Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/1a5a96-d36e-4f3a-9b34-0548d3895a55/1/1-FZtt2r_1FDc1EMdGxkJXzFp9XA.roa
File: 1-FZtt2r_1FDc1EMdGxkJXzFp9XA.roa (raw, json)
Hash identifier: VfJMX2nQT/cF2MqegmwBHDtn/iXrcAYa1x2vFRNjSmQ=
Subject key identifier: F8:56:6D:B7:6A:FF:D4:50:DC:D4:43:1D:1B:19:09:5F:31:69:F5:70
Certificate issuer: /CN=0b1e72f3d0957f5a6e3bd1b844a12a6147449027
Certificate serial: 09CD7A09
Authority key identifier: 0B:1E:72:F3:D0:95:7F:5A:6E:3B:D1:B8:44:A1:2A:61:47:44:90:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cx5y89CVf1puO9G4RKEqYUdEkCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/1a5a96-d36e-4f3a-9b34-0548d3895a55/1/1-FZtt2r_1FDc1EMdGxkJXzFp9XA.roa
Signing time: Tue 17 May 2022 15:17:29 +0000
ROA not before: Tue 17 May 2022 15:17:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207579
IP address blocks: 185.237.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 164461065 (0x9cd7a09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b1e72f3d0957f5a6e3bd1b844a12a6147449027
Validity
Not Before: May 17 15:17:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f8566db76affd450dcd4431d1b19095f3169f570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:55:50:ff:1b:01:5e:ee:21:97:6c:3d:c9:2e:
c7:2b:d7:cb:95:81:38:56:bc:d9:97:98:85:a0:a8:
f4:a6:5b:d8:58:03:fb:dd:c7:5b:79:b9:f5:8e:68:
10:49:a4:9b:3b:08:d1:95:7d:a4:47:ee:89:49:80:
3b:84:5d:42:d1:f1:8b:76:02:aa:e6:b4:92:47:bb:
4a:12:c6:89:d7:be:a5:8a:c7:96:32:85:1e:6e:e4:
1e:91:1f:8f:30:cf:16:e6:f1:18:c2:5e:ff:15:a4:
46:81:5b:ee:81:c5:67:56:26:55:1f:19:29:f8:b2:
a7:bc:b3:6d:df:49:a1:20:b1:92:8c:80:9b:0f:08:
3c:df:73:b8:64:92:df:b8:f2:d9:69:bb:cf:73:f4:
fb:a8:66:1f:3b:87:c5:71:da:b4:45:a8:7a:1a:83:
1a:f0:ea:68:d5:af:5b:72:3a:85:30:72:62:d0:38:
7a:65:ab:58:58:ec:c2:50:80:99:df:67:14:42:71:
4c:a0:6d:ed:3c:0c:c0:43:47:03:71:10:42:63:01:
de:b7:d2:d2:96:98:ca:a1:3c:5b:54:30:4a:44:a1:
8c:99:c5:b8:4b:7a:3c:e1:29:bf:6d:38:ab:99:2b:
3e:35:e1:9c:ab:e1:10:9c:ec:51:70:8e:64:cd:57:
0b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:56:6D:B7:6A:FF:D4:50:DC:D4:43:1D:1B:19:09:5F:31:69:F5:70
X509v3 Authority Key Identifier:
keyid:0B:1E:72:F3:D0:95:7F:5A:6E:3B:D1:B8:44:A1:2A:61:47:44:90:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cx5y89CVf1puO9G4RKEqYUdEkCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/1a5a96-d36e-4f3a-9b34-0548d3895a55/1/1-FZtt2r_1FDc1EMdGxkJXzFp9XA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/1a5a96-d36e-4f3a-9b34-0548d3895a55/1/Cx5y89CVf1puO9G4RKEqYUdEkCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.237.213.0/24
Signature Algorithm: sha256WithRSAEncryption
22:30:0f:68:63:1f:be:4f:a0:62:60:11:5d:a3:df:80:c7:cc:
c7:cc:6b:cd:7f:fb:a4:59:aa:18:3f:3f:ae:9b:82:50:3a:f0:
bc:98:b6:fd:27:bf:7a:ba:cd:78:ae:95:59:c3:14:ab:ec:f1:
34:7e:bd:ee:fc:e2:57:6b:54:38:04:03:63:bd:d8:1a:c7:ea:
8e:65:61:12:4b:1e:47:e6:4a:f2:f3:17:e4:db:e3:70:1a:1c:
b8:80:47:52:06:e0:11:08:fe:75:cb:ba:74:63:78:cd:a1:18:
00:60:a4:7d:90:3e:d5:1f:ab:df:43:76:17:98:44:01:70:d2:
2b:83:94:8f:72:35:0d:a8:96:3a:dd:30:a3:c6:b6:f9:9f:e0:
e0:c9:2c:18:3c:d0:60:83:02:95:7b:b7:51:8f:e8:fd:42:6c:
57:07:b1:09:17:3c:58:67:70:e5:45:8b:ae:06:e6:f3:4d:5c:
59:63:5f:d8:ff:36:96:cd:cc:45:d9:b9:e4:ce:d5:c0:1b:7e:
e8:be:36:74:08:8e:35:f7:ac:c2:0c:d7:00:06:32:54:54:70:
21:25:31:1c:33:c9:88:a8:87:db:c5:cd:67:61:5f:bb:9e:e3:
e4:a6:22:c3:cb:60:4a:dd:48:6a:10:03:14:ad:ce:dd:c4:d4:
1e:20:bf:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:38 2023 by rpki-client on console-ams.rpki-client.org