Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/23bdd0-5bf1-4d44-b4aa-a06136b2dc72/1/4DJCvpLXuFKsjnDcC0ow6chl0pQ.roa
File: 4DJCvpLXuFKsjnDcC0ow6chl0pQ.roa (raw, json)
Hash identifier: YWHLJ4EvB4NCfYE9vhXkC3BwI6491pyle0P3CpV68HQ=
Subject key identifier: E0:32:42:BE:92:D7:B8:52:AC:8E:70:DC:0B:4A:30:E9:C8:65:D2:94
Certificate issuer: /CN=7aa606117bb5f7e4160ef268f9f4aa0457380441
Certificate serial: 0402754E
Authority key identifier: 7A:A6:06:11:7B:B5:F7:E4:16:0E:F2:68:F9:F4:AA:04:57:38:04:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eqYGEXu19-QWDvJo-fSqBFc4BEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/23bdd0-5bf1-4d44-b4aa-a06136b2dc72/1/4DJCvpLXuFKsjnDcC0ow6chl0pQ.roa
Signing time: Sat 01 Jan 2022 14:07:10 +0000
ROA not before: Sat 01 Jan 2022 14:07:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211637
IP address blocks: 185.190.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67269966 (0x402754e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7aa606117bb5f7e4160ef268f9f4aa0457380441
Validity
Not Before: Jan 1 14:07:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e03242be92d7b852ac8e70dc0b4a30e9c865d294
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:3b:a6:25:07:82:07:42:48:9d:80:98:77:5e:
f8:6b:56:07:10:15:63:98:96:3e:f7:f3:b1:7a:60:
bb:08:ac:16:0e:99:b5:6e:0e:6a:ff:aa:b1:54:0b:
79:e4:22:fd:5c:a2:0e:e5:f9:ff:35:46:dd:75:25:
ba:76:73:60:51:41:70:cc:e7:6e:04:ff:c3:8b:bd:
09:f5:91:ce:4d:74:97:d6:3b:24:58:30:09:3b:5e:
82:1a:07:cd:36:85:df:07:f7:b1:62:f6:70:2b:94:
c4:b6:67:b2:bf:34:da:a6:29:55:13:d6:81:9d:66:
ae:7c:bb:60:7f:df:42:ff:43:48:9b:f5:32:ac:bc:
2d:6a:bd:e8:90:0d:ba:ae:aa:3e:93:49:dd:94:4d:
d6:d6:d5:f0:d1:8d:34:c2:bb:b0:0b:92:90:ae:42:
2b:ae:a4:b8:97:40:81:32:c6:d3:cf:12:4f:24:16:
f7:84:9d:c5:e6:7a:8b:7a:6b:0f:f5:34:92:81:e6:
8c:a7:b2:be:ad:3d:5e:6e:c2:d6:cf:11:0b:a9:e3:
12:7d:91:5e:46:b0:57:23:b4:67:96:0e:89:41:41:
37:ea:76:34:71:02:05:3d:10:0c:1d:dc:c0:1b:16:
b7:39:67:e0:09:e4:7b:61:d8:b1:07:75:4b:a4:d6:
ef:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:32:42:BE:92:D7:B8:52:AC:8E:70:DC:0B:4A:30:E9:C8:65:D2:94
X509v3 Authority Key Identifier:
keyid:7A:A6:06:11:7B:B5:F7:E4:16:0E:F2:68:F9:F4:AA:04:57:38:04:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eqYGEXu19-QWDvJo-fSqBFc4BEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/23bdd0-5bf1-4d44-b4aa-a06136b2dc72/1/4DJCvpLXuFKsjnDcC0ow6chl0pQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/23bdd0-5bf1-4d44-b4aa-a06136b2dc72/1/eqYGEXu19-QWDvJo-fSqBFc4BEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.190.107.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:fb:46:e9:2a:4a:97:f8:5b:57:53:81:69:c8:59:d7:ab:a1:
b0:75:be:e5:a6:4c:24:5b:0f:b5:d3:a9:25:8d:ca:8a:82:33:
d2:49:ba:fd:cb:0d:b9:a3:8a:5f:be:bb:99:bd:92:1f:ad:43:
92:6f:d7:ac:b5:db:12:14:2a:6f:fe:17:0e:79:17:99:e6:9b:
fd:57:43:3c:c4:b9:7d:bf:a9:58:7a:63:b7:3b:a7:ff:6f:f0:
b8:d4:aa:68:39:53:54:b3:bf:db:b3:ca:d0:6a:99:4d:41:02:
bc:66:17:04:37:a5:7c:3a:6a:fa:f6:60:b2:6d:03:53:57:3d:
89:f4:eb:f7:65:dd:b7:77:bf:15:81:40:07:f0:a6:b1:fd:b8:
ca:8e:1a:e5:85:2e:92:c6:91:b6:65:d1:63:4b:8c:0c:dd:dc:
ce:ae:0c:13:26:d0:f0:a8:6a:4f:32:54:3b:5c:d2:d0:cf:ef:
26:d3:81:c8:ad:a9:11:f6:f8:38:d7:08:36:d1:ee:e5:20:72:
5e:eb:b4:36:06:e3:44:88:1d:de:67:95:44:9b:47:a0:82:b6:
03:8e:3c:8d:b2:5f:8c:22:17:53:83:52:d4:05:a9:15:66:ce:
8e:b7:c4:65:db:8d:33:16:9f:12:f0:fe:e3:e0:6f:3a:82:d7:
77:26:44:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:53 2023 by rpki-client on console-ams.rpki-client.org