Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/EbKFCsmeNm0kNMjJI7Jn9OSIfg8.roa
File: EbKFCsmeNm0kNMjJI7Jn9OSIfg8.roa (raw, json)
Hash identifier: EurOG2k59guAS2zS88mIAiPrZwBGNYGPzPTJrxnoHr0=
Subject key identifier: 11:B2:85:0A:C9:9E:36:6D:24:34:C8:C9:23:B2:67:F4:E4:88:7E:0F
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 0184FC9A976220E423310C86824D97E9ECF8
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/EbKFCsmeNm0kNMjJI7Jn9OSIfg8.roa
Signing time: Sat 10 Dec 2022 15:15:00 +0000
ROA not before: Sat 10 Dec 2022 15:15:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58192
IP address blocks: 185.239.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:fc:9a:97:62:20:e4:23:31:0c:86:82:4d:97:e9:ec:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Dec 10 15:15:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=11b2850ac99e366d2434c8c923b267f4e4887e0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:d2:86:08:1e:68:6a:d1:99:76:57:65:36:46:
ae:0e:13:6f:88:67:81:13:09:7e:b0:20:e6:c4:cc:
40:ce:8c:c5:c1:89:8a:e6:9d:9c:6d:63:20:88:29:
7f:29:a5:d8:e8:ef:57:8e:e1:2f:01:10:49:fb:3e:
f5:47:98:7f:a4:49:8b:9d:fc:2e:b6:2b:e2:b2:13:
3f:9b:cd:0c:a5:51:b7:2c:7d:d5:88:8a:6b:1a:3c:
2c:04:12:c9:d7:92:d8:a9:f0:e4:17:3a:f6:eb:30:
9b:1c:45:9d:5a:96:31:a6:05:3d:3a:ce:56:cb:d9:
6f:72:f7:2f:68:61:8f:1a:d1:81:54:d8:21:11:d2:
b2:c7:55:b7:59:3a:4f:9d:ee:fc:6d:d2:3e:1a:a9:
84:d5:3f:41:7b:03:f8:1a:98:d1:c9:9d:f4:c9:5d:
a8:a6:98:b2:d1:9c:05:e7:ea:1c:81:6d:b6:28:88:
2d:e5:1d:ce:27:00:1d:4d:94:18:b1:eb:ff:85:54:
74:66:a2:52:5d:3b:62:1e:1b:91:f5:48:ca:57:5b:
03:bb:a0:df:72:a1:54:4c:e6:78:66:96:57:14:c3:
84:2d:4d:65:2a:77:78:88:61:1c:ee:c2:89:6d:b4:
24:43:75:76:40:1a:eb:12:eb:25:66:2f:75:91:34:
45:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:B2:85:0A:C9:9E:36:6D:24:34:C8:C9:23:B2:67:F4:E4:88:7E:0F
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/EbKFCsmeNm0kNMjJI7Jn9OSIfg8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.239.0.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:ad:d3:16:73:b8:99:5b:1e:e9:70:a5:03:c1:40:f4:5e:55:
ad:5b:54:95:04:4f:17:cd:17:6b:26:e4:29:11:2d:2a:f5:99:
6c:56:ca:dd:ca:87:fa:09:1e:3e:e6:41:18:89:18:6e:69:a9:
ee:92:c8:e5:42:e8:88:b3:6d:1f:31:50:fc:52:3e:d2:0a:c9:
1c:7e:be:e0:88:e3:41:8c:4a:70:e9:05:21:8b:05:fb:b7:e3:
2d:9f:be:ed:42:fb:e5:8d:72:2e:d3:07:ca:47:a9:89:7b:79:
4e:02:da:e6:b4:74:2a:b5:ca:e8:01:53:50:44:ce:54:07:91:
9c:4c:93:c7:ae:b7:ca:4b:15:7c:50:97:39:6a:52:1c:da:71:
73:11:a2:ba:d4:31:12:14:8c:5f:6f:23:f1:40:ed:03:5c:dd:
8d:8a:34:39:dd:c7:c8:0b:4f:8a:8c:eb:ff:af:08:fd:f8:2a:
bb:71:4d:c7:2f:cb:73:bc:43:9b:80:d8:e7:22:0f:ac:c5:88:
f7:c7:55:5a:60:ed:9a:df:6a:0d:8a:9b:09:f6:82:db:97:3c:
15:bd:fa:f8:71:2c:b8:ba:85:74:4c:e8:f5:39:c0:ea:2d:d2:
4f:fe:15:0f:a5:32:7d:ea:e4:63:4f:69:1a:f2:e7:98:2b:4a:
c1:a1:78:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:26 2023 by rpki-client on console-fra.rpki-client.org