Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/5bfdb5-4824-402c-b39b-24488b27ca41/1/ewc135J9Blgle4hBOLB0usBeZkQ.roa
File: ewc135J9Blgle4hBOLB0usBeZkQ.roa (raw, json)
Hash identifier: 6FkcqXS3R8N81BSEJesfZfHhkOL/q2Wh5gXvUaf0mjo=
Subject key identifier: 7B:07:35:DF:92:7D:06:58:25:7B:88:41:38:B0:74:BA:C0:5E:66:44
Certificate issuer: /CN=d518bf60d1ef4c76cd07a53f7ec683771aab5cfd
Certificate serial: 286A4D16
Authority key identifier: D5:18:BF:60:D1:EF:4C:76:CD:07:A5:3F:7E:C6:83:77:1A:AB:5C:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Ri_YNHvTHbNB6U_fsaDdxqrXP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/5bfdb5-4824-402c-b39b-24488b27ca41/1/ewc135J9Blgle4hBOLB0usBeZkQ.roa
Signing time: Sat 01 Jan 2022 10:55:31 +0000
ROA not before: Sat 01 Jan 2022 10:55:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199419
IP address blocks: 185.16.237.0/24 maxlen: 24
185.16.238.0/24 maxlen: 24
185.16.239.0/24 maxlen: 24
185.16.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 678055190 (0x286a4d16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d518bf60d1ef4c76cd07a53f7ec683771aab5cfd
Validity
Not Before: Jan 1 10:55:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b0735df927d0658257b884138b074bac05e6644
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:4e:ee:e1:24:d2:5c:ee:4c:7e:b7:70:dc:c9:
19:0b:89:5f:29:4d:71:92:44:39:30:22:b7:31:63:
1d:0f:58:44:2d:3e:78:13:6e:36:7f:15:c3:eb:8f:
6f:a1:f0:b9:d6:fe:db:34:5f:b0:83:7b:41:a5:47:
63:76:52:d2:67:7f:98:12:00:5d:45:30:45:72:c7:
0c:98:15:b6:96:ce:bb:e3:e7:41:76:e2:76:35:73:
d6:fd:94:fe:52:93:d8:50:f3:d6:a1:d5:3c:79:1c:
62:c0:b3:6f:55:8e:b2:33:02:fd:5e:ad:12:b4:7c:
58:29:91:08:7e:83:36:90:45:47:93:75:eb:5b:60:
25:de:c6:9c:58:1b:29:69:6c:d9:e2:69:71:46:54:
5d:8d:0c:9b:ac:61:1e:e8:00:56:4e:a7:51:b7:79:
70:7c:b8:41:65:d9:44:0a:1f:13:bf:4e:d1:52:e5:
ce:0c:16:d8:47:d8:d4:9a:88:43:de:4d:5c:37:f2:
4c:dc:f8:04:ff:c4:3f:41:9f:a2:0d:40:e3:2c:94:
2f:64:1e:4a:03:5d:1e:84:67:32:a7:4d:81:a6:08:
4f:04:b1:4c:7a:7b:4a:0a:be:8c:17:a6:04:f0:b7:
9b:73:5e:72:c6:0f:0b:cd:91:96:69:a5:b0:59:b9:
af:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:07:35:DF:92:7D:06:58:25:7B:88:41:38:B0:74:BA:C0:5E:66:44
X509v3 Authority Key Identifier:
keyid:D5:18:BF:60:D1:EF:4C:76:CD:07:A5:3F:7E:C6:83:77:1A:AB:5C:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Ri_YNHvTHbNB6U_fsaDdxqrXP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/5bfdb5-4824-402c-b39b-24488b27ca41/1/ewc135J9Blgle4hBOLB0usBeZkQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/5bfdb5-4824-402c-b39b-24488b27ca41/1/1Ri_YNHvTHbNB6U_fsaDdxqrXP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.16.236.0/22
Signature Algorithm: sha256WithRSAEncryption
23:72:88:7a:f7:c6:dd:06:7e:00:9c:5a:eb:b2:c6:1d:77:56:
fe:a0:ea:07:0c:fa:d3:98:b6:42:c3:a8:e7:fc:3b:3b:2b:f2:
dd:e9:e8:8d:81:e3:e1:de:f4:7f:d0:7a:bc:4d:9c:e0:fd:ad:
04:e7:48:7e:6b:93:f4:b2:82:13:bd:82:07:d1:78:10:f9:c4:
64:fe:f9:77:7d:cd:06:dd:1a:19:62:ca:71:34:d9:e8:c9:15:
4e:0f:c6:0f:4a:3b:80:0f:cb:0e:a6:b3:26:ec:93:99:ef:74:
22:c6:cc:26:e1:db:c6:12:2b:5d:e9:ab:b0:85:c4:ee:ce:2f:
95:9b:7b:7f:a6:4f:38:12:c7:20:84:82:c5:30:0c:fd:ef:8d:
ba:f5:64:6f:08:1c:8f:17:af:5a:2a:8d:4e:3a:3c:77:4b:78:
9b:52:5b:29:58:ac:06:a9:da:9e:3e:39:d5:80:74:4b:db:9b:
9d:91:9f:1d:2c:6e:4b:6a:21:e7:d8:4e:bb:91:b6:d7:5f:77:
2f:00:0b:f7:a3:1c:a5:5b:08:46:6f:16:41:f1:c4:bc:0b:bf:
68:bf:94:58:a8:95:4b:9e:83:ac:91:93:20:17:24:45:d9:79:
c8:b0:b2:5d:e5:68:b4:68:23:83:95:8f:ef:88:c7:12:63:f2:
e0:df:8a:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:39 2023 by rpki-client on console-ams.rpki-client.org