity
Not Before: Jan 2 08:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=10ba48b7ba9ce401661a4bc475b728426c98836a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:8b:90:1b:3a:bf:d9:9f:f9:e6:58:95:b8:84:
f7:30:95:7e:41:28:52:f3:95:11:4c:75:83:6d:71:
8c:68:6d:da:25:f5:f8:ee:36:46:b3:68:95:bc:95:
4f:72:9d:29:4e:11:70:b3:ff:0c:e1:95:c3:82:af:
a0:9f:92:9a:8a:e9:17:fd:1e:aa:ab:40:b9:7d:a3:
b4:a1:5b:bd:d2:50:7a:52:ab:9c:66:5b:fb:2c:3a:
7c:a9:6c:4b:e8:7b:96:3d:91:aa:43:f5:e9:46:30:
85:10:80:01:ab:d7:ca:78:57:fa:30:be:f3:19:3b:
6f:73:89:0a:ae:f1:77:c6:81:1f:1d:b8:e7:82:cf:
50:56:b9:a6:9a:b2:ad:2e:bd:65:ad:1c:9c:f4:af:
da:13:84:1d:20:cb:a8:4c:05:54:ce:f6:13:a6:ac:
46:20:83:be:7d:43:70:7d:94:01:e7:79:47:53:e7:
98:76:da:84:f6:0f:c5:65:84:9d:60:59:97:ef:30:
b0:fd:29:1b:65:d4:0c:d6:09:68:97:2c:b2:9d:6c:
f8:02:a1:6f:d8:ba:93:dd:5e:eb:7d:2f:5d:83:83:
61:e1:1b:93:8b:6b:0d:b1:42:4f:ae:ff:91:b4:82:
3f:d5:4c:2d:99:9b:a5:26:7e:d9:46:68:78:b2:ec:
ab:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:BA:48:B7:BA:9C:E4:01:66:1A:4B:C4:75:B7:28:42:6C:98:83:6A
X509v3 Authority Key Identifier:
keyid:23:EE:5E:71:40:9B:21:FD:5C:82:0F:3D:3A:C3:FD:C0:FC:E7:5A:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I-5ecUCbIf1cgg89OsP9wPznWgs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/34b93c-a03d-4ada-83fc-bc637a8512b1/1/ELpIt7qc5AFmGkvEdbcoQmyYg2o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/34b93c-a03d-4ada-83fc-bc637a8512b1/1/I-5ecUCbIf1cgg89OsP9wPznWgs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.156.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:7c:8c:d7:4d:58:17:8f:3f:ef:79:00:e6:25:67:f5:de:ed:
85:76:da:f1:47:c1:c2:e8:32:bc:ab:7b:b9:0b:99:00:83:b7:
12:bc:8d:fe:8c:d1:74:90:14:4d:e3:e6:84:19:00:6c:ad:72:
06:ce:25:43:e9:e7:8f:3f:20:f7:1f:38:9e:8d:8d:dd:c9:a1:
59:27:17:09:8e:09:40:61:ee:86:1c:a7:bd:71:65:db:f3:a8:
dc:b8:dc:e1:50:67:c9:dc:c8:42:e6:67:a0:9b:c8:95:a3:83:
04:d0:19:80:37:6d:76:29:9c:d0:f1:66:18:44:8c:46:ee:d1:
6b:05:05:52:57:ec:6b:3a:b1:fd:5d:cc:10:14:e8:a3:8f:67:
c3:b2:71:20:5f:26:f4:9d:74:5a:bc:f9:fc:58:7d:38:51:78:
61:c0:69:21:38:0a:2d:0c:cd:77:9e:ae:14:61:3a:95:ad:5f:
68:bc:ab:ac:08:6a:9c:3b:ac:1a:5a:fc:c4:33:83:e0:9a:c4:
1b:23:d2:ad:8b:5c:0e:8f:18:09:27:c0:25:60:ca:f4:51:74:
39:48:15:7d:ad:28:e0:23:2c:25:25:4b:53:90:01:0e:86:de:
70:f4:f6:de:8e:ed:2f:a9:d7:17:8a:a2:c8:38:48:3c:de:15:
39:25:4c:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:45:49 2025 by rpki-client