Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/c439d3-8f81-4022-987e-e697c52dfc1e/1/EUCfyHRBuyXiJNGw6WYUJc5K1pQ.roa
File: EUCfyHRBuyXiJNGw6WYUJc5K1pQ.roa (raw, json)
Hash identifier: jcPcn7p6BLzBPG72GSOUpQ1E+/EdcQVoIcm0icdUTZQ=
Subject key identifier: 11:40:9F:C8:74:41:BB:25:E2:24:D1:B0:E9:66:14:25:CE:4A:D6:94
Certificate issuer: /CN=5c6d7d87faec48dca4369d6838ceec51ae2bd86a
Certificate serial: 054B283B
Authority key identifier: 5C:6D:7D:87:FA:EC:48:DC:A4:36:9D:68:38:CE:EC:51:AE:2B:D8:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XG19h_rsSNykNp1oOM7sUa4r2Go.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/c439d3-8f81-4022-987e-e697c52dfc1e/1/EUCfyHRBuyXiJNGw6WYUJc5K1pQ.roa
Signing time: Sat 01 Jan 2022 03:59:12 +0000
ROA not before: Sat 01 Jan 2022 03:59:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213317
IP address blocks: 185.167.252.0/24 maxlen: 24
2a10:7a80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88811579 (0x54b283b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c6d7d87faec48dca4369d6838ceec51ae2bd86a
Validity
Not Before: Jan 1 03:59:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=11409fc87441bb25e224d1b0e9661425ce4ad694
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:63:da:03:00:ba:a8:91:1a:1a:1e:bd:9f:c1:
4b:e7:0f:10:d6:54:94:d2:db:17:83:fc:93:1d:70:
3f:f3:e3:b9:69:6a:bd:c1:b5:fb:96:67:94:e5:d1:
68:e1:04:8a:28:78:7d:86:50:91:03:4b:bb:e3:60:
76:34:06:6f:d6:1c:29:3f:6b:6a:52:33:fd:89:99:
f4:0d:d8:0f:29:de:9c:9f:63:dd:b2:57:7a:f5:e7:
f4:4f:e2:ae:95:aa:18:b8:1d:f7:f1:ce:0f:fb:e9:
47:45:38:cf:8c:1f:41:dc:ad:15:b2:29:0a:f2:df:
d1:8d:2c:1c:a8:3a:82:3d:67:ef:5b:0d:c8:b9:4b:
ec:f0:81:44:f8:e0:60:16:54:f0:5d:fa:3d:9d:21:
c8:cf:da:24:4f:63:ec:28:4d:69:a8:03:6b:21:8a:
0d:89:17:e7:03:9b:00:87:08:9c:15:9c:d5:af:dd:
5a:25:4f:71:80:aa:1c:02:df:d1:93:2d:94:b6:b2:
14:32:c0:60:d6:9a:12:56:28:be:e1:69:5e:46:c1:
75:a1:b1:07:cc:83:6a:dd:d3:20:0d:6a:f7:21:59:
2c:62:6f:9f:85:3e:a4:ff:f0:c6:30:6b:6a:ba:85:
86:f7:e9:4f:d6:5b:d3:ea:18:32:77:05:53:ff:4e:
1d:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:40:9F:C8:74:41:BB:25:E2:24:D1:B0:E9:66:14:25:CE:4A:D6:94
X509v3 Authority Key Identifier:
keyid:5C:6D:7D:87:FA:EC:48:DC:A4:36:9D:68:38:CE:EC:51:AE:2B:D8:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XG19h_rsSNykNp1oOM7sUa4r2Go.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/c439d3-8f81-4022-987e-e697c52dfc1e/1/EUCfyHRBuyXiJNGw6WYUJc5K1pQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/c439d3-8f81-4022-987e-e697c52dfc1e/1/XG19h_rsSNykNp1oOM7sUa4r2Go.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.252.0/24
IPv6:
2a10:7a80::/29
Signature Algorithm: sha256WithRSAEncryption
ae:6c:c6:8c:ba:96:6a:cd:be:b9:82:9b:f0:10:a2:bf:0f:07:
c0:91:ad:2e:c2:4b:d9:dc:03:88:8e:96:40:13:90:d2:94:03:
03:e8:3b:99:f2:f9:b8:76:42:1f:1c:10:9e:27:4d:d9:91:8b:
f3:71:5e:0f:8d:a8:48:aa:83:18:1e:29:59:37:82:39:c1:b8:
30:9a:f4:a7:33:3c:e2:65:17:c9:a9:fd:2b:08:7e:1c:d5:df:
11:e9:f6:34:fb:c6:80:df:ed:a2:9e:d2:a6:4b:03:bd:f8:83:
76:7f:c3:c7:67:34:ac:03:51:49:fb:3a:a6:86:55:bb:2c:8d:
6f:a7:d8:48:d6:0a:89:2f:f6:fb:70:75:49:26:83:d0:a0:ee:
3d:89:2a:22:15:53:b0:11:2a:7d:70:e9:a4:a1:97:76:d7:c2:
51:6e:9c:2d:9e:e6:72:d2:b1:88:7a:50:57:cb:f0:ff:cc:cb:
2d:ec:f5:ed:51:d8:5d:6c:92:9e:7a:21:2a:70:49:88:da:96:
4e:2a:93:c6:86:cf:29:67:74:f3:f1:24:6d:6f:c9:3f:16:1d:
27:42:88:0a:2a:9f:19:d2:a8:03:87:cf:24:a0:40:36:16:03:
1b:f6:7a:86:29:49:20:17:fb:a9:ea:ee:70:22:59:95:25:83:
d0:13:76:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:07 2024 by rpki-client on console-ams.rpki-client.org