Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/epfC8ZjklWJSYDMVABze3NXgumw.roa
File: epfC8ZjklWJSYDMVABze3NXgumw.roa (raw, json)
Hash identifier: apOI5e3iNMCjRlYHCrhtmFFHeChXQaXsoM/TdbVLoQo=
Subject key identifier: 7A:97:C2:F1:98:E4:95:62:52:60:33:15:00:1C:DE:DC:D5:E0:BA:6C
Certificate issuer: /CN=529343235581cf4104190da7a0ca174b9c0d0bd5
Certificate serial: 1DD0AE
Authority key identifier: 52:93:43:23:55:81:CF:41:04:19:0D:A7:A0:CA:17:4B:9C:0D:0B:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UpNDI1WBz0EEGQ2noMoXS5wNC9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/epfC8ZjklWJSYDMVABze3NXgumw.roa
Signing time: Sat 01 Jan 2022 01:01:40 +0000
ROA not before: Sat 01 Jan 2022 01:01:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29286
IP address blocks: 185.84.124.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1953966 (0x1dd0ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529343235581cf4104190da7a0ca174b9c0d0bd5
Validity
Not Before: Jan 1 01:01:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a97c2f198e4956252603315001cdedcd5e0ba6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1c:90:fc:d1:7f:20:5a:a6:b5:d9:57:39:02:
e2:4c:28:02:ea:d1:b9:aa:50:f9:a1:92:54:fd:1a:
37:5d:88:dc:95:25:5e:f3:2b:4b:3e:8e:73:2a:09:
d2:61:23:9d:6f:e1:c0:97:0c:28:7c:92:90:5e:ba:
e2:31:93:23:37:50:b3:d6:1e:7e:87:a5:87:98:6a:
6e:6c:8d:2c:e1:e1:b7:18:7e:4e:d8:de:a5:8b:84:
03:b2:42:14:09:25:f3:17:5f:cb:f5:01:7b:8c:44:
e2:6a:3b:25:3e:5e:b8:d8:19:41:f2:8c:19:de:bf:
97:1f:62:d5:99:5b:cc:9b:5e:d8:6a:ee:20:ba:d7:
96:c5:48:40:a1:ea:cd:2e:b1:00:3f:4c:64:99:12:
30:8a:6f:95:22:0b:6f:49:b9:0c:71:ea:36:dc:72:
bb:a0:4b:32:9c:4f:a6:e4:10:7d:3b:47:9b:b8:a1:
43:04:cd:19:cb:45:bc:71:40:e1:d2:a9:b5:18:df:
10:eb:89:90:eb:a5:88:4b:0f:98:67:3b:49:a2:0e:
c5:e0:39:47:d0:48:56:71:d2:7a:4c:5c:33:f4:68:
72:90:83:92:43:fc:3a:00:eb:5c:ae:5d:64:b0:bd:
1e:fb:7a:cf:6a:a7:16:6e:12:29:a6:98:03:ce:ab:
88:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:97:C2:F1:98:E4:95:62:52:60:33:15:00:1C:DE:DC:D5:E0:BA:6C
X509v3 Authority Key Identifier:
keyid:52:93:43:23:55:81:CF:41:04:19:0D:A7:A0:CA:17:4B:9C:0D:0B:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UpNDI1WBz0EEGQ2noMoXS5wNC9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/epfC8ZjklWJSYDMVABze3NXgumw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.84.124.0/22
Signature Algorithm: sha256WithRSAEncryption
09:8d:df:d6:86:5e:9e:a3:c8:f3:b2:58:09:fc:38:7a:35:0c:
46:ba:e1:ff:f3:7a:ed:2e:14:e6:e2:fc:8e:50:50:3d:87:6f:
5c:94:0b:57:42:10:96:aa:d9:82:fe:4a:43:74:a0:8f:bd:51:
96:e2:81:01:b8:86:c8:46:34:0f:52:94:7c:0f:65:cd:5c:d8:
59:c3:d9:37:07:fe:80:21:a3:b1:d8:c2:6e:eb:34:40:ca:03:
68:dd:ed:e7:e6:eb:43:5d:5b:bc:32:9c:4a:40:3a:eb:e4:40:
d5:df:82:f4:93:c5:d8:ec:e3:9d:51:72:6d:23:77:7f:13:ba:
08:ea:4c:87:9f:df:e1:8b:82:b5:49:e3:6b:04:6c:81:d6:8f:
06:91:a5:ed:05:f1:c0:48:bf:0e:3d:9c:62:d6:96:4e:ef:af:
ef:8c:a8:3e:ec:92:8a:e6:f3:ca:3a:f2:f2:0e:bf:6a:e1:45:
fc:62:22:f2:6b:b2:b7:09:a2:23:28:74:9a:7a:ae:a1:ef:e8:
9a:3f:25:b8:47:b2:28:d6:45:31:97:c1:62:7e:29:e1:0e:0e:
6b:a9:c9:51:16:6c:64:7d:8c:45:8c:15:16:ec:c2:2f:00:69:
32:6a:22:d8:64:ae:b5:b8:3d:8c:ef:32:6d:c7:3b:01:37:b1:
52:7a:db:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:15 2024 by rpki-client on console-ams.rpki-client.org