Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/7281da-0eb0-40a8-9983-d1a9da4a130d/1/Qy7Zbn_ksoEVk1EZspSIkLCPkQE.roa
File: Qy7Zbn_ksoEVk1EZspSIkLCPkQE.roa (raw, json)
Hash identifier: sDR11gxv320iKlyP33YymJrZAdPysOLhJR2MK1Lrzds=
Subject key identifier: 43:2E:D9:6E:7F:E4:B2:81:15:93:51:19:B2:94:88:90:B0:8F:91:01
Certificate issuer: /CN=ebc66403ad0c4537af9c32b0def0c52ac2aab104
Certificate serial: 179843CD
Authority key identifier: EB:C6:64:03:AD:0C:45:37:AF:9C:32:B0:DE:F0:C5:2A:C2:AA:B1:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/68ZkA60MRTevnDKw3vDFKsKqsQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/7281da-0eb0-40a8-9983-d1a9da4a130d/1/Qy7Zbn_ksoEVk1EZspSIkLCPkQE.roa
Signing time: Wed 06 Apr 2022 03:20:44 +0000
ROA not before: Wed 06 Apr 2022 03:20:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212238
IP address blocks: 185.33.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 395854797 (0x179843cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebc66403ad0c4537af9c32b0def0c52ac2aab104
Validity
Not Before: Apr 6 03:20:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=432ed96e7fe4b28115935119b2948890b08f9101
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:02:7f:ea:a1:53:8c:de:e8:9a:1d:7a:20:e7:
ce:75:89:f9:0b:70:73:72:80:fd:4c:1a:a3:c9:56:
96:71:e6:1d:cd:28:0f:9e:5e:7e:d2:40:21:2b:0e:
e9:51:48:88:44:99:0c:ee:68:bb:e4:a8:b3:f4:5b:
d8:cc:f5:dd:94:45:81:67:e7:ad:df:49:b4:10:98:
93:7c:9d:40:c7:45:47:cd:ee:ab:92:69:65:f4:f7:
91:94:d0:d5:ad:ca:b9:fd:c5:70:7a:29:e6:25:5d:
84:7d:34:27:b3:ef:28:76:dd:bc:83:ea:ec:c7:1a:
7b:9d:db:4c:2b:86:41:8f:5c:71:75:d9:7e:af:d1:
0d:25:c3:a5:85:ff:af:c8:fd:b6:79:7e:b9:c9:7c:
9c:00:4c:67:bb:f8:5c:48:1f:f5:89:2f:50:f3:6c:
27:36:69:4b:1d:8b:ba:55:21:8e:ce:d7:2b:b2:18:
7f:ac:7d:aa:db:76:eb:82:d9:54:c3:1f:0d:7a:14:
7a:6d:66:bb:dd:b8:2f:70:66:47:19:61:34:6e:2c:
85:8d:9b:fc:01:24:d1:dc:3d:b4:69:0d:c5:0d:bb:
72:26:a3:ac:49:d8:b3:5e:67:d3:53:ff:61:49:23:
64:9d:9f:d6:e4:0c:50:72:db:6f:d9:7c:2e:fb:70:
6c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:2E:D9:6E:7F:E4:B2:81:15:93:51:19:B2:94:88:90:B0:8F:91:01
X509v3 Authority Key Identifier:
keyid:EB:C6:64:03:AD:0C:45:37:AF:9C:32:B0:DE:F0:C5:2A:C2:AA:B1:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/68ZkA60MRTevnDKw3vDFKsKqsQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/7281da-0eb0-40a8-9983-d1a9da4a130d/1/Qy7Zbn_ksoEVk1EZspSIkLCPkQE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/7281da-0eb0-40a8-9983-d1a9da4a130d/1/68ZkA60MRTevnDKw3vDFKsKqsQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.33.95.0/24
Signature Algorithm: sha256WithRSAEncryption
41:35:73:68:b4:23:c7:e7:24:fc:bb:1c:f5:a2:33:ac:58:fd:
b0:1f:4d:44:b9:fa:64:37:e2:59:0e:dd:c0:47:6a:8e:aa:90:
14:5a:46:09:c1:b0:e6:17:10:ab:b2:67:31:32:52:08:0e:3c:
54:52:3a:65:00:48:81:5c:96:4d:08:9b:31:66:b5:2c:a8:6d:
73:dc:e2:73:b0:b6:56:9b:c5:7e:e7:fe:82:c0:b6:6d:24:e7:
c4:b5:4e:ea:b7:27:15:06:b1:e6:33:d3:8d:72:2f:ae:a2:5c:
f9:df:0b:74:25:f1:fe:bc:42:3d:0c:69:8e:e7:7c:c0:a4:0e:
fd:6a:be:0e:52:f0:ae:a2:fb:d7:a7:99:1c:15:aa:9e:33:d9:
33:ac:2f:04:fd:3e:31:c2:d4:cb:29:fc:d2:8b:9e:ce:03:49:
c4:c7:d4:d1:6c:e2:bf:fd:b6:21:95:79:03:9d:08:47:51:29:
8a:55:22:91:b1:20:37:05:15:64:bd:5b:7f:13:85:42:62:c1:
23:56:65:1a:f3:7b:03:51:44:db:b9:7d:ab:60:6d:a0:05:38:
96:65:48:d6:72:91:28:93:83:c4:fc:7a:d1:38:67:a8:6d:6d:
52:b4:58:73:f3:10:e0:fd:84:98:8f:6d:19:ae:dc:b2:12:bd:
6d:5f:62:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:15 2024 by rpki-client on console-ams.rpki-client.org