Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/6ccf03-090d-416e-86cf-e9dc3f1cf824/1/7FFfLfqUjWfxJIHv8hlKgV3w-Kk.roa
File: 7FFfLfqUjWfxJIHv8hlKgV3w-Kk.roa (raw, json)
Hash identifier: UevbrPBWwO2ELkLQGs+rOOLghnqXTpTJTkB9RudPCtY=
Subject key identifier: EC:51:5F:2D:FA:94:8D:67:F1:24:81:EF:F2:19:4A:81:5D:F0:F8:A9
Certificate issuer: /CN=eba8db3b54d081c30bf51bdc7b19e4f6480b7f53
Certificate serial: 01FF4CF7
Authority key identifier: EB:A8:DB:3B:54:D0:81:C3:0B:F5:1B:DC:7B:19:E4:F6:48:0B:7F:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/66jbO1TQgcML9Rvcexnk9kgLf1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/6ccf03-090d-416e-86cf-e9dc3f1cf824/1/7FFfLfqUjWfxJIHv8hlKgV3w-Kk.roa
Signing time: Sat 01 Jan 2022 09:55:27 +0000
ROA not before: Sat 01 Jan 2022 09:55:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206150
IP address blocks: 185.218.220.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33508599 (0x1ff4cf7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eba8db3b54d081c30bf51bdc7b19e4f6480b7f53
Validity
Not Before: Jan 1 09:55:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec515f2dfa948d67f12481eff2194a815df0f8a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:05:1c:29:9b:8a:7f:23:3e:ec:4a:0b:b3:34:
f4:a2:25:02:c2:d1:80:dd:f1:ce:3a:fc:6c:32:89:
a9:6e:a2:89:2a:e5:70:f9:18:9a:01:5b:e1:c7:59:
7d:0d:c7:24:67:f3:2f:e2:38:c3:5e:70:ae:3e:c8:
95:69:74:69:74:9b:43:a6:7d:62:ab:0d:38:5e:15:
62:b0:61:53:37:a9:19:d5:03:d6:43:51:27:6c:4e:
30:c4:b8:8b:b9:3d:e6:a0:24:4b:8a:a7:d2:34:c2:
0b:88:70:0c:42:b8:77:98:93:3a:6a:d0:a3:9a:95:
64:7e:08:3f:5b:65:ec:c7:0a:c2:cc:a2:3e:34:3b:
b7:21:6c:d2:03:69:e4:9c:6e:01:45:77:9a:81:54:
8b:de:b5:ea:d0:6e:bb:e1:8d:65:24:92:4b:fc:21:
a5:51:b3:6c:1c:57:b0:11:6b:7a:f6:71:b4:c0:d9:
b1:e1:b5:1a:4d:1e:98:29:d9:8b:53:d2:33:2b:42:
f0:1f:d4:ab:a8:1e:fc:c3:d2:dd:96:86:cb:44:21:
1c:b7:f6:c6:80:73:fb:d8:41:9c:a0:c7:b5:f1:28:
9b:4d:21:5b:0d:a6:8f:31:2a:e3:fe:3c:10:b8:ee:
93:a3:24:89:28:76:37:cb:7f:e6:32:8f:67:05:0a:
65:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:51:5F:2D:FA:94:8D:67:F1:24:81:EF:F2:19:4A:81:5D:F0:F8:A9
X509v3 Authority Key Identifier:
keyid:EB:A8:DB:3B:54:D0:81:C3:0B:F5:1B:DC:7B:19:E4:F6:48:0B:7F:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/66jbO1TQgcML9Rvcexnk9kgLf1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/6ccf03-090d-416e-86cf-e9dc3f1cf824/1/7FFfLfqUjWfxJIHv8hlKgV3w-Kk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/6ccf03-090d-416e-86cf-e9dc3f1cf824/1/66jbO1TQgcML9Rvcexnk9kgLf1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.220.0/23
Signature Algorithm: sha256WithRSAEncryption
10:d7:c3:68:ea:c0:07:a7:5f:a0:02:5b:c2:76:fb:28:5a:0c:
41:82:c4:43:7e:a9:8c:3c:f7:77:aa:61:f8:c7:df:fb:15:eb:
4b:f9:e4:07:40:d5:27:0b:ef:d8:0d:fc:dd:7d:2a:06:dc:dc:
05:75:2e:d6:2b:4f:4c:03:7a:13:93:e7:32:a0:70:3b:a9:2b:
54:e7:7b:a6:67:42:00:44:4d:db:05:e2:d9:a3:e8:50:41:4d:
27:07:b2:39:32:fb:30:54:22:89:9e:ea:a0:2c:3d:1e:91:49:
cb:72:9d:26:62:22:70:8c:0e:8f:57:83:55:02:6c:7f:01:fa:
8f:15:b1:f0:db:30:19:42:20:07:1a:11:5f:44:34:57:d5:bf:
87:aa:c0:a0:b9:a3:3c:43:27:e2:89:c6:ad:bf:9e:0a:4e:14:
f4:36:ae:8b:ee:50:90:e6:b9:20:bc:78:f1:90:90:fe:73:6f:
56:b6:94:5b:33:61:9b:c2:a8:01:5a:ba:7f:cf:6e:75:d9:d5:
1d:08:b0:80:c1:21:4e:83:09:61:de:e1:59:f5:12:73:d8:dc:
82:91:7a:19:6c:3e:e7:fe:07:18:8b:9f:7a:d4:21:06:40:11:
bb:d5:ac:6c:8e:f3:de:d2:9c:9e:03:f1:1d:aa:01:e4:d6:05:
fa:89:d4:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:09 2023 by rpki-client on console-fra.rpki-client.org