Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/p2E8Lrm1M20nPX3mYx1P9dInU4A.roa
File: p2E8Lrm1M20nPX3mYx1P9dInU4A.roa (raw, json)
Hash identifier: hpSEzY9XCkp+fzKxH7szzTPkFHb6KNBZfPnP5F3adMw=
Subject key identifier: A7:61:3C:2E:B9:B5:33:6D:27:3D:7D:E6:63:1D:4F:F5:D2:27:53:80
Certificate issuer: /CN=d7219ec7383fa0610480ddfa62c3f82c400cd56f
Certificate serial: 01845BEAC7E68FD61A1BA33ECA5CE7A2ABEC
Authority key identifier: D7:21:9E:C7:38:3F:A0:61:04:80:DD:FA:62:C3:F8:2C:40:0C:D5:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1yGexzg_oGEEgN36YsP4LEAM1W8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/p2E8Lrm1M20nPX3mYx1P9dInU4A.roa
Signing time: Wed 09 Nov 2022 10:23:43 +0000
ROA not before: Wed 09 Nov 2022 10:23:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49581
IP address blocks: 185.103.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:5b:ea:c7:e6:8f:d6:1a:1b:a3:3e:ca:5c:e7:a2:ab:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7219ec7383fa0610480ddfa62c3f82c400cd56f
Validity
Not Before: Nov 9 10:23:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7613c2eb9b5336d273d7de6631d4ff5d2275380
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:cb:13:27:9d:66:16:45:84:72:bb:0a:65:97:
52:7a:e9:9f:ea:16:db:87:94:ee:1c:9a:16:f1:52:
a9:d5:bb:05:42:70:60:4c:75:79:1d:16:8c:81:9a:
95:a1:57:b0:a0:85:17:20:6c:b6:fa:6f:62:72:09:
c9:0c:e2:49:45:a2:1b:a2:75:4c:6c:b7:a9:4d:a0:
24:5f:e9:1b:2a:8e:bd:99:8d:95:9e:0b:4d:19:70:
b6:41:c2:45:1f:1f:9b:8b:68:3a:44:66:51:c4:bb:
eb:ab:83:e7:2b:38:eb:0d:b0:ca:52:c0:3f:e9:9b:
df:d3:e8:a2:12:51:82:f5:a3:e4:c8:e6:31:9c:50:
f9:26:97:96:68:0b:ec:de:49:14:fe:1a:05:96:35:
c2:80:d2:01:92:79:6a:46:bb:fc:17:cb:08:d1:df:
d2:da:42:30:35:23:5c:a6:ba:c1:03:16:a1:8d:bc:
1c:ab:90:fc:4e:d6:2e:5e:8e:24:91:af:07:c3:79:
c6:3d:ba:b4:c6:53:31:55:81:7d:72:4f:62:1c:03:
af:8b:d1:10:65:b8:ce:78:b3:eb:d1:e8:2f:fe:66:
1e:e8:a4:f5:df:59:20:75:13:39:70:e6:7f:57:3a:
b0:79:ca:f5:40:a6:00:8d:1e:1d:fb:e1:72:44:f6:
65:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:61:3C:2E:B9:B5:33:6D:27:3D:7D:E6:63:1D:4F:F5:D2:27:53:80
X509v3 Authority Key Identifier:
keyid:D7:21:9E:C7:38:3F:A0:61:04:80:DD:FA:62:C3:F8:2C:40:0C:D5:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1yGexzg_oGEEgN36YsP4LEAM1W8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/p2E8Lrm1M20nPX3mYx1P9dInU4A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/1yGexzg_oGEEgN36YsP4LEAM1W8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.6.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:06:9f:56:af:f9:0a:1d:06:30:0b:03:93:17:4e:4a:e2:38:
cd:5e:54:4e:a2:4c:aa:0c:42:06:99:2d:50:a0:09:d6:ed:ff:
7a:1f:02:32:d0:9e:77:77:c1:46:b5:df:3f:75:df:76:fb:55:
9b:7b:d7:e3:66:b1:28:59:68:34:1e:1c:21:6a:75:c8:16:4a:
74:b6:7f:c4:09:84:3a:3f:f0:dc:17:99:fe:2c:6f:bd:64:fd:
40:6c:2b:84:39:21:6f:9d:a4:5b:f2:6d:2c:1a:1d:4b:f6:d6:
4b:c0:24:13:57:7b:b2:cd:c2:60:ef:6a:0d:e2:71:16:c9:7c:
55:1a:3d:c0:d6:78:e3:42:71:7f:5b:57:2a:99:c2:73:9f:c2:
48:b0:94:15:66:d0:e9:b3:2e:19:81:2a:47:9e:b3:dc:f9:6c:
d7:7b:ab:51:cf:cb:25:53:df:a6:a5:85:8f:84:3a:e0:b7:da:
1b:35:99:8b:bf:6e:79:6d:f6:16:73:69:b0:c5:8e:ed:ce:9e:
8e:0f:34:4d:bf:72:6e:9d:6d:be:11:18:8c:fe:fa:18:13:f8:
f4:1b:f0:fd:95:d4:9a:f2:74:77:eb:8f:9f:2c:85:f5:47:cc:
b1:30:81:63:8e:39:27:27:f6:69:89:17:da:10:d4:5d:87:cb:
ff:ec:a0:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:12 2023 by rpki-client on console-ams.rpki-client.org