Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/e7fbe8-d98e-45d2-b19c-11627d7469ab/1/h5vRA7585Pv25EdOt-YYxU-iIpY.roa
File: h5vRA7585Pv25EdOt-YYxU-iIpY.roa (raw, json)
Hash identifier: 0RRUJGMw4CODg+h4XCaQSd9eVpygS9zWaq02w+ojwaI=
Subject key identifier: 87:9B:D1:03:BE:7C:E4:FB:F6:E4:47:4E:B7:E6:18:C5:4F:A2:22:96
Certificate issuer: /CN=282434a9a038b0fe73caf776bccd542fd3e2f6a5
Certificate serial: 0C242CEC
Authority key identifier: 28:24:34:A9:A0:38:B0:FE:73:CA:F7:76:BC:CD:54:2F:D3:E2:F6:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KCQ0qaA4sP5zyvd2vM1UL9Pi9qU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/e7fbe8-d98e-45d2-b19c-11627d7469ab/1/h5vRA7585Pv25EdOt-YYxU-iIpY.roa
Signing time: Sat 01 Jan 2022 10:02:25 +0000
ROA not before: Sat 01 Jan 2022 10:02:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39419
IP address blocks: 185.237.24.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 203697388 (0xc242cec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=282434a9a038b0fe73caf776bccd542fd3e2f6a5
Validity
Not Before: Jan 1 10:02:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=879bd103be7ce4fbf6e4474eb7e618c54fa22296
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:10:a8:6a:68:5c:e6:6f:7f:85:f6:98:8d:e4:
a1:17:ff:28:38:40:78:f8:e8:c0:15:50:f4:10:ae:
bf:ec:91:c7:86:05:40:18:b8:3e:78:04:87:bc:89:
ce:a5:2d:f3:c1:37:58:14:8a:e9:2d:9b:b2:9b:a6:
92:e3:60:91:bd:e5:22:09:89:0f:c7:72:7b:5e:7c:
13:0b:3f:8e:e1:25:ac:1a:3c:a9:93:c4:51:84:b9:
5c:26:33:6a:35:7c:ed:d5:6c:52:46:7e:4f:e5:ce:
ee:e2:32:29:d3:4d:55:68:b3:e9:af:c4:78:c5:b6:
82:f1:d7:6f:d7:eb:57:24:f5:15:b0:d5:ff:5f:38:
55:51:75:22:7c:ef:55:20:30:62:1f:09:9d:06:bc:
5d:44:33:44:2f:4a:54:47:2c:ee:39:2c:87:35:44:
1f:87:0b:ff:75:fb:30:73:e4:2a:28:1d:96:f8:2b:
6d:83:3f:ee:58:d3:d7:bf:4e:72:21:df:86:72:59:
4d:d1:a5:b2:ae:83:45:54:bb:62:84:88:5e:89:53:
e2:15:18:1f:6f:28:9d:26:ed:8f:b0:0c:80:a6:39:
d3:eb:23:86:5f:69:98:8d:1a:9f:f7:b1:4d:05:52:
31:ac:5b:96:90:0f:a2:43:f9:3a:bf:54:88:cf:f6:
3d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:9B:D1:03:BE:7C:E4:FB:F6:E4:47:4E:B7:E6:18:C5:4F:A2:22:96
X509v3 Authority Key Identifier:
keyid:28:24:34:A9:A0:38:B0:FE:73:CA:F7:76:BC:CD:54:2F:D3:E2:F6:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KCQ0qaA4sP5zyvd2vM1UL9Pi9qU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/e7fbe8-d98e-45d2-b19c-11627d7469ab/1/h5vRA7585Pv25EdOt-YYxU-iIpY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/e7fbe8-d98e-45d2-b19c-11627d7469ab/1/KCQ0qaA4sP5zyvd2vM1UL9Pi9qU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.237.24.0/22
Signature Algorithm: sha256WithRSAEncryption
27:d8:11:e4:10:98:01:a6:2a:93:c2:89:7e:2f:9e:2e:4e:6d:
ed:ad:bc:40:51:57:4e:1d:93:90:77:a7:fe:2e:eb:1e:15:b9:
82:18:27:0f:8f:2a:0c:e6:cc:5b:8b:91:f1:fe:8d:05:4e:34:
78:35:a0:2a:fe:2d:a0:00:e9:c3:e2:3c:d1:53:ab:dc:5e:9d:
51:7b:08:8c:98:d6:89:79:7f:be:0b:31:c1:bb:20:89:f0:07:
dd:46:ba:4d:78:7d:dd:02:59:3c:16:be:63:d8:f5:4d:36:56:
92:84:53:d7:1f:7e:41:64:6a:ba:ee:f3:bc:36:bd:2d:42:be:
d1:2f:3b:71:23:8c:6a:47:d3:b5:51:86:df:da:db:d8:99:90:
5b:27:aa:99:14:20:51:f2:c0:51:2f:22:ef:eb:29:f4:02:a8:
d8:a4:84:a7:d5:f3:1b:79:13:c5:5f:40:bc:9c:a6:dd:4f:f1:
91:72:9d:9a:b8:78:c1:e1:1c:dd:e9:e4:40:f8:99:fe:61:07:
6c:07:04:87:41:b5:ee:6c:86:3f:5b:61:6f:81:c9:28:1f:04:
47:91:a1:6c:f1:68:08:28:4a:88:12:0a:92:2b:c3:da:5c:a3:
ac:d0:f0:d9:00:7b:19:b6:db:57:c6:28:2b:52:6e:35:ac:2d:
be:ac:06:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:00 2023 by rpki-client on console-fra.rpki-client.org