Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/54f6a2-10d1-4195-95bc-9ee76583c71a/1/edx4pi1JPhp0eVQYsPhFl49smQo.roa
File: edx4pi1JPhp0eVQYsPhFl49smQo.roa (raw, json)
Hash identifier: X08JEqdQ/mFl+c5xRnYu7044UfX32Wk5sGBmDttQHm8=
Subject key identifier: 79:DC:78:A6:2D:49:3E:1A:74:79:54:18:B0:F8:45:97:8F:6C:99:0A
Certificate issuer: /CN=78dc3c6ab4afba864ba0d4fdb09e6f0eb06f43fa
Certificate serial: 07C3A760
Authority key identifier: 78:DC:3C:6A:B4:AF:BA:86:4B:A0:D4:FD:B0:9E:6F:0E:B0:6F:43:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eNw8arSvuoZLoNT9sJ5vDrBvQ_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/54f6a2-10d1-4195-95bc-9ee76583c71a/1/edx4pi1JPhp0eVQYsPhFl49smQo.roa
Signing time: Sat 01 Jan 2022 11:58:12 +0000
ROA not before: Sat 01 Jan 2022 11:58:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5505
IP address blocks: 185.210.226.0/24 maxlen: 24
185.210.225.0/24 maxlen: 24
185.210.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130262880 (0x7c3a760)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78dc3c6ab4afba864ba0d4fdb09e6f0eb06f43fa
Validity
Not Before: Jan 1 11:58:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=79dc78a62d493e1a74795418b0f845978f6c990a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9f:7a:f1:cf:c1:82:60:31:30:6b:ca:c6:c5:
b1:23:ed:6b:06:3b:fa:7c:d0:97:34:5a:a1:45:77:
98:70:df:66:40:07:01:22:3d:88:4e:0e:0c:aa:5e:
6d:76:6f:5d:26:f7:d4:fe:fd:41:0f:d7:24:20:0d:
9b:90:0d:5b:d2:4f:fd:ef:b3:3c:5c:67:50:ff:44:
29:10:c4:39:87:a7:a6:78:8d:ab:bf:95:a3:93:aa:
e0:84:4c:f2:11:f2:f8:2b:d0:77:78:fc:ae:54:8d:
e9:aa:c4:ba:d8:f1:8e:d5:34:6e:59:8a:2e:b2:a5:
f4:ef:a8:17:dd:cc:6e:e2:29:9e:c1:07:e4:91:f1:
f2:ec:94:7e:d9:a8:83:cf:a2:de:5b:86:e8:33:78:
39:90:3d:d0:93:29:32:00:00:ba:a8:bf:ec:de:8e:
0f:48:a9:bc:03:29:e6:14:43:5b:fa:1f:96:82:2f:
55:b6:00:72:84:c5:7d:f8:7e:2a:27:80:66:03:75:
34:8f:61:14:40:ae:64:da:90:5b:56:f3:b3:f5:72:
37:9e:66:05:e6:59:0d:67:08:19:76:d3:5e:56:da:
ab:75:d6:51:fa:1f:cc:a2:58:f9:38:07:44:09:7c:
c1:5c:cd:83:68:bf:99:c4:bb:a9:ef:d8:ac:d4:24:
0a:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:DC:78:A6:2D:49:3E:1A:74:79:54:18:B0:F8:45:97:8F:6C:99:0A
X509v3 Authority Key Identifier:
keyid:78:DC:3C:6A:B4:AF:BA:86:4B:A0:D4:FD:B0:9E:6F:0E:B0:6F:43:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eNw8arSvuoZLoNT9sJ5vDrBvQ_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/54f6a2-10d1-4195-95bc-9ee76583c71a/1/edx4pi1JPhp0eVQYsPhFl49smQo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/54f6a2-10d1-4195-95bc-9ee76583c71a/1/eNw8arSvuoZLoNT9sJ5vDrBvQ_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.225.0-185.210.227.255
Signature Algorithm: sha256WithRSAEncryption
09:35:bb:cc:dc:e2:03:4f:c5:b3:dd:0f:21:6f:c0:4c:b9:18:
18:7d:76:dd:d3:31:ae:11:a4:ee:d6:b4:03:c1:b9:22:c2:dc:
1e:a9:02:64:eb:76:39:d4:2d:0d:20:29:3d:87:78:bc:a6:41:
29:ea:16:ac:7a:c8:1b:d0:a2:22:f2:14:3a:ab:3d:f7:8b:74:
fc:cd:ee:1a:20:a0:8b:00:42:04:0e:a6:00:bb:b6:5f:ae:c8:
c6:87:d6:32:89:ff:c9:7d:e5:3b:5a:b6:cd:f7:45:05:ef:a1:
f5:72:9b:bf:5a:86:b9:96:04:b2:05:40:fa:a1:d5:6d:76:e3:
fa:7a:66:23:e2:12:80:64:ec:88:98:a1:8f:80:4d:a5:41:79:
9f:ab:36:61:a8:ae:e8:11:83:43:c8:1e:f9:54:fe:f9:31:dd:
0e:94:fa:27:1c:e7:04:a2:9a:9c:a8:68:73:4d:9b:05:ce:2d:
a8:ce:b3:93:1f:48:3b:74:da:90:d4:ed:f0:97:90:3e:b2:8e:
0f:a1:00:7f:a7:41:1d:1e:66:1d:62:86:99:4e:3d:b0:98:96:
1c:2f:52:6d:02:36:91:1d:49:5f:de:bd:7a:4d:67:6a:57:ab:
7e:bf:f8:93:07:02:2c:68:e6:d1:98:da:16:7f:40:0c:de:7c:
ad:af:cd:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:53 2024 by rpki-client on console-ams.rpki-client.org