Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/EXjgVBUmjdBvF_awSM1-D9hKH7o.roa
File: EXjgVBUmjdBvF_awSM1-D9hKH7o.roa (raw, json)
Hash identifier: TSEtViKEeCARrJSGxmrOuOdqID2cJSk1oA8xu/ga538=
Subject key identifier: 11:78:E0:54:15:26:8D:D0:6F:17:F6:B0:48:CD:7E:0F:D8:4A:1F:BA
Certificate issuer: /CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Certificate serial: 0655F777
Authority key identifier: 83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/EXjgVBUmjdBvF_awSM1-D9hKH7o.roa
Signing time: Tue 19 Apr 2022 14:03:36 +0000
ROA not before: Tue 19 Apr 2022 14:03:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47873
IP address blocks: 185.19.178.0/23 maxlen: 23
185.19.176.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106297207 (0x655f777)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Validity
Not Before: Apr 19 14:03:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1178e05415268dd06f17f6b048cd7e0fd84a1fba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:3c:fb:21:77:ef:86:6f:e9:6f:f4:9e:be:6b:
d5:fc:db:b6:b2:8d:a8:91:eb:93:e8:22:8e:05:ce:
72:f4:48:28:84:27:78:ed:7a:b5:74:23:27:b3:af:
c1:48:ec:30:71:6e:da:86:51:ca:f5:24:ac:ad:20:
cc:7e:07:3c:de:c6:e9:82:0a:ed:bf:1d:be:a2:4e:
df:fa:96:e4:d6:83:b1:49:f3:5c:98:3c:e1:c7:a6:
20:39:5b:00:65:1a:68:2e:97:4c:dd:56:5f:29:7b:
68:d0:f6:0b:76:5f:f0:06:b3:35:7d:11:0d:f1:80:
6d:96:1c:b9:ea:d4:a4:56:a5:f6:97:d1:c5:57:93:
ad:fd:ff:24:56:45:ca:82:6f:a3:d9:e1:89:f2:b9:
bb:f8:78:7e:62:43:02:72:81:eb:19:2a:4f:df:fd:
f8:08:bb:e8:e9:f5:23:4e:a0:43:eb:d1:f7:bd:21:
fb:69:71:29:3c:67:81:ce:d9:f1:a5:1b:7b:69:7d:
31:26:b2:6e:d4:88:56:7d:4f:50:54:b0:3e:50:9c:
47:c4:19:4c:17:1d:89:12:34:17:89:fc:dd:b3:9e:
95:6b:7b:6f:c9:bd:e6:1a:7a:a9:23:c3:c5:b9:e3:
f5:2f:09:c0:59:31:43:c6:eb:11:e4:ea:74:14:4e:
ea:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:78:E0:54:15:26:8D:D0:6F:17:F6:B0:48:CD:7E:0F:D8:4A:1F:BA
X509v3 Authority Key Identifier:
keyid:83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/EXjgVBUmjdBvF_awSM1-D9hKH7o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/gzjvQbLAEFqRzLuciTN_rrEp_4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.19.176.0/22
Signature Algorithm: sha256WithRSAEncryption
87:64:b6:c7:57:40:06:8a:1c:fb:27:37:ac:64:cf:70:57:cc:
58:e4:89:27:9a:9d:ac:5a:64:86:34:91:77:c2:59:5b:a8:6d:
7b:f7:7a:c6:d5:09:a1:af:12:b4:a3:58:c2:94:57:b8:06:9b:
93:8f:eb:d5:dc:8d:b1:f2:6f:23:20:81:57:91:d6:db:9a:0b:
fb:7a:27:5d:80:69:c9:0c:c7:4d:f1:e6:c9:8f:6b:e8:55:4a:
dd:e4:9e:f7:b2:29:21:c5:4f:39:8c:38:70:f3:fd:f8:b4:09:
7e:38:fe:a1:13:92:62:ff:e6:60:29:0f:82:25:03:13:75:28:
7a:fd:62:50:cd:9f:ec:0e:d9:ab:74:25:c4:4d:ed:7b:22:57:
64:a4:e2:f1:5b:1d:a7:b6:d1:eb:0a:66:35:29:7b:ed:be:b2:
dd:33:77:2a:f5:27:62:d4:af:21:cf:ff:fc:9b:4f:83:82:9c:
57:85:7b:f0:82:94:11:cc:73:a1:b7:dd:07:cf:be:8f:0f:a3:
2d:97:8a:15:6e:66:bc:e9:69:69:04:b5:40:05:8e:6c:07:2d:
7c:01:4d:65:64:03:8a:30:1b:0b:44:02:51:37:13:c5:f1:3c:
df:04:a1:e2:55:f7:d4:29:14:bf:71:f0:9d:2a:fc:73:5d:aa:
2a:98:29:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:48 2023 by rpki-client on console-ams.rpki-client.org