Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/4989ba-9af3-4e3d-845d-eb977164a7e4/1/EVmoKDF0wWo79dJ3c1VEPLsgwRg.roa
File: EVmoKDF0wWo79dJ3c1VEPLsgwRg.roa (raw, json)
Hash identifier: LU8Vd5YeLGFEPiwcVkSt43dio6qMON6VE4DQKqMFXWU=
Subject key identifier: 11:59:A8:28:31:74:C1:6A:3B:F5:D2:77:73:55:44:3C:BB:20:C1:18
Certificate issuer: /CN=0a77196340d2144b8ca7b0778984bb04bc1cb378
Certificate serial: 03F772C2
Authority key identifier: 0A:77:19:63:40:D2:14:4B:8C:A7:B0:77:89:84:BB:04:BC:1C:B3:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CncZY0DSFEuMp7B3iYS7BLwcs3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/4989ba-9af3-4e3d-845d-eb977164a7e4/1/EVmoKDF0wWo79dJ3c1VEPLsgwRg.roa
Signing time: Sat 01 Jan 2022 11:53:54 +0000
ROA not before: Sat 01 Jan 2022 11:53:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8641
IP address blocks: 185.212.90.0/24 maxlen: 24
185.212.88.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66548418 (0x3f772c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a77196340d2144b8ca7b0778984bb04bc1cb378
Validity
Not Before: Jan 1 11:53:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1159a8283174c16a3bf5d2777355443cbb20c118
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:2f:f0:1c:7c:0d:d6:60:23:9f:5a:76:d7:c0:
0c:0b:96:72:88:39:21:cb:46:56:50:cd:1a:c7:1c:
52:46:6c:33:49:ee:f1:df:6c:d5:0a:e0:42:d1:59:
28:72:0e:c6:b6:35:d7:04:ec:53:dc:2f:9f:0a:24:
b1:2e:6b:a2:1e:52:8f:93:35:63:5f:a6:d6:c5:b4:
bd:93:63:26:77:bd:41:8a:53:ea:9a:99:f3:fd:81:
12:e0:5e:fd:e1:b0:ab:ad:db:d4:02:e6:5f:b7:28:
65:2d:13:67:dc:37:ab:5e:58:43:c5:5c:e5:65:e9:
a2:43:df:31:6d:ed:30:ea:bd:f8:a5:2a:cf:ee:3e:
31:31:fb:4b:09:89:c0:eb:7e:f7:6c:71:52:f8:fe:
79:7e:56:df:07:b4:03:12:2e:5d:6e:62:d0:64:e7:
84:22:fc:40:3e:2e:6d:ef:75:a0:10:53:fc:63:88:
b7:51:07:2d:14:d7:64:a4:88:70:f1:1d:85:ec:c6:
41:a9:73:1b:d2:a0:41:ed:fe:a9:d6:1b:9d:e9:74:
b7:74:0d:98:a4:34:6b:51:07:b2:80:3a:58:7b:60:
25:51:dd:34:61:09:85:e6:91:a2:a3:31:95:d4:a7:
e0:2f:c9:7c:ea:26:f0:e2:c4:c8:13:4d:df:8e:c7:
28:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:59:A8:28:31:74:C1:6A:3B:F5:D2:77:73:55:44:3C:BB:20:C1:18
X509v3 Authority Key Identifier:
keyid:0A:77:19:63:40:D2:14:4B:8C:A7:B0:77:89:84:BB:04:BC:1C:B3:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CncZY0DSFEuMp7B3iYS7BLwcs3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/4989ba-9af3-4e3d-845d-eb977164a7e4/1/EVmoKDF0wWo79dJ3c1VEPLsgwRg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/4989ba-9af3-4e3d-845d-eb977164a7e4/1/CncZY0DSFEuMp7B3iYS7BLwcs3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.88.0-185.212.90.255
Signature Algorithm: sha256WithRSAEncryption
1f:6c:28:95:e6:e5:92:d7:13:fb:91:72:e5:d0:ff:2e:fc:3c:
30:66:5f:9d:15:7c:8e:4e:97:ed:38:c9:6a:d5:5a:41:85:c3:
5b:a4:bb:23:a9:9a:11:62:f1:66:d6:d4:33:62:7e:87:ab:7f:
15:e2:e3:2f:c3:5a:6a:4e:0c:c4:75:97:e5:45:36:71:82:dc:
80:92:2b:03:52:05:f4:54:0b:f2:f9:80:a4:dc:6e:07:10:93:
76:f1:81:14:ab:ae:8e:ba:b3:fe:b0:b1:60:f9:69:ec:95:87:
95:40:42:d0:36:01:53:66:a8:00:ef:24:94:7c:d1:8e:b4:e8:
99:4f:b8:23:dc:db:66:dd:fd:7a:61:7c:e3:09:64:f6:98:a7:
25:5b:bd:8d:02:e2:62:5e:08:d7:78:2d:50:73:0e:08:6a:63:
97:b4:10:95:56:e3:58:45:85:e2:b8:72:72:45:e4:65:c2:f9:
fb:e3:78:4f:9d:b4:2f:c2:e9:39:3d:4e:4f:81:d2:80:1b:e5:
7a:4e:9a:76:af:6f:4b:a4:b6:c7:7a:19:0f:4a:31:72:76:b6:
15:60:19:6d:6c:06:62:b6:21:fe:c9:16:5e:ef:ca:7e:ef:75:
80:82:1a:40:6d:4d:30:15:12:5e:7e:ff:f3:17:4d:bd:a7:32:
69:38:ff:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:59 2023 by rpki-client on console-fra.rpki-client.org