Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/f7977e-ad30-4cb7-8ed3-29f4cd0ba804/1/EbjhfbalgcTsT4r9JwT7klN_w18.roa
File: EbjhfbalgcTsT4r9JwT7klN_w18.roa (raw, json)
Hash identifier: jPNc1oHXrTrb5TYUQ7hHTV7lLlAsBmRO0D4dMChxx2k=
Subject key identifier: 11:B8:E1:7D:B6:A5:81:C4:EC:4F:8A:FD:27:04:FB:92:53:7F:C3:5F
Certificate issuer: /CN=13cd87027d7d3a3b9f7c4ba4495e49e21ad5a4bb
Certificate serial: 02CDC19C
Authority key identifier: 13:CD:87:02:7D:7D:3A:3B:9F:7C:4B:A4:49:5E:49:E2:1A:D5:A4:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E82HAn19OjuffEukSV5J4hrVpLs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/f7977e-ad30-4cb7-8ed3-29f4cd0ba804/1/EbjhfbalgcTsT4r9JwT7klN_w18.roa
Signing time: Sat 01 Jan 2022 01:54:12 +0000
ROA not before: Sat 01 Jan 2022 01:54:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211756
IP address blocks: 185.242.178.0/24 maxlen: 24
2a10:98c0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47038876 (0x2cdc19c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13cd87027d7d3a3b9f7c4ba4495e49e21ad5a4bb
Validity
Not Before: Jan 1 01:54:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=11b8e17db6a581c4ec4f8afd2704fb92537fc35f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:82:7f:76:21:82:c6:65:bd:ec:95:20:e1:08:
93:b3:8d:1c:17:2e:c7:1d:44:f7:67:59:d0:9f:82:
17:7d:38:e7:2c:f5:e8:21:a6:d8:84:1b:9e:31:40:
70:a0:5c:47:91:f5:95:0e:2e:f9:c9:05:89:be:b9:
86:ea:3c:78:2c:87:1d:07:e8:b6:60:24:95:7e:f6:
53:77:cf:e1:6c:c9:26:66:db:1a:47:6e:99:f0:d0:
89:47:35:b3:ed:42:f0:d0:0b:8e:d9:00:94:c5:a5:
04:b4:c9:1b:09:cb:d6:54:eb:01:7d:60:cc:ca:69:
85:06:7e:48:cc:f4:02:d5:1d:c3:79:03:36:9f:e5:
08:60:54:06:bb:4b:eb:c5:c2:69:12:89:ab:b3:7d:
f9:54:e1:bb:88:bc:ba:83:14:56:79:56:02:8c:78:
6c:0a:17:9e:d9:cc:2c:b3:77:2c:17:bd:bc:92:0a:
5b:a4:9f:07:71:bb:a9:a4:c0:c6:a2:36:a1:8b:7f:
2a:af:81:92:da:ee:71:32:5e:da:61:91:5c:f7:fd:
25:6f:ea:af:18:54:78:7b:aa:a4:0a:99:05:e1:c7:
17:e2:60:64:e3:24:dd:39:51:f7:b6:18:14:9b:71:
92:34:87:ac:08:2b:ec:ce:fe:1a:49:03:c0:09:3d:
c1:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:B8:E1:7D:B6:A5:81:C4:EC:4F:8A:FD:27:04:FB:92:53:7F:C3:5F
X509v3 Authority Key Identifier:
keyid:13:CD:87:02:7D:7D:3A:3B:9F:7C:4B:A4:49:5E:49:E2:1A:D5:A4:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E82HAn19OjuffEukSV5J4hrVpLs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/f7977e-ad30-4cb7-8ed3-29f4cd0ba804/1/EbjhfbalgcTsT4r9JwT7klN_w18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/f7977e-ad30-4cb7-8ed3-29f4cd0ba804/1/E82HAn19OjuffEukSV5J4hrVpLs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.178.0/24
IPv6:
2a10:98c0::/29
Signature Algorithm: sha256WithRSAEncryption
ae:82:85:ca:42:a4:00:40:ef:f5:42:9a:cf:93:74:25:05:d9:
90:f1:96:ba:6d:ff:f5:4e:6b:92:81:f7:4d:f4:09:85:c7:9e:
55:b6:ff:28:41:65:24:42:3c:bd:5f:6e:50:10:dc:62:4c:ec:
94:db:d0:20:1b:66:13:5d:c0:7e:b7:96:37:e4:91:f8:be:cc:
ff:a9:91:37:b9:fc:73:9a:d0:85:3b:c1:dd:ac:a6:f1:89:70:
16:26:b8:80:db:03:66:bc:1e:2c:3d:76:b0:23:1b:e8:66:dd:
c1:53:79:a8:33:62:db:36:e0:c2:95:05:57:7d:a6:d0:60:63:
e8:78:e7:86:98:05:4c:88:36:df:da:cc:7a:b4:3d:61:ef:00:
f1:f6:d1:52:57:56:74:3f:30:54:89:aa:cb:0d:a7:c5:c4:2d:
95:c4:e7:46:9e:52:6a:81:8d:5d:b0:0a:8d:7d:cf:aa:87:15:
97:84:8e:5b:a5:70:08:b0:8a:37:4d:ea:7d:a1:cd:7d:a8:e6:
3b:08:fa:cb:a3:32:e8:9f:da:63:4c:ac:63:2c:27:71:4e:dc:
51:a9:f4:d4:73:6c:f1:b1:71:5c:11:55:4f:1b:48:a2:c4:7e:
f3:7a:cc:d7:5b:a5:9e:5a:7f:e3:40:a3:5f:e3:78:03:37:0f:
8d:a4:ed:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:36 2024 by rpki-client on console-ams.rpki-client.org