Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/XoEMeL81CnXR8NJtiqsB1Wh4kMw.roa
File: XoEMeL81CnXR8NJtiqsB1Wh4kMw.roa (raw, json)
Hash identifier: 7UiH2kzvU97Ub3B2sOmMPZtEiXcFxZwrRiogCACekWk=
Subject key identifier: 5E:81:0C:78:BF:35:0A:75:D1:F0:D2:6D:8A:AB:01:D5:68:78:90:CC
Certificate issuer: /CN=ef738909f94d9968436bb4e09a2d47cc7901733c
Certificate serial: 018313D9CA2C9353379845951044A1587112
Authority key identifier: EF:73:89:09:F9:4D:99:68:43:6B:B4:E0:9A:2D:47:CC:79:01:73:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/73OJCflNmWhDa7Tgmi1HzHkBczw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/XoEMeL81CnXR8NJtiqsB1Wh4kMw.roa
Signing time: Tue 06 Sep 2022 17:29:43 +0000
ROA not before: Tue 06 Sep 2022 17:29:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204333
IP address blocks: 185.255.121.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:13:d9:ca:2c:93:53:37:98:45:95:10:44:a1:58:71:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef738909f94d9968436bb4e09a2d47cc7901733c
Validity
Not Before: Sep 6 17:29:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e810c78bf350a75d1f0d26d8aab01d5687890cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:2f:ec:33:5b:a9:bb:b6:d1:cf:90:95:a3:4d:
40:1c:e7:5d:68:c1:c7:e0:6f:d4:6f:74:d1:a8:7a:
e1:57:13:da:6c:24:e8:22:36:03:ea:09:ea:ed:5d:
73:50:78:11:d7:3c:47:19:67:f7:5d:da:d7:39:25:
30:6f:4f:d5:6b:48:55:0b:1e:8b:f6:ed:13:94:4e:
cb:df:27:47:e7:0a:bc:f6:cf:70:8b:a6:53:d0:71:
a3:18:2d:4f:e0:df:24:59:5c:b2:90:70:ca:51:4e:
60:79:ad:dc:20:77:df:3f:28:67:29:7d:b2:e9:f9:
cb:c8:0e:95:45:89:a4:90:9d:6c:fb:ea:ed:c5:eb:
82:0b:ee:cb:d3:de:5e:9e:22:50:10:8f:10:ee:c3:
01:20:f5:0f:57:65:f4:12:3c:0f:24:c0:2b:64:02:
0b:39:a5:c7:c0:86:ea:68:12:39:99:4c:40:85:10:
b0:d3:a8:35:60:19:54:b3:f5:63:f2:fc:ab:1e:74:
b3:f9:a6:c0:a5:1a:03:93:cc:e5:bd:86:95:d1:7e:
d0:90:3e:42:a7:8a:be:7f:84:5a:e1:37:61:fc:dd:
4c:bd:13:76:bf:24:d6:60:d0:c6:2b:b2:35:f4:76:
9d:a7:a0:0c:82:1c:12:de:47:04:d8:40:58:b5:ae:
72:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:81:0C:78:BF:35:0A:75:D1:F0:D2:6D:8A:AB:01:D5:68:78:90:CC
X509v3 Authority Key Identifier:
keyid:EF:73:89:09:F9:4D:99:68:43:6B:B4:E0:9A:2D:47:CC:79:01:73:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/73OJCflNmWhDa7Tgmi1HzHkBczw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/XoEMeL81CnXR8NJtiqsB1Wh4kMw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/73OJCflNmWhDa7Tgmi1HzHkBczw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.121.0/24
Signature Algorithm: sha256WithRSAEncryption
97:fc:71:49:cd:03:55:6b:92:2e:bd:39:04:b8:72:ce:31:c7:
3e:62:9a:8b:31:a0:02:0d:c6:68:2f:c5:1a:20:7d:30:08:30:
61:bb:5e:f6:54:67:f6:df:fa:bf:b7:21:7a:83:33:fe:7e:2f:
80:4a:49:d3:d0:a9:c4:7b:c4:2b:15:61:c5:36:48:df:79:5a:
72:73:72:df:ad:a4:98:fc:9f:fd:7b:f8:3d:20:e3:55:17:71:
32:08:22:36:28:2c:80:7f:51:ee:36:f3:7c:a7:43:72:34:7a:
23:71:11:79:02:5e:83:8e:b1:40:dd:f8:0e:d8:12:11:c0:3b:
2f:5c:a8:f0:db:95:70:4c:bf:c9:61:ad:ab:f0:84:31:f1:c1:
65:4a:0e:72:22:3f:cf:03:02:5e:2e:77:e7:70:0f:af:21:5b:
d9:e7:05:7d:fc:7b:75:aa:50:d0:c8:06:40:a8:4c:36:f7:0f:
ae:7b:d4:22:63:72:66:b3:fb:8d:1c:4e:3b:19:e4:b6:df:67:
6e:03:5d:c7:59:00:7e:45:3a:af:77:e5:6b:84:08:b8:31:60:
22:f4:1e:9f:02:af:30:bf:58:af:c8:d4:b3:b5:c6:a2:59:0f:
b9:3e:01:e0:17:d4:ff:e6:a1:e3:cb:aa:7b:93:fa:ca:74:fd:
32:70:89:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:30 2023 by rpki-client on console-fra.rpki-client.org