Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/bfa07b-87c2-452a-bd0c-8aae43063bca/1/eFEIsRvEKgi_ewz7Oibxpaqfld0.roa
File: eFEIsRvEKgi_ewz7Oibxpaqfld0.roa (raw, json)
Hash identifier: EhQqyOebhMIsLuIIr+4CSDXuz024Pf3/O6wCDpuae4A=
Subject key identifier: 78:51:08:B1:1B:C4:2A:08:BF:7B:0C:FB:3A:26:F1:A5:AA:9F:95:DD
Certificate issuer: /CN=699bb10a5572175b03a3c7cbfbe938b7b1441ac0
Certificate serial: 018A23027F433DFA3D538D65399F83D8189B
Authority key identifier: 69:9B:B1:0A:55:72:17:5B:03:A3:C7:CB:FB:E9:38:B7:B1:44:1A:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZuxClVyF1sDo8fL--k4t7FEGsA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/bfa07b-87c2-452a-bd0c-8aae43063bca/1/eFEIsRvEKgi_ewz7Oibxpaqfld0.roa
Signing time: Wed 23 Aug 2023 15:28:00 +0000
ROA not before: Wed 23 Aug 2023 15:28:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61024
IP address blocks: 185.124.162.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:23:02:7f:43:3d:fa:3d:53:8d:65:39:9f:83:d8:18:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=699bb10a5572175b03a3c7cbfbe938b7b1441ac0
Validity
Not Before: Aug 23 15:28:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=785108b11bc42a08bf7b0cfb3a26f1a5aa9f95dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f1:75:cd:30:d7:99:f3:6b:fa:5d:98:d6:99:
56:50:41:01:dd:bb:f8:43:89:c7:55:05:fc:dc:3a:
7a:fb:71:4a:e2:86:65:77:42:78:8b:05:0d:b6:4d:
da:13:10:1b:fd:10:22:fd:71:4b:e5:4e:ec:96:f5:
39:3b:67:17:43:fd:1d:50:6e:d3:09:93:06:93:91:
0e:4f:6e:80:3d:6b:21:cc:33:bd:df:75:8e:1d:69:
8d:27:56:d4:89:23:49:68:f8:df:ba:fa:d7:0b:70:
ba:7d:35:0f:5b:4d:91:9b:af:fb:0d:34:ed:db:b3:
81:81:ed:50:28:be:eb:db:e8:f5:1c:57:1d:ff:41:
d1:cd:f9:73:05:ce:47:ce:64:11:a7:a1:68:aa:05:
26:b7:a9:bd:fc:63:70:47:60:35:3c:e7:ac:91:74:
e9:31:21:09:c4:cd:5a:4b:0c:6e:a0:d8:c2:ef:b3:
14:bf:6b:cf:44:25:32:c6:b5:2b:b2:9f:19:6d:aa:
29:63:01:fc:c5:7f:ff:58:5b:a3:7e:12:cf:a3:e9:
aa:bc:28:23:7d:40:f3:a0:5f:4c:81:9a:fe:93:51:
70:5f:5b:b6:01:21:7d:39:83:26:47:37:8b:e2:32:
f8:e0:65:2e:fc:f6:1f:5f:0f:ef:67:6c:38:2a:1b:
8b:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:51:08:B1:1B:C4:2A:08:BF:7B:0C:FB:3A:26:F1:A5:AA:9F:95:DD
X509v3 Authority Key Identifier:
keyid:69:9B:B1:0A:55:72:17:5B:03:A3:C7:CB:FB:E9:38:B7:B1:44:1A:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZuxClVyF1sDo8fL--k4t7FEGsA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/bfa07b-87c2-452a-bd0c-8aae43063bca/1/eFEIsRvEKgi_ewz7Oibxpaqfld0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/bfa07b-87c2-452a-bd0c-8aae43063bca/1/aZuxClVyF1sDo8fL--k4t7FEGsA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.162.0/24
Signature Algorithm: sha256WithRSAEncryption
61:2c:4f:fc:53:12:0c:c5:77:9a:95:4d:4b:57:92:c8:ed:7b:
39:ec:23:1a:4d:5c:0d:64:6d:19:a7:bc:24:10:de:54:7d:c2:
0e:55:47:d6:6f:d2:67:9f:53:57:fb:ef:b6:6a:9d:bd:de:22:
79:ce:2c:06:16:ed:1f:ad:37:32:db:c1:1e:f4:72:5b:a6:fe:
13:35:a3:6d:1e:8e:85:a5:7a:ea:46:14:84:e4:78:58:34:03:
fb:30:e6:93:ae:bf:de:6e:e9:68:45:09:dc:d1:2c:8b:70:13:
bf:b8:55:eb:77:3b:e4:b6:0b:29:de:3e:6e:57:17:80:27:c9:
67:98:22:b3:ff:5a:1f:95:2c:8b:86:0c:7c:c2:11:47:cc:db:
7e:ac:59:63:48:96:90:c7:cd:4c:6a:7a:37:73:9e:0a:dd:90:
14:de:50:a2:c9:aa:b0:e6:09:ad:29:b6:08:1c:d6:5b:da:72:
b9:b0:d6:ea:bf:18:a5:46:c8:70:53:d0:88:54:f7:4d:d6:59:
6a:15:78:c3:9f:cd:a5:97:58:84:7b:9d:42:9d:e7:0a:49:6e:
3e:07:6b:bd:bb:b3:67:3e:f6:7c:b6:f5:48:eb:30:61:c9:cc:
79:82:51:a1:85:f9:19:18:11:55:00:ad:47:f5:0c:7a:2b:e0:
46:fd:f6:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:17:06 2025 by rpki-client