Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/c50251-a4e1-424d-9e92-ac6781e23e87/1/7pY_ebF2cBx1Lt63qZBO4Cy4TQw.roa
File: 7pY_ebF2cBx1Lt63qZBO4Cy4TQw.roa (raw, json)
Hash identifier: 4EK2U4Lnnl2QIAsK86Lm6q2Ka1H6+il5ufqY5NkFUlQ=
Subject key identifier: EE:96:3F:79:B1:76:70:1C:75:2E:DE:B7:A9:90:4E:E0:2C:B8:4D:0C
Certificate issuer: /CN=7703fd03a5f34d8d56e994c2b7f10ca49a0e0154
Certificate serial: 06EE9D2F
Authority key identifier: 77:03:FD:03:A5:F3:4D:8D:56:E9:94:C2:B7:F1:0C:A4:9A:0E:01:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dwP9A6XzTY1W6ZTCt_EMpJoOAVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/c50251-a4e1-424d-9e92-ac6781e23e87/1/7pY_ebF2cBx1Lt63qZBO4Cy4TQw.roa
Signing time: Sat 01 Jan 2022 04:59:59 +0000
ROA not before: Sat 01 Jan 2022 04:59:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210080
IP address blocks: 185.221.176.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116301103 (0x6ee9d2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7703fd03a5f34d8d56e994c2b7f10ca49a0e0154
Validity
Not Before: Jan 1 04:59:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee963f79b176701c752edeb7a9904ee02cb84d0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:0b:1b:da:a2:f5:9a:9e:95:64:81:5d:69:6d:
4b:65:78:ce:e6:66:32:6e:19:2f:bb:bc:9e:bc:ad:
8a:15:2e:3b:2a:9d:de:48:b3:70:3a:0d:5d:03:9f:
3d:e4:8b:de:b5:f6:f9:71:86:0e:7e:e3:4d:62:9d:
71:76:bd:7f:dd:b5:08:2f:6e:7f:6d:86:24:39:65:
63:27:8c:73:04:43:4c:c3:56:35:86:94:40:06:a3:
42:73:18:c3:8f:19:65:f1:3e:a8:ec:27:fb:cd:09:
8e:a1:98:6b:a0:60:72:91:54:0b:75:54:49:d9:65:
45:3f:90:df:74:79:26:31:be:fc:87:ea:a5:b2:67:
eb:22:f3:1c:df:f6:fc:d2:35:c8:07:db:c0:77:e1:
c7:26:85:6e:be:9f:9b:82:12:75:81:ff:4c:fa:31:
07:97:36:d7:7c:d6:b4:84:d3:f6:3b:84:fa:55:c6:
1b:4a:cb:d2:bc:e1:7f:70:0a:57:c1:0f:76:a4:c9:
eb:30:ad:44:fa:fc:c8:4c:9e:da:92:a7:e1:47:71:
8f:24:3f:ca:59:99:04:52:8e:20:67:d6:4d:a9:ae:
11:6d:4e:9a:9e:87:cd:dd:bd:41:b3:5f:af:8d:0f:
1f:ab:15:a6:8e:e6:38:dd:78:0b:27:dd:f0:d3:1c:
6b:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:96:3F:79:B1:76:70:1C:75:2E:DE:B7:A9:90:4E:E0:2C:B8:4D:0C
X509v3 Authority Key Identifier:
keyid:77:03:FD:03:A5:F3:4D:8D:56:E9:94:C2:B7:F1:0C:A4:9A:0E:01:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dwP9A6XzTY1W6ZTCt_EMpJoOAVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/c50251-a4e1-424d-9e92-ac6781e23e87/1/7pY_ebF2cBx1Lt63qZBO4Cy4TQw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/c50251-a4e1-424d-9e92-ac6781e23e87/1/dwP9A6XzTY1W6ZTCt_EMpJoOAVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.176.0/22
Signature Algorithm: sha256WithRSAEncryption
53:3b:81:98:6a:be:2b:bf:10:97:98:67:02:38:02:93:8e:05:
ea:30:ad:e0:8c:b6:fa:83:52:92:64:40:ab:93:bb:ba:de:d7:
1e:5d:bf:2d:af:6f:90:a9:4e:59:fe:5e:7c:17:20:06:e3:43:
ed:10:17:bd:1f:b5:9d:61:73:82:47:31:dc:b7:a5:9c:9e:c7:
68:fa:0e:bb:ed:95:a7:59:8f:19:bd:ed:b0:57:98:4a:86:14:
79:fa:c6:70:f1:0b:eb:b7:a8:1b:a9:c9:10:d6:0b:3b:c2:67:
34:6d:5f:89:48:b5:c7:55:f4:f0:bb:88:70:21:5c:95:67:ae:
17:5a:6d:6e:62:42:ee:e2:d2:b0:79:c5:ab:32:3d:e7:7c:4a:
c6:a6:0e:d4:8a:31:26:dd:4b:e4:de:e9:89:b2:80:3a:c4:6f:
d3:6b:b5:9f:39:35:87:44:eb:23:82:12:8b:ac:f5:61:10:a3:
df:e3:d6:00:db:84:a8:9a:2b:8c:b5:4f:58:9d:3d:d5:9c:40:
bb:dc:01:ad:21:49:e4:74:64:b9:c2:80:db:9e:49:8a:69:00:
07:d5:99:05:41:00:bc:d8:a2:21:8d:39:7d:65:f4:f1:3f:af:
87:a3:53:ac:7d:20:f8:96:4f:6e:4c:aa:f8:b0:75:fc:63:e8:
dd:0f:88:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:36 2024 by rpki-client on console-ams.rpki-client.org