Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/7281da-0eb0-40a8-9983-d1a9da4a130d/1/I5SmjS7olfM7tzmOhXq4Sk0q1Z8.roa
File: I5SmjS7olfM7tzmOhXq4Sk0q1Z8.roa (raw, json)
Hash identifier: +oC470Zq8QggJVMODdvTJBPiIDMujOMiaNrBLPLXkzw=
Subject key identifier: 23:94:A6:8D:2E:E8:95:F3:3B:B7:39:8E:85:7A:B8:4A:4D:2A:D5:9F
Certificate issuer: /CN=ebc66403ad0c4537af9c32b0def0c52ac2aab104
Certificate serial: 0181EDAA89896994DDF57439EDF8021999BD
Authority key identifier: EB:C6:64:03:AD:0C:45:37:AF:9C:32:B0:DE:F0:C5:2A:C2:AA:B1:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/68ZkA60MRTevnDKw3vDFKsKqsQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/7281da-0eb0-40a8-9983-d1a9da4a130d/1/I5SmjS7olfM7tzmOhXq4Sk0q1Z8.roa
Signing time: Mon 11 Jul 2022 14:29:45 +0000
ROA not before: Mon 11 Jul 2022 14:29:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.33.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:ed:aa:89:89:69:94:dd:f5:74:39:ed:f8:02:19:99:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebc66403ad0c4537af9c32b0def0c52ac2aab104
Validity
Not Before: Jul 11 14:29:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2394a68d2ee895f33bb7398e857ab84a4d2ad59f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ba:1b:94:92:5f:35:b8:22:7d:ca:10:b4:dc:
4f:21:e1:6c:62:f8:e6:04:04:34:55:4f:22:55:a7:
f8:bb:99:b2:7f:db:31:33:ff:07:fd:d5:c5:53:ae:
7f:0b:3e:4d:4b:89:00:6d:b6:b1:3e:93:97:24:ec:
ec:a7:e1:d6:5f:d9:ee:00:94:f4:57:96:cd:43:98:
ed:ad:3b:a0:2a:34:58:02:43:c1:82:2b:8b:ce:0c:
06:60:15:74:ab:bd:3e:a0:be:3e:9b:c7:07:c9:91:
9b:80:c5:46:68:3a:8d:e5:d1:7d:01:b0:89:4a:ed:
79:b1:69:c4:2a:8f:32:2b:5c:c9:2f:03:10:ca:ad:
ee:82:98:06:5d:4a:48:3f:e0:43:9b:58:51:32:20:
5d:49:50:34:81:0d:e6:f6:82:3f:a5:57:7a:0e:a0:
c1:d2:7e:c9:22:42:7a:09:ae:cb:e6:7d:c0:c8:07:
52:d6:72:31:39:b2:cd:8c:0a:e6:d8:2e:8e:75:82:
72:bf:56:0b:52:f7:98:30:19:a2:fe:c3:27:96:17:
2d:dc:fd:e3:36:d1:23:cf:5b:bd:63:f9:96:22:85:
ff:5e:42:09:ac:9d:d7:b9:56:f8:32:06:d2:1d:9d:
3a:c2:0e:68:d8:67:de:29:97:06:f7:d3:46:1c:81:
79:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:94:A6:8D:2E:E8:95:F3:3B:B7:39:8E:85:7A:B8:4A:4D:2A:D5:9F
X509v3 Authority Key Identifier:
keyid:EB:C6:64:03:AD:0C:45:37:AF:9C:32:B0:DE:F0:C5:2A:C2:AA:B1:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/68ZkA60MRTevnDKw3vDFKsKqsQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/7281da-0eb0-40a8-9983-d1a9da4a130d/1/I5SmjS7olfM7tzmOhXq4Sk0q1Z8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/7281da-0eb0-40a8-9983-d1a9da4a130d/1/68ZkA60MRTevnDKw3vDFKsKqsQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.33.94.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:0b:b7:d6:78:7a:37:29:85:55:58:59:de:a4:73:92:81:fc:
5f:b1:4f:a7:bf:48:c7:c6:ec:a9:d5:f8:7d:9d:4c:5d:51:9a:
94:2d:43:de:ae:aa:29:ed:49:1d:4d:85:ca:e0:d4:c8:7a:8f:
57:3a:c2:50:88:b1:3a:c8:f0:6a:8f:d1:30:73:16:20:77:80:
67:73:b2:fb:3b:3c:39:3e:d1:62:db:0c:18:90:05:6e:9a:55:
d3:a2:94:87:5d:3b:bb:cb:b2:b2:5f:a9:98:69:01:b2:40:27:
3e:ac:b3:ce:98:6e:67:df:e8:28:81:5d:ed:5a:23:ee:cf:1d:
aa:8d:18:ac:39:aa:25:3f:cb:62:4d:e9:42:14:f3:5d:a8:ac:
c5:36:95:cf:0a:11:74:14:f7:8c:58:d8:15:8d:02:7b:2f:c8:
51:32:50:33:79:a8:5b:fb:8c:72:c5:49:10:6e:74:07:3f:47:
3b:3d:bf:2a:e9:e0:c3:ad:46:b9:e2:68:18:61:26:32:1f:da:
bf:c7:b8:eb:05:ed:31:79:7c:75:c9:5e:e6:6c:09:56:6f:b9:
49:23:6d:7b:63:f6:69:1b:49:11:d5:f2:1c:70:41:94:de:5d:
26:31:39:01:46:b3:b2:18:3a:81:bf:66:c2:e3:74:0f:9a:61:
26:fa:16:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:04 2023 by rpki-client on console-ams.rpki-client.org