Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/16a48b-6d2a-40e2-9bc3-8cd9b33a5684/1/EJaZwHFLitNJFcxYQS6wkKgKobo.roa
File: EJaZwHFLitNJFcxYQS6wkKgKobo.roa (raw, json)
Hash identifier: m2YI4/d4WW7MIU1QfOWNmAy0IWxkTDpZvE36MiUB6SY=
Subject key identifier: 10:96:99:C0:71:4B:8A:D3:49:15:CC:58:41:2E:B0:90:A8:0A:A1:BA
Certificate issuer: /CN=fb02f648de95b88479364346ed01e78769577922
Certificate serial: 081C7BD4
Authority key identifier: FB:02:F6:48:DE:95:B8:84:79:36:43:46:ED:01:E7:87:69:57:79:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-wL2SN6VuIR5NkNG7QHnh2lXeSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/16a48b-6d2a-40e2-9bc3-8cd9b33a5684/1/EJaZwHFLitNJFcxYQS6wkKgKobo.roa
Signing time: Sat 01 Jan 2022 01:52:49 +0000
ROA not before: Sat 01 Jan 2022 01:52:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206165
IP address blocks: 185.1.89.0/24 maxlen: 24
2001:7f8:b1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136084436 (0x81c7bd4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb02f648de95b88479364346ed01e78769577922
Validity
Not Before: Jan 1 01:52:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=109699c0714b8ad34915cc58412eb090a80aa1ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:76:a3:a4:c3:ee:e1:61:e2:a0:c2:c5:74:20:
e2:ee:08:a7:1e:bc:dc:cd:f4:ee:dd:af:0b:ef:b7:
03:45:40:62:99:da:59:0b:3f:03:5c:2d:fe:eb:ae:
0c:82:ea:58:48:47:35:f8:5c:d6:27:0f:56:26:64:
94:a3:97:bc:21:47:53:9f:8a:72:21:c9:2a:2a:08:
87:33:ca:db:b5:84:05:b3:68:c6:67:9c:22:28:0d:
3e:8f:a2:8f:21:94:38:d8:7a:65:fc:ba:bf:64:56:
e2:d2:58:7e:54:09:af:f1:7f:cd:2b:bc:74:60:88:
56:6a:17:72:18:59:81:51:2d:22:d5:cb:0d:cc:7a:
2b:1b:7b:0f:bf:49:99:b3:1f:1e:75:a1:4a:57:5d:
1f:d1:17:67:89:45:c1:96:f3:00:28:19:51:b8:ca:
f5:b7:c5:2d:0c:b1:bb:02:38:18:31:ae:f1:33:4d:
ea:4e:cf:e4:b2:6e:b7:b5:bb:97:7f:6e:75:29:2b:
1d:97:74:5a:dc:bb:5d:9c:a4:79:6f:5d:1c:9c:7d:
60:e7:f9:20:f4:30:08:01:3b:07:c8:22:b8:25:c0:
71:2e:f3:5a:e8:14:3b:ae:a3:5f:0e:2b:69:ad:b8:
cc:e6:b1:0e:b4:24:0b:42:44:25:01:ef:72:eb:53:
34:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:96:99:C0:71:4B:8A:D3:49:15:CC:58:41:2E:B0:90:A8:0A:A1:BA
X509v3 Authority Key Identifier:
keyid:FB:02:F6:48:DE:95:B8:84:79:36:43:46:ED:01:E7:87:69:57:79:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-wL2SN6VuIR5NkNG7QHnh2lXeSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/16a48b-6d2a-40e2-9bc3-8cd9b33a5684/1/EJaZwHFLitNJFcxYQS6wkKgKobo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/16a48b-6d2a-40e2-9bc3-8cd9b33a5684/1/1-wL2SN6VuIR5NkNG7QHnh2lXeSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.89.0/24
IPv6:
2001:7f8:b1::/48
Signature Algorithm: sha256WithRSAEncryption
61:06:17:b3:2b:58:d4:da:b4:22:35:33:1d:6d:52:f2:b8:9b:
04:a5:63:66:cb:67:2f:21:78:a2:f5:f2:51:57:46:c7:35:ec:
f8:a7:7e:49:76:c6:00:05:f0:63:63:93:89:4d:08:79:46:c4:
38:32:c9:9a:10:70:05:8f:3e:e0:d5:2a:e4:49:82:36:c0:e4:
ca:98:e2:28:4d:df:c6:ec:89:d7:cc:32:3e:41:c4:fd:ec:f6:
dc:3f:e6:1e:64:41:df:7f:5e:0c:f7:1d:6f:57:2e:8c:2f:8e:
9f:8f:28:07:42:66:53:97:4c:27:91:67:29:08:70:47:94:6c:
be:be:52:9c:99:c5:aa:b6:12:17:a7:38:69:b3:36:38:e1:d8:
04:8f:a1:f5:9e:b3:2b:1d:ba:0f:62:d5:70:4c:7f:7d:ae:48:
bb:77:7c:29:e2:61:b2:28:b7:7e:9b:a0:8b:2a:fa:6a:51:e0:
8a:8f:c7:f9:d6:7c:33:d4:08:4f:83:b3:6b:ed:b6:62:fe:1d:
84:42:97:35:4d:84:87:74:85:eb:30:a6:78:ad:5d:88:18:fd:
c4:d4:18:74:c2:1f:15:da:39:d9:56:3c:23:2b:c7:e6:dd:81:
a0:fe:5a:f8:e7:57:22:b3:d1:3d:cf:67:f6:0f:8d:c9:3b:f8:
84:7e:08:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:48 2023 by rpki-client on console-fra.rpki-client.org