Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/ef2in09R6Yns72Wy5dfJSiEchkc.roa
File: ef2in09R6Yns72Wy5dfJSiEchkc.roa (raw, json)
Hash identifier: tqKPk8HdahKtQP+g53kMrKEOemY1SOyKCDghlJelO48=
Subject key identifier: 79:FD:A2:9F:4F:51:E9:89:EC:EF:65:B2:E5:D7:C9:4A:21:1C:86:47
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 092A4E3E
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/ef2in09R6Yns72Wy5dfJSiEchkc.roa
Signing time: Sat 01 Jan 2022 16:00:52 +0000
ROA not before: Sat 01 Jan 2022 16:00:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210659
IP address blocks: 185.186.65.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153767486 (0x92a4e3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 1 16:00:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=79fda29f4f51e989ecef65b2e5d7c94a211c8647
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:85:31:83:71:36:bc:04:04:5d:6a:43:61:45:
2f:9e:e5:f2:0f:38:15:c4:3e:ee:02:d9:8c:3a:6d:
28:30:55:0c:b8:18:8d:c1:3a:89:59:65:65:76:0b:
aa:68:12:e3:1f:18:a4:f0:46:68:41:98:4f:19:fa:
3d:53:43:01:ea:d4:f4:be:da:cb:4c:67:3c:12:27:
db:88:a9:f4:af:c2:6f:dd:21:7c:8d:01:d3:0d:5c:
a8:b7:4d:fb:8a:5e:0d:19:eb:88:89:13:9a:d5:e9:
18:25:46:4a:55:b0:75:d3:0f:90:0d:94:7b:4b:94:
e0:73:82:8a:d9:3a:b0:b2:5a:3d:51:d5:c7:b1:6f:
07:7f:5e:06:f7:4a:88:f8:3f:8e:25:0b:f6:eb:44:
ec:76:c1:33:50:6b:09:01:a9:f1:10:e1:59:4d:37:
75:43:c1:02:3c:77:7e:07:ef:c9:ed:42:fc:a1:68:
2d:aa:62:20:5d:44:27:9e:72:65:d0:72:60:dd:bb:
ff:6a:6d:93:10:b4:32:14:f6:1e:5e:53:ae:df:8c:
70:f3:b6:ae:bf:34:11:28:54:c6:7c:99:1d:28:c8:
5b:9b:8c:d3:be:d1:42:6a:d7:94:8c:16:19:f3:17:
05:e7:d1:64:6a:56:55:ca:00:79:5f:cf:63:4b:b0:
af:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:FD:A2:9F:4F:51:E9:89:EC:EF:65:B2:E5:D7:C9:4A:21:1C:86:47
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/ef2in09R6Yns72Wy5dfJSiEchkc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.65.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:a4:85:70:dd:15:99:74:34:eb:5d:ab:03:e1:01:e4:03:43:
12:a0:51:4d:71:b8:67:e5:d8:c7:fb:ad:29:1c:99:1e:03:03:
71:79:07:3e:43:84:42:af:ab:81:8b:03:2e:88:47:e0:2c:d0:
dd:ce:25:2e:7a:a6:b9:8e:f1:7b:f7:7d:2c:57:6c:e1:e3:8f:
79:a0:a9:8d:80:bc:70:db:01:10:c0:2d:24:b7:da:c3:72:c6:
25:d8:2f:a5:f5:0e:f6:cf:d5:71:1e:86:03:ac:5c:a1:bb:b4:
44:24:9c:38:5b:b3:75:07:87:7c:54:11:39:b4:dc:a7:74:b2:
72:33:6e:86:43:a1:ea:99:11:44:52:b1:b0:f2:93:f7:87:f3:
15:45:7a:d3:0b:b7:5e:a9:a2:3a:ad:33:dd:3c:0c:8b:e8:d4:
9d:90:2d:b5:ce:f5:f6:4f:2b:72:ba:a2:2d:fa:be:4e:8d:cc:
04:1e:86:80:58:70:aa:29:e7:ac:de:8a:a7:6c:59:77:31:11:
62:56:62:c4:c2:db:49:9c:f8:2b:04:05:24:d0:6e:7e:e8:95:
65:8e:77:63:86:31:50:0b:7a:89:2d:d7:97:9d:c4:b1:24:1f:
ca:9d:74:06:d1:1a:7e:9b:be:65:65:2a:e8:98:23:7b:1f:78:
ed:ba:b3:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:49 2024 by rpki-client on console-fra.rpki-client.org