Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/f7977e-ad30-4cb7-8ed3-29f4cd0ba804/1/1-GXFpNhU_8M5XUzNC9T2xAbV5LQ.roa
File: 1-GXFpNhU_8M5XUzNC9T2xAbV5LQ.roa (raw, json)
Hash identifier: RiBPuLyPLScKeMEPTw6JwbtsxAFmlt7g0fmAdSovTwY=
Subject key identifier: F8:65:C5:A4:D8:54:FF:C3:39:5D:4C:CD:0B:D4:F6:C4:06:D5:E4:B4
Certificate issuer: /CN=13cd87027d7d3a3b9f7c4ba4495e49e21ad5a4bb
Certificate serial: 02CCFA59
Authority key identifier: 13:CD:87:02:7D:7D:3A:3B:9F:7C:4B:A4:49:5E:49:E2:1A:D5:A4:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E82HAn19OjuffEukSV5J4hrVpLs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/f7977e-ad30-4cb7-8ed3-29f4cd0ba804/1/1-GXFpNhU_8M5XUzNC9T2xAbV5LQ.roa
Signing time: Sat 01 Jan 2022 01:54:11 +0000
ROA not before: Sat 01 Jan 2022 01:54:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202709
IP address blocks: 185.242.178.0/24 maxlen: 24
2a10:98c0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46987865 (0x2ccfa59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13cd87027d7d3a3b9f7c4ba4495e49e21ad5a4bb
Validity
Not Before: Jan 1 01:54:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f865c5a4d854ffc3395d4ccd0bd4f6c406d5e4b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:6e:d5:f8:85:65:03:e5:d0:11:43:18:74:62:
b5:b6:15:93:36:26:ee:93:16:1e:e7:1a:5d:49:ad:
ae:f0:8c:46:93:4b:2a:2e:39:48:58:80:71:d0:2e:
d6:51:29:e1:cf:3d:21:a6:79:13:06:2d:a9:2d:6e:
3d:e9:83:ef:aa:31:dd:00:9c:47:26:62:42:a7:d9:
00:a9:35:6c:4a:dc:64:83:b9:1e:88:c7:b0:46:77:
8d:61:7a:c4:d6:b5:98:f2:90:f6:31:b8:8b:81:19:
56:40:39:29:d9:6d:68:81:f9:dd:39:86:dc:38:b9:
b5:5f:b1:9a:6b:d6:81:8c:d0:c9:5f:b3:33:23:13:
0a:31:fd:4e:58:cc:b8:07:b5:d9:ac:e6:b4:7e:b9:
72:92:d3:7a:0d:2b:6d:c1:69:c5:93:c1:1e:ce:e3:
cf:14:e7:af:a5:60:15:ac:44:4d:e5:20:6f:6d:0e:
a5:e1:48:63:9f:df:03:3c:52:d6:00:5e:73:3c:69:
3b:78:7a:44:09:e0:7f:cc:b1:ef:6f:af:be:f1:48:
ff:42:b4:61:bb:d7:7d:7c:d7:24:df:98:61:e2:9f:
6a:71:18:78:f9:be:1e:ba:92:ff:bd:9b:db:95:0b:
1f:db:0b:fb:d1:8b:d3:6e:e1:b7:6d:14:2d:b4:37:
d7:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:65:C5:A4:D8:54:FF:C3:39:5D:4C:CD:0B:D4:F6:C4:06:D5:E4:B4
X509v3 Authority Key Identifier:
keyid:13:CD:87:02:7D:7D:3A:3B:9F:7C:4B:A4:49:5E:49:E2:1A:D5:A4:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E82HAn19OjuffEukSV5J4hrVpLs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/f7977e-ad30-4cb7-8ed3-29f4cd0ba804/1/1-GXFpNhU_8M5XUzNC9T2xAbV5LQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/f7977e-ad30-4cb7-8ed3-29f4cd0ba804/1/E82HAn19OjuffEukSV5J4hrVpLs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.178.0/24
IPv6:
2a10:98c0::/29
Signature Algorithm: sha256WithRSAEncryption
44:45:a8:84:e0:24:b5:c5:07:a2:74:72:88:22:62:1b:77:ed:
f9:59:28:0f:ec:50:a9:5c:b9:c2:df:e9:3d:b7:62:4b:c2:0d:
ec:59:e8:3b:75:0c:96:94:00:15:6e:dd:0c:64:16:9d:76:fc:
bf:8a:56:aa:6a:37:e4:4c:6c:cd:8e:cc:38:f3:b2:22:6c:29:
18:d3:9e:05:56:e1:dc:9c:08:32:62:04:70:b3:35:97:8a:52:
6c:85:3d:c4:5c:f3:b7:56:66:eb:5c:14:32:fa:9b:fc:8c:7d:
19:70:f0:74:4c:73:1b:c0:7d:4d:04:ca:c5:76:ac:63:4b:03:
92:4b:d9:6a:4b:bc:b5:f7:54:cf:86:c5:f2:7a:76:cc:d2:5c:
ff:86:1f:25:f3:57:50:f1:6a:f9:ba:9c:fc:58:13:c0:59:56:
2a:12:ea:f4:77:2a:ba:7b:f3:05:0e:4e:99:7d:a7:db:83:e1:
66:9c:f7:3a:08:52:1c:70:45:fb:4d:91:60:63:18:f4:e0:0e:
03:b0:68:eb:19:54:9d:c4:a5:50:07:48:5c:cf:60:17:63:9c:
f5:c6:0c:ba:3f:bd:6b:6f:a5:07:30:5f:77:4c:8d:f5:c8:d7:
aa:c8:34:8a:9d:f5:41:05:af:3c:d6:fd:d0:dd:03:23:c0:71:
2a:5b:9d:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:36 2023 by rpki-client on console-fra.rpki-client.org