Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fb0032-bc45-458f-ab2b-2936aa227765/1/eW4K6DE_59XMpUsMt1RHX_-TWrc.roa
File: eW4K6DE_59XMpUsMt1RHX_-TWrc.roa (raw, json)
Hash identifier: jJQpdeipmU9A58DXxwFWkrHp6ZlDf3E4B/8rlTXPltY=
Subject key identifier: 79:6E:0A:E8:31:3F:E7:D5:CC:A5:4B:0C:B7:54:47:5F:FF:93:5A:B7
Certificate issuer: /CN=62dfe53884b95a09f66a416e14f56c6b0f789afc
Certificate serial: 0532AF00
Authority key identifier: 62:DF:E5:38:84:B9:5A:09:F6:6A:41:6E:14:F5:6C:6B:0F:78:9A:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yt_lOIS5Wgn2akFuFPVsaw94mvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fb0032-bc45-458f-ab2b-2936aa227765/1/eW4K6DE_59XMpUsMt1RHX_-TWrc.roa
Signing time: Sat 01 Jan 2022 14:58:50 +0000
ROA not before: Sat 01 Jan 2022 14:58:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205345
IP address blocks: 185.221.124.0/22 maxlen: 22
2a0d:c000::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87207680 (0x532af00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62dfe53884b95a09f66a416e14f56c6b0f789afc
Validity
Not Before: Jan 1 14:58:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=796e0ae8313fe7d5cca54b0cb754475fff935ab7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ac:9c:0c:03:26:ba:1a:55:fe:75:ea:34:59:
b3:66:03:0a:bf:a8:42:e5:96:c9:f6:8d:bb:64:e6:
13:13:18:c7:35:2a:cc:52:2a:c5:b1:71:da:fd:89:
b9:80:d8:a9:c5:a6:34:f3:33:ee:59:38:92:04:47:
a2:f8:37:21:99:ce:25:a6:27:09:7c:16:ee:43:d9:
f5:b7:d9:15:ab:2c:85:ca:75:c6:8f:06:fb:26:60:
5e:29:be:cf:22:da:cd:71:85:62:e6:87:a9:d7:40:
ae:78:fa:b8:d3:8f:1d:23:13:68:bb:17:13:98:b9:
d8:17:b5:af:6a:b7:a5:05:aa:6f:1b:0f:1c:b2:20:
1f:bb:03:f0:0c:6b:29:46:c4:f4:9a:ff:19:8a:6d:
cb:23:b5:99:82:e2:7e:bf:94:73:ff:ce:4c:10:54:
83:cd:31:2e:86:c3:eb:61:51:e6:bb:92:88:81:1d:
1a:90:16:00:09:e8:20:27:6b:f9:a7:00:c3:b9:e1:
d7:5c:de:af:bc:e1:12:81:96:15:2e:06:69:e8:f4:
d5:a9:96:7f:c4:28:86:f9:24:aa:c0:9f:80:0d:ea:
23:ad:bb:7e:5e:ba:bf:37:47:c5:f4:37:8d:a8:87:
23:74:92:77:e5:cd:e1:84:f1:cb:0e:16:c1:5f:b4:
71:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:6E:0A:E8:31:3F:E7:D5:CC:A5:4B:0C:B7:54:47:5F:FF:93:5A:B7
X509v3 Authority Key Identifier:
keyid:62:DF:E5:38:84:B9:5A:09:F6:6A:41:6E:14:F5:6C:6B:0F:78:9A:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yt_lOIS5Wgn2akFuFPVsaw94mvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fb0032-bc45-458f-ab2b-2936aa227765/1/eW4K6DE_59XMpUsMt1RHX_-TWrc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fb0032-bc45-458f-ab2b-2936aa227765/1/Yt_lOIS5Wgn2akFuFPVsaw94mvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.124.0/22
IPv6:
2a0d:c000::/29
Signature Algorithm: sha256WithRSAEncryption
c5:3f:18:7d:0b:94:f2:e2:3d:5e:53:47:b7:93:ad:b4:14:c8:
c3:6a:33:92:32:8c:74:e1:53:b7:c9:e8:c5:f0:46:40:15:39:
af:c5:8f:24:e8:ed:1c:73:d3:fd:38:1d:d7:0c:37:4e:3f:0a:
20:44:10:4b:bd:6d:28:7a:d3:67:51:9e:c8:31:09:41:48:4e:
57:98:9e:ff:33:37:47:4e:65:4a:e9:5a:61:5e:9c:01:ed:2d:
38:36:d9:d0:fa:83:25:8c:b5:f7:e9:ed:ac:07:2f:e9:d6:17:
e2:f5:08:df:e8:9f:fc:43:c7:e9:dc:14:6d:26:10:27:4a:d8:
56:9b:38:c7:7f:01:4f:ba:06:29:c0:a4:99:08:36:5f:4c:76:
19:28:5d:10:b5:e6:39:35:6f:79:65:d9:91:29:0a:e1:87:d1:
42:b5:3f:7f:40:e0:c0:fe:58:63:0f:5a:a9:c4:ab:bb:fe:5c:
bf:30:fa:47:de:97:ce:5b:a5:9e:b1:44:d0:b7:a8:a4:96:9b:
71:7e:23:c9:16:72:fc:d3:bd:c2:f3:1e:d5:9b:36:e7:d0:8e:
e7:b7:1f:86:53:97:28:0d:30:1a:e1:ad:85:41:ce:df:43:a9:
85:61:d4:46:20:7a:49:a3:98:81:6e:68:32:3d:ac:b5:6f:86:
2a:21:27:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:44 2024 by rpki-client on console-ams.rpki-client.org