Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/9a78e6-3bf7-42b6-8cbf-119942f3d7a7/1/7JC7w93mkA8R_o9eGTeKQneIek4.roa
File: 7JC7w93mkA8R_o9eGTeKQneIek4.roa (raw, json)
Hash identifier: Ebekk3w4L6QV/WMx1+i3JwwWSrfgucIJQHt3/HnN9ss=
Subject key identifier: EC:90:BB:C3:DD:E6:90:0F:11:FE:8F:5E:19:37:8A:42:77:88:7A:4E
Certificate issuer: /CN=10af800ce95bfbb1f473b0b5f9f7b93175930e89
Certificate serial: 0184B33CFCF2D663C2B474456297C8F1E025
Authority key identifier: 10:AF:80:0C:E9:5B:FB:B1:F4:73:B0:B5:F9:F7:B9:31:75:93:0E:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EK-ADOlb-7H0c7C1-fe5MXWTDok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/9a78e6-3bf7-42b6-8cbf-119942f3d7a7/1/7JC7w93mkA8R_o9eGTeKQneIek4.roa
Signing time: Sat 26 Nov 2022 09:20:29 +0000
ROA not before: Sat 26 Nov 2022 09:20:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201265
IP address blocks: 185.32.160.0/22 maxlen: 24
2a00:a5a1::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:b3:3c:fc:f2:d6:63:c2:b4:74:45:62:97:c8:f1:e0:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10af800ce95bfbb1f473b0b5f9f7b93175930e89
Validity
Not Before: Nov 26 09:20:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec90bbc3dde6900f11fe8f5e19378a4277887a4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:a7:f5:3d:08:ae:6a:fa:69:cd:2b:3d:02:1d:
59:c2:a0:61:4c:d9:13:30:49:a6:98:95:8c:7a:d6:
f8:c2:f8:71:7f:6a:f8:17:9c:03:b5:06:f8:77:20:
72:bf:3b:61:f0:8b:85:fa:55:ac:93:78:a5:55:31:
7d:9d:6c:dd:10:9f:15:fb:61:ce:19:7c:64:f2:ec:
a1:40:36:b6:7d:a6:77:f8:52:63:2e:3b:14:eb:6e:
bb:16:c8:02:1f:e3:58:02:0e:9b:29:c1:4e:ae:45:
65:f6:e3:a4:ee:cf:8d:2f:08:23:5a:52:b9:da:4b:
37:bd:f4:f3:df:42:53:c2:af:ba:38:e7:90:a4:eb:
4d:d4:ca:af:99:d7:56:af:b7:b9:20:64:58:53:af:
1b:ff:75:d9:44:8c:0d:f3:b0:cc:d0:87:30:1f:27:
26:2b:88:56:15:b3:6e:d8:7a:c1:70:71:9a:03:69:
7b:64:47:88:1a:52:2a:ff:fe:c2:49:5a:5e:12:01:
0b:8a:66:a0:5f:64:b3:d4:d3:42:0b:f9:e3:25:30:
3d:13:02:6d:2c:fb:36:8e:ca:52:95:39:68:91:36:
f2:1f:3c:bd:82:df:7b:a2:d9:d1:66:dc:d5:eb:47:
4f:3e:c1:6a:c0:5c:85:01:d3:7f:05:b3:42:3e:cd:
06:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:90:BB:C3:DD:E6:90:0F:11:FE:8F:5E:19:37:8A:42:77:88:7A:4E
X509v3 Authority Key Identifier:
keyid:10:AF:80:0C:E9:5B:FB:B1:F4:73:B0:B5:F9:F7:B9:31:75:93:0E:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EK-ADOlb-7H0c7C1-fe5MXWTDok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9a78e6-3bf7-42b6-8cbf-119942f3d7a7/1/7JC7w93mkA8R_o9eGTeKQneIek4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9a78e6-3bf7-42b6-8cbf-119942f3d7a7/1/EK-ADOlb-7H0c7C1-fe5MXWTDok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.32.160.0/22
IPv6:
2a00:a5a1::/32
Signature Algorithm: sha256WithRSAEncryption
63:fe:58:07:83:dc:09:13:fc:41:cb:f2:d6:b7:3a:09:d7:9f:
43:b8:fe:dc:da:42:8a:51:22:c9:3e:b5:66:51:67:cc:d9:d4:
a8:5a:a3:94:e2:e4:8a:3e:6e:ef:3f:0e:65:c1:99:5f:a1:70:
2e:18:f7:d2:0c:f3:06:9b:11:5a:85:57:51:f2:b7:00:7a:42:
dc:a2:a5:80:40:cf:b1:d8:37:a0:5e:ae:f3:cc:7b:94:fe:8e:
d2:b2:f4:03:b4:db:44:8e:7e:93:30:ab:9b:74:8a:4e:38:b7:
d7:89:d6:68:4f:53:41:95:66:a7:1e:b2:77:9b:d6:5b:9b:c5:
15:7c:71:ff:3d:5f:78:16:45:38:0e:74:6e:67:68:fe:4e:ed:
a7:0e:39:22:ec:4d:a7:be:a3:27:38:89:22:82:f1:9f:61:dc:
f8:e9:3a:9f:78:dc:ea:27:1d:ef:2f:bf:aa:03:aa:9a:6b:94:
a4:7a:cb:8c:61:e7:9c:7e:6f:6f:b3:68:95:55:67:51:d2:00:
14:bc:23:a8:11:a6:0a:e5:66:f3:7d:2a:ee:88:33:d4:e5:26:
53:04:f8:b4:3d:73:2b:b2:33:2c:56:de:61:8a:25:c3:ed:24:
ca:e7:ec:8e:3f:ac:b5:db:a9:f2:13:bd:99:c2:ca:de:e4:e3:
76:2c:1b:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:39 2024 by rpki-client on console-ams.rpki-client.org