Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/6bf11e-bfba-4329-941e-3572bc40ee2d/1/EI46L-7o-qBbRT7XjjNFOvDnbKo.roa
File: EI46L-7o-qBbRT7XjjNFOvDnbKo.roa (raw, json)
Hash identifier: eSr02/Rphk1xEubrXlHfLHbc29K5iCGw/HAqdI44BpQ=
Subject key identifier: 10:8E:3A:2F:EE:E8:FA:A0:5B:45:3E:D7:8E:33:45:3A:F0:E7:6C:AA
Certificate issuer: /CN=18376823d1fc69cd224f76d77656dcd89e545d5e
Certificate serial: 967196
Authority key identifier: 18:37:68:23:D1:FC:69:CD:22:4F:76:D7:76:56:DC:D8:9E:54:5D:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GDdoI9H8ac0iT3bXdlbc2J5UXV4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/6bf11e-bfba-4329-941e-3572bc40ee2d/1/EI46L-7o-qBbRT7XjjNFOvDnbKo.roa
Signing time: Sat 01 Jan 2022 03:52:07 +0000
ROA not before: Sat 01 Jan 2022 03:52:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49020
IP address blocks: 185.139.14.0/24 maxlen: 24
185.139.12.0/24 maxlen: 24
185.139.12.0/22 maxlen: 24
185.139.15.0/24 maxlen: 24
185.139.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9859478 (0x967196)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18376823d1fc69cd224f76d77656dcd89e545d5e
Validity
Not Before: Jan 1 03:52:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=108e3a2feee8faa05b453ed78e33453af0e76caa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:26:00:87:38:1f:19:b7:0b:27:08:20:5b:9a:
63:75:ad:0f:6b:ef:d6:4a:9d:b5:bf:68:1e:53:37:
ed:b4:f6:e1:97:cf:1c:3d:1b:46:75:da:d2:46:24:
10:29:48:7c:0a:4d:ec:c1:ab:a7:09:0b:9c:02:fa:
94:89:6f:36:fd:12:ba:ac:f2:fc:0c:f2:9b:5e:42:
73:7d:46:74:d5:b2:fe:74:50:c3:25:a1:ec:c5:6e:
44:de:b6:20:de:ec:c4:5a:89:1e:91:d2:24:6c:51:
c7:e1:9b:6b:b4:81:a5:f4:60:a8:bc:53:33:26:4c:
b7:d9:28:f5:83:9a:1d:25:76:78:a8:5d:a5:e0:6c:
f4:57:78:13:77:69:46:6b:b9:64:98:af:f4:68:ec:
fb:d7:b4:3b:b2:c7:ce:c8:08:c1:1f:6f:c1:c7:68:
b0:fe:e1:ac:7b:80:a6:ad:47:ae:d9:16:e2:94:af:
ed:3b:f9:76:47:a0:b3:c3:f9:25:4d:5d:bc:0a:36:
d5:3a:e8:19:e6:65:f0:29:8a:e1:9a:af:36:01:2d:
a6:f0:fd:04:67:2f:d7:43:e3:66:5a:46:4d:ae:38:
4b:dc:a9:49:4b:fd:86:c5:c7:83:9d:26:69:22:97:
2a:c7:18:96:ad:ff:88:05:6b:ce:16:29:f4:8d:f7:
e2:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:8E:3A:2F:EE:E8:FA:A0:5B:45:3E:D7:8E:33:45:3A:F0:E7:6C:AA
X509v3 Authority Key Identifier:
keyid:18:37:68:23:D1:FC:69:CD:22:4F:76:D7:76:56:DC:D8:9E:54:5D:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GDdoI9H8ac0iT3bXdlbc2J5UXV4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/6bf11e-bfba-4329-941e-3572bc40ee2d/1/EI46L-7o-qBbRT7XjjNFOvDnbKo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/6bf11e-bfba-4329-941e-3572bc40ee2d/1/GDdoI9H8ac0iT3bXdlbc2J5UXV4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.139.12.0/22
Signature Algorithm: sha256WithRSAEncryption
61:09:7a:2a:ba:82:5c:85:0b:2e:73:8f:20:9a:b1:c8:f4:24:
bc:8d:d9:af:83:d3:ae:b4:ab:1f:ca:0b:e3:a7:35:d1:24:69:
1d:1b:66:68:b9:e7:91:3a:e8:42:2d:d3:e0:86:2b:87:30:1d:
49:4b:6c:d2:57:0a:00:27:32:6a:54:13:74:59:b0:b8:b9:dc:
1d:cb:95:40:9e:96:f5:ff:73:ba:2c:3f:30:14:d6:2b:83:31:
0e:fd:c3:ea:0e:f5:18:f6:f5:d3:b2:8b:88:03:de:74:7b:ef:
64:54:6f:75:04:4c:bc:d0:60:fc:3f:a7:88:20:7e:c8:34:01:
02:36:e1:3b:0a:f9:8a:67:62:a6:37:55:12:af:e9:50:7d:41:
02:4b:10:0a:3c:07:5d:a7:f2:c2:44:18:f0:e7:f1:81:14:53:
43:12:4d:1e:6e:bf:c8:e4:77:bc:3a:07:4a:c6:6d:37:4b:01:
01:93:90:4a:44:3e:3c:ac:9f:18:2f:fa:53:d7:73:4d:e8:6b:
7b:82:92:14:98:5f:13:28:d6:9c:3f:aa:86:b1:60:2b:4c:e3:
10:d5:21:b9:5c:3b:89:0e:ca:f6:38:2a:c4:2d:0f:18:23:c6:
3d:90:fd:56:8c:77:f4:c0:0a:85:f0:bc:65:8c:42:64:51:fc:
54:06:9d:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:25 2023 by rpki-client on console-fra.rpki-client.org