Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/5c65af-b3f9-4bb3-a702-2bc90794d38d/1/E8XgYi-dbFVoE8w32IzA2JAtXNw.roa
File: E8XgYi-dbFVoE8w32IzA2JAtXNw.roa (raw, json)
Hash identifier: DdjJa7T+/VuyH/Vk4PTEA0p0DzPfYwSjZtgN3LK7280=
Subject key identifier: 13:C5:E0:62:2F:9D:6C:55:68:13:CC:37:D8:8C:C0:D8:90:2D:5C:DC
Certificate issuer: /CN=46ebddae6a7acee83a322a0e743a6759d85365f2
Certificate serial: 01838826DE1CC287E1B4FDE41324F4D5B4D4
Authority key identifier: 46:EB:DD:AE:6A:7A:CE:E8:3A:32:2A:0E:74:3A:67:59:D8:53:65:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ruvdrmp6zug6MioOdDpnWdhTZfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/5c65af-b3f9-4bb3-a702-2bc90794d38d/1/E8XgYi-dbFVoE8w32IzA2JAtXNw.roa
Signing time: Thu 29 Sep 2022 07:29:52 +0000
ROA not before: Thu 29 Sep 2022 07:29:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206944
IP address blocks: 185.171.20.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:88:26:de:1c:c2:87:e1:b4:fd:e4:13:24:f4:d5:b4:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46ebddae6a7acee83a322a0e743a6759d85365f2
Validity
Not Before: Sep 29 07:29:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=13c5e0622f9d6c556813cc37d88cc0d8902d5cdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:30:a0:2b:32:8c:b6:36:4c:9a:c7:2d:72:66:
58:74:e5:56:2c:93:9d:80:aa:a8:0e:9a:2e:ee:f1:
e8:b3:d2:9c:d6:0c:2a:ca:03:ef:c7:0d:01:2a:67:
76:d7:92:e4:3c:eb:cc:72:56:aa:27:f5:2f:00:9c:
61:1b:7e:87:7a:d4:cb:4d:29:8d:ac:c8:a3:1f:b9:
0d:49:5e:1c:28:7a:ed:c0:15:82:34:13:7b:35:bf:
b4:17:af:3e:2b:d2:8d:28:87:d9:14:44:1f:f4:00:
c2:cd:d5:3f:b5:ab:15:d2:e2:8c:b6:ab:33:cf:48:
de:dc:54:6e:88:04:c0:99:16:9c:f4:b2:07:4f:b5:
ca:a1:74:a7:16:85:f8:b2:f0:e4:78:8d:65:41:52:
d2:ed:dc:ae:b1:35:3b:98:57:53:4d:c8:b9:a6:01:
fc:82:aa:fd:a0:fe:f8:d2:b1:fb:b9:d5:15:d6:21:
8b:6b:c0:7a:95:1b:88:54:c2:1d:9b:73:2a:77:53:
c8:e4:58:67:69:7e:04:a8:45:60:c1:e2:e5:ec:d1:
30:a5:f4:84:27:33:40:7a:dc:b7:a7:b2:3a:ee:85:
dc:8a:93:1f:a6:6f:64:22:66:8a:7b:f6:1e:d3:82:
e1:aa:de:4a:fa:f7:5d:02:6b:dd:aa:5c:63:cb:2d:
d3:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:C5:E0:62:2F:9D:6C:55:68:13:CC:37:D8:8C:C0:D8:90:2D:5C:DC
X509v3 Authority Key Identifier:
keyid:46:EB:DD:AE:6A:7A:CE:E8:3A:32:2A:0E:74:3A:67:59:D8:53:65:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ruvdrmp6zug6MioOdDpnWdhTZfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5c65af-b3f9-4bb3-a702-2bc90794d38d/1/E8XgYi-dbFVoE8w32IzA2JAtXNw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5c65af-b3f9-4bb3-a702-2bc90794d38d/1/Ruvdrmp6zug6MioOdDpnWdhTZfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.171.20.0/23
Signature Algorithm: sha256WithRSAEncryption
50:30:51:8a:c3:55:ca:c1:cc:40:2a:8a:e8:25:be:54:17:f9:
b7:a5:dc:f8:aa:ed:79:50:21:07:1a:9d:f0:0d:09:1b:fe:05:
3a:e1:c9:34:04:01:59:94:d2:a3:62:f6:73:e4:6d:38:54:0a:
06:a8:42:ba:e0:7a:91:0e:da:20:e8:32:1f:26:db:f0:a7:31:
5a:4a:b4:fd:44:07:15:17:c7:33:49:eb:cc:94:cd:74:a4:a1:
a3:7c:ce:4e:0e:8c:79:ae:fc:19:2f:e8:ba:3f:49:46:50:25:
82:b9:2d:22:cb:f6:9a:d9:91:49:d6:71:42:75:4d:89:a7:27:
a7:53:11:e8:67:31:6d:81:b5:d1:91:5b:7f:6e:49:00:e9:c9:
96:9d:7e:11:da:66:49:fd:5f:5e:81:b3:7c:d2:de:7b:16:53:
0e:2e:37:5e:af:05:50:69:6f:67:7a:1d:77:fc:a2:14:fc:ad:
b1:d5:e4:50:1b:02:69:ee:bc:0d:9d:26:50:eb:ec:11:de:ef:
68:bc:cb:9f:d9:81:a4:3c:5e:e9:98:98:96:9d:59:cb:90:ad:
ea:e7:9e:46:1f:bb:9d:2a:66:3b:f9:22:e4:d8:06:71:d4:d7:
ab:b0:22:d2:a1:64:ca:de:7e:50:92:4e:61:bf:1e:86:a8:fb:
14:9a:d4:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:54 2024 by rpki-client on console-fra.rpki-client.org