Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/ead79a-d8a1-4e87-bacf-23ba4a91a105/1/7EJWvmoAUzykjTWVOQo9Oe5qGvM.roa
File: 7EJWvmoAUzykjTWVOQo9Oe5qGvM.roa (raw, json)
Hash identifier: yzZZZAb1yQC7sCYnXBancqYKTa4tZ1XiYO+2ZQCw5vk=
Subject key identifier: EC:42:56:BE:6A:00:53:3C:A4:8D:35:95:39:0A:3D:39:EE:6A:1A:F3
Certificate issuer: /CN=cebf65e0069dbcc76b7b556e8c1d705889df27e9
Certificate serial: 13B94AA5
Authority key identifier: CE:BF:65:E0:06:9D:BC:C7:6B:7B:55:6E:8C:1D:70:58:89:DF:27:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zr9l4AadvMdre1VujB1wWInfJ-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/ead79a-d8a1-4e87-bacf-23ba4a91a105/1/7EJWvmoAUzykjTWVOQo9Oe5qGvM.roa
Signing time: Sat 01 Jan 2022 06:04:20 +0000
ROA not before: Sat 01 Jan 2022 06:04:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5413
IP address blocks: 185.119.108.0/24 maxlen: 24
185.119.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 330910373 (0x13b94aa5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cebf65e0069dbcc76b7b556e8c1d705889df27e9
Validity
Not Before: Jan 1 06:04:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec4256be6a00533ca48d3595390a3d39ee6a1af3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:d6:0e:1b:81:78:cc:1a:72:af:02:86:dd:1b:
0b:25:2d:6c:2d:42:c4:f9:63:c6:49:43:81:4a:a1:
62:43:58:94:60:60:c5:9e:75:f4:e8:20:bc:2a:35:
59:42:d8:ec:ba:40:9c:b4:30:22:f2:a7:6b:91:df:
4a:5f:82:d7:b5:1d:e0:d6:d9:66:c4:d2:1e:54:d5:
0e:ad:66:2b:b3:9f:3f:e4:05:58:bd:f2:0c:d4:c8:
02:5d:3c:1f:1b:c6:8e:46:05:b1:49:3a:0e:db:e8:
09:69:32:69:ca:8c:94:7a:87:a6:00:da:8c:c8:3d:
c9:37:5f:05:a1:10:a4:b0:df:e3:54:c6:79:79:0e:
08:a7:e4:a5:fa:26:fa:f5:40:aa:59:b1:d3:a6:ec:
3e:57:04:88:2c:61:69:77:77:a6:73:4d:67:72:68:
de:41:95:9c:d2:e3:a6:ee:02:e5:6c:c3:93:84:99:
e5:24:a8:52:9b:3a:6a:90:5f:5a:3e:89:ec:de:db:
78:80:0b:48:7a:c9:09:d7:de:77:aa:c7:e1:9c:c6:
87:9b:b5:d8:dc:95:9e:52:94:e9:58:5d:27:2a:54:
25:71:86:02:db:df:76:0b:92:37:64:cc:5e:da:03:
58:04:f8:f9:ae:b9:f0:84:03:e5:f1:1f:8d:fe:2f:
44:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:42:56:BE:6A:00:53:3C:A4:8D:35:95:39:0A:3D:39:EE:6A:1A:F3
X509v3 Authority Key Identifier:
keyid:CE:BF:65:E0:06:9D:BC:C7:6B:7B:55:6E:8C:1D:70:58:89:DF:27:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zr9l4AadvMdre1VujB1wWInfJ-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/ead79a-d8a1-4e87-bacf-23ba4a91a105/1/7EJWvmoAUzykjTWVOQo9Oe5qGvM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/ead79a-d8a1-4e87-bacf-23ba4a91a105/1/zr9l4AadvMdre1VujB1wWInfJ-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.119.108.0/24
185.119.111.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:75:66:ea:2c:89:e6:de:6a:45:27:7b:28:1d:43:e3:1b:33:
16:df:49:64:cc:b6:6a:76:37:98:7c:a6:a3:ba:08:13:db:6d:
b0:d7:14:8a:ce:4a:f4:f6:38:28:2d:f2:50:c1:09:46:e6:82:
e2:ee:4d:a8:0f:97:e1:3e:56:e5:03:ea:dc:91:83:8e:e6:37:
1e:07:30:a9:75:c0:39:55:a8:b5:e1:db:f1:e4:2b:24:b2:e9:
9f:46:0c:0b:f8:51:16:39:f3:b3:49:4c:6b:e7:f2:46:5d:91:
98:d2:fe:da:c1:5f:05:a0:b0:90:43:75:72:94:b8:3a:7f:91:
ca:d9:22:24:4d:3f:8f:6d:86:b8:7f:1f:1c:8a:37:98:aa:41:
99:63:6e:f5:99:81:56:87:9d:28:f2:8b:d7:cf:15:bf:bf:1f:
65:c6:ef:18:18:c5:e6:26:02:d5:b9:6b:c5:bd:ed:91:20:48:
26:14:91:e0:a5:6b:1b:d2:70:11:6e:4d:a0:1f:dd:36:84:92:
ad:9f:33:65:75:fb:c1:ba:9b:fb:b2:84:fc:ea:c4:7f:75:85:
f6:d7:f0:9a:80:03:2a:39:54:71:5d:cb:d2:3b:dd:e5:a7:1a:
dc:3a:b5:4d:92:da:02:a2:99:5e:df:69:f4:5d:a6:e1:05:d0:
a9:dd:14:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:23 2023 by rpki-client on console-fra.rpki-client.org