Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/6ccf03-090d-416e-86cf-e9dc3f1cf824/1/cWk5BSd3hV80dh4nPeubecbLLhE.roa
File: cWk5BSd3hV80dh4nPeubecbLLhE.roa (raw, json)
Hash identifier: jPEYvcrV6xAUd6xVDXdWeC7KHlbjES5WwWco+jebNtk=
Subject key identifier: 71:69:39:05:27:77:85:5F:34:76:1E:27:3D:EB:9B:79:C6:CB:2E:11
Certificate issuer: /CN=eba8db3b54d081c30bf51bdc7b19e4f6480b7f53
Certificate serial: 02857573
Authority key identifier: EB:A8:DB:3B:54:D0:81:C3:0B:F5:1B:DC:7B:19:E4:F6:48:0B:7F:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/66jbO1TQgcML9Rvcexnk9kgLf1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/6ccf03-090d-416e-86cf-e9dc3f1cf824/1/cWk5BSd3hV80dh4nPeubecbLLhE.roa
Signing time: Mon 28 Feb 2022 20:43:07 +0000
ROA not before: Mon 28 Feb 2022 20:43:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212238
IP address blocks: 185.218.222.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42300787 (0x2857573)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eba8db3b54d081c30bf51bdc7b19e4f6480b7f53
Validity
Not Before: Feb 28 20:43:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=716939052777855f34761e273deb9b79c6cb2e11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:4f:14:88:4c:bd:8d:99:3e:c0:34:bf:a9:7e:
01:6c:c9:7f:79:ab:4c:c1:5d:5d:95:cc:89:22:70:
b8:3d:9f:b3:c8:6a:9d:02:bf:58:a9:a7:a0:17:da:
0a:cc:f1:49:70:33:c1:cc:67:ac:6b:fe:f2:83:d8:
96:9d:5c:fc:88:bf:9d:ee:bd:5f:f1:31:14:af:c0:
d4:91:ca:23:36:52:52:f6:96:0b:af:38:f4:50:1a:
e7:39:77:37:80:cf:b0:46:d1:0b:72:db:52:25:5c:
04:ad:e6:c7:10:70:90:4b:c2:6b:19:dc:94:cb:ba:
e9:cf:15:d9:be:45:49:e7:6c:dd:dc:26:5c:58:0c:
6e:5c:22:88:64:b8:d7:05:26:c5:e7:c9:4e:4f:9f:
42:3b:9d:46:94:1c:af:6d:9a:32:5e:97:18:22:86:
56:f1:43:a2:c0:b1:53:13:37:95:0f:6c:65:0f:11:
e0:e4:2a:23:ad:b9:b1:1d:b8:c9:2f:83:2b:89:4f:
49:65:20:54:03:42:1a:f2:eb:ac:55:bb:4c:ef:cf:
ce:9c:a9:b1:ba:30:74:9b:0d:fb:8a:6d:4e:94:30:
55:03:61:17:f4:43:e7:8c:26:86:42:17:19:85:17:
fc:58:59:68:48:1f:af:9a:4a:b0:dd:99:d6:b0:c2:
c7:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:69:39:05:27:77:85:5F:34:76:1E:27:3D:EB:9B:79:C6:CB:2E:11
X509v3 Authority Key Identifier:
keyid:EB:A8:DB:3B:54:D0:81:C3:0B:F5:1B:DC:7B:19:E4:F6:48:0B:7F:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/66jbO1TQgcML9Rvcexnk9kgLf1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/6ccf03-090d-416e-86cf-e9dc3f1cf824/1/cWk5BSd3hV80dh4nPeubecbLLhE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/6ccf03-090d-416e-86cf-e9dc3f1cf824/1/66jbO1TQgcML9Rvcexnk9kgLf1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.222.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:65:b6:0f:43:ad:25:c6:de:53:f9:7f:21:51:4f:ba:50:fa:
36:21:29:8a:14:11:19:8e:b8:c6:a6:a7:9c:f1:e2:f3:9f:77:
e6:ba:85:55:77:c2:06:56:3d:3a:05:7f:d3:76:f6:d9:c5:25:
d7:99:56:a6:de:a9:dc:ef:72:a8:87:19:56:5b:7e:a3:73:7f:
14:6b:00:1f:3c:c4:5f:74:1a:98:84:30:78:8b:9c:74:37:d3:
a8:73:7b:80:67:8a:7a:2c:7a:b1:cd:3f:66:2a:01:1a:05:c9:
89:98:2a:b3:2d:ff:f5:06:f7:e4:bd:d1:18:da:64:ca:cd:a5:
91:c3:8d:c8:5d:c2:be:0d:47:04:53:7c:01:72:4d:b0:90:ec:
ca:c8:25:c3:3d:8e:de:19:4d:f8:9f:87:90:0d:80:e2:10:2b:
97:bf:9b:1b:43:e4:74:bd:1d:af:ce:08:a7:40:00:4b:6f:58:
b3:c1:1e:ef:34:de:60:88:dd:05:35:a9:87:f5:16:27:19:ce:
2b:cf:57:e4:ad:cd:60:41:c9:30:8f:c7:43:fe:60:be:0d:9b:
94:15:51:65:0c:5d:19:7b:6f:25:f4:87:d6:a9:ed:6b:6c:b6:
9b:91:90:10:f9:3b:0e:6f:6d:92:0a:37:f1:16:5c:13:56:57:
4d:17:2f:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:52 2023 by rpki-client on console-ams.rpki-client.org