Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/7jKfKb1JRQ_elaVUVzUhr-qx95A.roa
File: 7jKfKb1JRQ_elaVUVzUhr-qx95A.roa (raw, json)
Hash identifier: m2I+e6l/Q0aoJuG/I81TrnV9zEvPATtXjPQG3grD1RE=
Subject key identifier: EE:32:9F:29:BD:49:45:0F:DE:95:A5:54:57:35:21:AF:EA:B1:F7:90
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 0184A3824E5606481D262FC24B11E5E5BE83
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/7jKfKb1JRQ_elaVUVzUhr-qx95A.roa
Signing time: Wed 23 Nov 2022 08:02:16 +0000
ROA not before: Wed 23 Nov 2022 08:02:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30823
IP address blocks: 185.199.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a3:82:4e:56:06:48:1d:26:2f:c2:4b:11:e5:e5:be:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Nov 23 08:02:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee329f29bd49450fde95a554573521afeab1f790
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:6f:0d:0c:8c:91:56:9a:d5:3d:7e:24:61:3a:
4f:50:03:97:42:d6:e9:0e:b3:da:26:bd:40:01:c1:
f8:42:dc:e8:84:90:63:e6:de:3e:0d:e2:dc:18:40:
6a:6d:4c:e9:c9:43:72:fa:85:7a:c3:49:1b:41:06:
2d:0b:e2:03:d1:77:77:f3:a0:12:28:df:8a:e4:0c:
51:c7:41:86:a6:a6:f5:f4:c2:a6:8c:d3:95:a7:fb:
a5:41:c5:eb:10:74:92:d1:91:97:1f:f5:44:29:54:
f8:36:6e:a0:3e:d8:73:37:18:40:b0:16:43:a5:f2:
22:58:ce:2f:40:ce:ec:b8:72:79:2f:15:45:ef:cb:
d1:9f:f7:5b:40:47:97:73:c4:5d:4c:9f:30:e8:73:
4b:2c:71:5f:53:7c:0b:af:0d:47:7f:71:24:55:f8:
1c:4a:94:18:84:8e:37:ac:97:95:9c:05:a5:90:cf:
a4:05:8c:52:11:d9:77:2b:b5:9e:e7:fc:9c:c9:bd:
5e:12:c6:36:58:84:8b:27:64:0e:d6:46:97:c9:ef:
8a:b5:46:01:29:dd:d4:c8:ca:ac:71:3c:2e:66:ff:
c8:94:55:7a:cd:20:28:80:ee:82:b2:ef:ba:8f:a6:
89:88:64:cd:13:9e:ea:a5:6e:4f:56:15:9d:2c:5c:
a7:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:32:9F:29:BD:49:45:0F:DE:95:A5:54:57:35:21:AF:EA:B1:F7:90
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/7jKfKb1JRQ_elaVUVzUhr-qx95A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.148.0/24
Signature Algorithm: sha256WithRSAEncryption
26:f2:8c:a8:a6:5f:2f:34:88:90:8a:bd:81:c3:d8:b6:c0:78:
fc:fc:8d:9e:a4:46:ea:66:22:3f:7a:c2:38:be:a0:67:d7:25:
43:32:f3:bc:b7:7b:63:e5:79:e5:df:3b:b9:ae:43:65:71:7d:
c2:8a:ff:38:42:a6:64:84:39:1c:85:40:2f:e5:56:6b:af:00:
5f:f3:5f:85:b9:e3:b1:78:4f:aa:e0:10:7f:3c:59:b7:5d:cb:
30:a2:2b:de:82:c0:30:59:e0:91:ff:0f:52:46:7c:fe:ab:b7:
18:37:52:49:9b:36:5b:70:fd:2c:45:2d:c1:0d:82:7d:53:90:
89:2f:61:08:6e:99:f7:90:be:6a:62:af:85:f1:41:9b:81:c8:
e8:75:68:09:aa:c3:92:04:1c:c6:8b:c7:c0:82:50:42:ed:86:
2d:18:5a:db:1d:0d:b8:ed:da:b9:3e:43:4b:20:62:d7:86:2a:
c3:db:41:1f:95:db:67:e8:90:9e:ae:d4:39:b0:8d:1e:3e:7e:
2a:a8:ff:8c:f5:6a:c5:ff:53:f0:d6:aa:26:1d:3d:d0:d5:02:
05:5a:79:5f:9b:0b:ee:38:12:c1:e2:1c:47:7c:db:70:14:49:
ef:61:ed:23:3b:d5:2f:fe:2b:03:91:40:fc:12:7b:6e:f1:44:
30:73:90:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:35 2024 by rpki-client on console-ams.rpki-client.org