Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/3c7c7c-4326-4184-8356-01182f840789/1/ebOTg8uNgwA63Br2ZWg7smRa25A.roa
File: ebOTg8uNgwA63Br2ZWg7smRa25A.roa (raw, json)
Hash identifier: lRWUf5fsMkTKlSq03V79JyaRYTLsf3ZzLeddi6CjuFk=
Subject key identifier: 79:B3:93:83:CB:8D:83:00:3A:DC:1A:F6:65:68:3B:B2:64:5A:DB:90
Certificate issuer: /CN=a510356dc0a521895ce61f85495e06daf7a12b3b
Certificate serial: 0FCB9D5B
Authority key identifier: A5:10:35:6D:C0:A5:21:89:5C:E6:1F:85:49:5E:06:DA:F7:A1:2B:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pRA1bcClIYlc5h-FSV4G2vehKzs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/3c7c7c-4326-4184-8356-01182f840789/1/ebOTg8uNgwA63Br2ZWg7smRa25A.roa
Signing time: Sat 01 Jan 2022 12:07:08 +0000
ROA not before: Sat 01 Jan 2022 12:07:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 185.189.173.0/24 maxlen: 24
185.189.172.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 265002331 (0xfcb9d5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a510356dc0a521895ce61f85495e06daf7a12b3b
Validity
Not Before: Jan 1 12:07:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=79b39383cb8d83003adc1af665683bb2645adb90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7c:18:d7:94:51:d6:6f:1f:40:b1:04:cb:88:
b8:f0:bb:b0:02:45:8a:41:11:1f:8f:a2:b8:72:76:
ff:5d:33:fd:a0:b9:71:fc:a0:13:4c:ab:91:b2:d5:
5a:28:ef:23:ea:c6:1d:b5:18:6a:b2:02:3f:36:83:
0f:60:d2:55:89:d0:83:05:fc:24:f9:3f:55:07:50:
6c:46:fe:a3:1e:e5:a0:d3:20:ce:31:66:2e:73:dc:
84:69:2d:6f:43:ae:9a:68:a0:af:dc:b1:f5:a5:ed:
eb:10:b8:f9:01:d6:98:b3:f5:9c:15:be:4a:03:40:
1c:c8:3f:15:88:a1:20:1e:7b:c8:f0:0d:5a:9a:47:
f9:a1:66:84:9d:84:c7:7a:67:f4:47:5f:50:49:f7:
6e:52:14:e1:72:41:d5:e3:69:10:a1:8a:b7:31:5b:
24:fb:9e:a9:6e:66:00:eb:d8:00:b6:f0:9d:43:b7:
65:f7:ba:8d:8a:f3:03:b3:c6:c3:62:b7:cc:a0:cb:
60:e3:c1:15:c1:e0:c3:1a:b8:3f:bd:5d:73:9a:a3:
34:cb:72:a9:f9:99:cf:30:1a:ac:7b:a6:d1:1a:32:
d4:5c:8b:26:cf:24:df:0d:b2:b8:b9:90:86:d6:93:
75:e0:39:6b:4b:a7:3b:61:15:0f:21:24:fa:c1:53:
2a:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:B3:93:83:CB:8D:83:00:3A:DC:1A:F6:65:68:3B:B2:64:5A:DB:90
X509v3 Authority Key Identifier:
keyid:A5:10:35:6D:C0:A5:21:89:5C:E6:1F:85:49:5E:06:DA:F7:A1:2B:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pRA1bcClIYlc5h-FSV4G2vehKzs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/3c7c7c-4326-4184-8356-01182f840789/1/ebOTg8uNgwA63Br2ZWg7smRa25A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/3c7c7c-4326-4184-8356-01182f840789/1/pRA1bcClIYlc5h-FSV4G2vehKzs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.189.172.0/23
Signature Algorithm: sha256WithRSAEncryption
a6:53:60:ca:4f:e6:67:79:98:a6:8c:6e:3e:6a:26:12:57:05:
fa:7c:91:ad:93:d2:ad:92:42:bd:0a:79:0f:d3:3e:22:03:0c:
31:90:73:65:1b:38:a1:5f:63:b8:d7:e3:fe:a2:c2:b6:8d:6d:
4a:5d:de:e5:73:e1:3c:09:2b:51:fb:a1:8e:ef:51:5c:94:fb:
2f:d8:d7:5d:99:91:4a:37:11:6f:98:a0:cb:bd:e7:d8:07:1d:
02:39:e4:4a:c6:8c:86:17:8b:de:79:8d:c9:8a:63:30:3f:07:
58:55:af:19:6e:4b:5c:3d:df:be:6e:a5:1f:cf:b8:17:a6:c1:
a7:f0:ae:7a:15:40:1f:85:c0:6a:b9:f4:80:46:f0:5d:03:f4:
19:81:7e:27:d6:50:4b:a0:63:85:82:ac:4c:08:bf:84:d3:36:
c7:88:7a:2a:0a:4b:b8:5a:6d:1f:a7:10:ae:41:d4:cd:9c:de:
1c:bd:d7:2f:fe:4a:c0:3a:85:40:f3:65:18:74:ec:5d:9c:ee:
cf:1e:5a:a7:ca:18:c0:0f:a9:1d:e1:13:4f:15:52:3a:0a:e9:
a7:7b:d4:80:08:9a:5e:eb:47:14:a4:53:70:53:00:51:62:7f:
f2:56:1c:a6:e7:a7:25:f6:cf:8f:3f:c2:59:0f:4f:a4:1f:24:
7e:93:f0:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:38 2023 by rpki-client on console-fra.rpki-client.org