Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/7e38b2-bec1-4464-a0ca-7d258b620169/1/efup5auKIvtPv_6S0EXWfW6jwLY.roa
File: efup5auKIvtPv_6S0EXWfW6jwLY.roa (raw, json)
Hash identifier: fkTaBHq/dsLxZAnqDunTK5hq9PjF+X+bYXxwyobNxaE=
Subject key identifier: 79:FB:A9:E5:AB:8A:22:FB:4F:BF:FE:92:D0:45:D6:7D:6E:A3:C0:B6
Certificate issuer: /CN=a7f94ab935054b86dcb5d6adbad2dfdb564b5248
Certificate serial: 0E5B3F22
Authority key identifier: A7:F9:4A:B9:35:05:4B:86:DC:B5:D6:AD:BA:D2:DF:DB:56:4B:52:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p_lKuTUFS4bctdatutLf21ZLUkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/7e38b2-bec1-4464-a0ca-7d258b620169/1/efup5auKIvtPv_6S0EXWfW6jwLY.roa
Signing time: Sat 01 Jan 2022 06:04:13 +0000
ROA not before: Sat 01 Jan 2022 06:04:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58010
IP address blocks: 185.139.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 240860962 (0xe5b3f22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7f94ab935054b86dcb5d6adbad2dfdb564b5248
Validity
Not Before: Jan 1 06:04:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=79fba9e5ab8a22fb4fbffe92d045d67d6ea3c0b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:37:55:1e:b4:32:b9:63:2f:66:42:92:86:71:
01:98:ba:f3:0b:cf:76:8e:30:b5:a0:37:8a:c9:61:
1f:bc:d1:00:b3:f2:93:01:90:8a:70:79:1a:ea:af:
32:7a:5a:69:f2:93:af:91:2a:ea:dc:26:58:f3:be:
79:f1:0d:e0:54:fb:8a:8b:98:88:08:82:9a:1b:45:
a6:3d:bc:1c:34:72:0a:86:9e:6f:a3:ac:c2:53:7d:
5e:49:10:52:a0:73:81:e2:87:c3:6f:1a:41:be:5b:
7e:c8:7d:fe:14:e1:fa:73:f8:84:fb:b9:2f:ee:a0:
19:39:b6:35:7f:58:41:95:78:52:52:0d:87:c9:b1:
84:6d:d0:4b:a2:56:56:1d:82:45:09:8a:c9:ec:4d:
7e:24:81:b9:6f:fe:15:d2:6c:ab:74:f5:6a:d3:f6:
c9:aa:e3:37:18:c3:4f:10:3a:7f:0c:76:df:a4:15:
38:32:dc:41:ee:02:f2:3e:82:67:81:ff:47:01:79:
d9:08:00:d5:9c:46:6b:07:ae:39:ce:63:f2:bc:94:
e0:d0:70:c7:31:73:70:b4:f8:94:5c:fc:bb:6a:94:
b8:17:17:cd:37:05:5a:74:0e:39:10:fc:e1:f4:ca:
8c:e8:b2:ea:a6:c9:4c:ab:d5:ee:a2:f8:b1:21:24:
c8:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:FB:A9:E5:AB:8A:22:FB:4F:BF:FE:92:D0:45:D6:7D:6E:A3:C0:B6
X509v3 Authority Key Identifier:
keyid:A7:F9:4A:B9:35:05:4B:86:DC:B5:D6:AD:BA:D2:DF:DB:56:4B:52:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p_lKuTUFS4bctdatutLf21ZLUkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/7e38b2-bec1-4464-a0ca-7d258b620169/1/efup5auKIvtPv_6S0EXWfW6jwLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/7e38b2-bec1-4464-a0ca-7d258b620169/1/p_lKuTUFS4bctdatutLf21ZLUkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.139.158.0/24
Signature Algorithm: sha256WithRSAEncryption
16:1d:1a:71:f1:7b:7d:7e:a5:0e:03:22:28:ab:f9:ab:6d:21:
21:b5:4c:fc:88:a4:65:94:0f:9d:75:84:dc:8a:9c:07:35:bc:
4e:d6:aa:57:6f:f4:18:d2:fa:53:7a:d3:54:88:82:55:6e:96:
e4:23:aa:f1:36:54:05:03:5f:03:ea:4d:56:f9:bc:a7:8f:5c:
5a:ee:42:84:1c:ed:64:f9:80:8a:a3:de:42:ae:4c:47:63:12:
41:4c:05:19:21:33:8a:bd:24:44:37:c4:98:01:d6:67:c3:e4:
b4:c1:f8:9c:98:fa:6b:04:d1:97:37:04:39:86:23:24:56:7b:
ae:15:76:98:9a:37:26:1e:e6:cd:5c:43:52:65:9d:cd:6e:71:
4c:35:54:af:de:4b:6c:64:77:fa:bb:26:05:7c:7d:6c:b3:d0:
48:c8:8e:ca:7a:fc:c5:a8:8c:1b:e7:70:3f:a9:91:83:28:4f:
32:fa:e2:f6:53:32:0c:b3:31:54:f6:4f:22:84:22:87:51:64:
67:20:5d:44:37:82:91:fb:fd:8a:8e:37:85:6d:4e:74:e9:c7:
e4:49:54:99:d6:6d:6c:34:91:3e:10:d9:30:7e:74:c2:96:27:
a3:51:5e:4b:ce:93:e3:e4:53:4b:7d:e9:21:60:ee:4f:4a:64:
27:85:07:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:13 2024 by rpki-client on console-ams.rpki-client.org