Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/7281da-0eb0-40a8-9983-d1a9da4a130d/1/24GDGi9CQc8wJVneNwIUbToSBJk.roa
File: 24GDGi9CQc8wJVneNwIUbToSBJk.roa (raw, json)
Hash identifier: v2afquy8RWOD9qj0ErlE7yySrH3N+dZdg4xnx0dQYlA=
Subject key identifier: DB:81:83:1A:2F:42:41:CF:30:25:59:DE:37:02:14:6D:3A:12:04:99
Certificate issuer: /CN=ebc66403ad0c4537af9c32b0def0c52ac2aab104
Certificate serial: 17A48735
Authority key identifier: EB:C6:64:03:AD:0C:45:37:AF:9C:32:B0:DE:F0:C5:2A:C2:AA:B1:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/68ZkA60MRTevnDKw3vDFKsKqsQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/7281da-0eb0-40a8-9983-d1a9da4a130d/1/24GDGi9CQc8wJVneNwIUbToSBJk.roa
Signing time: Mon 11 Apr 2022 13:09:29 +0000
ROA not before: Mon 11 Apr 2022 13:09:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400495
IP address blocks: 185.33.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 396658485 (0x17a48735)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebc66403ad0c4537af9c32b0def0c52ac2aab104
Validity
Not Before: Apr 11 13:09:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db81831a2f4241cf302559de3702146d3a120499
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:fb:89:1d:38:40:93:05:45:c3:d3:b6:f1:e5:
7c:52:c4:ca:50:03:46:23:e0:67:7e:cb:d1:57:2f:
77:8a:f5:9b:4b:6d:8e:38:12:6b:a4:b3:22:ad:76:
42:56:af:6e:cd:2d:d1:b2:ea:cf:17:cd:78:86:54:
79:78:44:2a:64:d4:c4:25:f1:80:76:16:01:4b:c9:
bd:bc:15:c7:0b:bd:3b:9e:dc:3f:34:d9:a4:f1:db:
95:b2:06:15:a8:65:72:e8:7a:21:aa:79:16:07:93:
5a:ba:74:44:f2:63:93:2a:e3:b3:6c:23:f4:35:14:
d7:24:b8:8a:32:76:1e:7c:79:02:ed:60:e2:f7:02:
55:d1:59:a2:67:3a:b7:19:e0:b5:27:cb:fa:ef:c1:
84:ee:5c:2f:f0:4f:17:69:e7:56:39:78:cf:12:31:
9d:ed:00:4b:b4:5d:a9:c8:90:d6:f5:54:ac:7c:1f:
64:55:0d:9b:e3:02:b4:a5:c9:61:26:f5:31:b7:94:
2e:27:9a:0b:36:59:4b:1a:78:45:5e:a7:42:81:23:
7e:50:b2:74:b9:c8:2f:f2:af:0e:13:a0:95:1c:c0:
60:a9:3d:98:b7:c5:1a:44:2d:8a:19:01:6f:77:38:
2d:e6:c1:b8:34:53:c8:a0:6c:d4:51:94:e6:68:db:
62:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:81:83:1A:2F:42:41:CF:30:25:59:DE:37:02:14:6D:3A:12:04:99
X509v3 Authority Key Identifier:
keyid:EB:C6:64:03:AD:0C:45:37:AF:9C:32:B0:DE:F0:C5:2A:C2:AA:B1:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/68ZkA60MRTevnDKw3vDFKsKqsQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/7281da-0eb0-40a8-9983-d1a9da4a130d/1/24GDGi9CQc8wJVneNwIUbToSBJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/7281da-0eb0-40a8-9983-d1a9da4a130d/1/68ZkA60MRTevnDKw3vDFKsKqsQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.33.95.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:b2:51:fa:f2:2d:a7:e3:96:41:ff:7d:89:2a:e3:e3:46:f8:
4d:d1:d4:32:a3:57:7a:b4:dc:e7:cf:b3:5a:2e:63:d3:52:cb:
31:68:e1:29:63:b2:9e:b1:f6:b1:3f:c1:ae:5d:fb:0d:d1:2f:
3e:cf:c8:ff:fb:e5:53:5c:71:bf:93:fe:d5:95:fa:0d:1e:df:
19:4f:58:20:57:a9:e8:2e:18:31:5c:6a:4f:29:7e:ac:84:ed:
9e:ed:8e:74:3c:18:17:70:f3:af:1c:60:58:27:bf:50:97:2b:
8c:93:b1:b5:39:40:55:1a:3d:94:a4:a1:2c:f6:75:5b:06:ac:
ee:ac:19:4e:03:c0:41:e1:6e:40:7d:9a:0f:ca:59:96:c1:07:
e3:30:1b:fb:f5:c0:bb:fc:1b:8f:78:53:98:84:31:1e:49:14:
dc:5e:f5:b8:cc:17:a7:2f:07:96:c6:97:e1:5e:a0:8a:60:d3:
33:cc:e6:d9:8f:95:9e:4e:73:b9:f4:8b:70:6f:a8:0b:9a:f7:
0d:22:86:3c:9d:5e:0a:00:a7:83:5e:75:00:2e:41:61:80:d8:
6a:d2:d9:7d:b5:fe:7a:14:1d:7c:c0:06:97:4b:19:fa:8c:64:
02:31:c2:33:bb:b9:da:4a:2e:12:8e:cc:be:95:91:db:ca:d1:
52:43:66:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:15 2023 by rpki-client on console-fra.rpki-client.org