Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/5fd4bf-74d9-4072-b557-084cca1c8623/1/k0-AZoESA55Cb52_r-Q8-VI_cUQ.roa
File: k0-AZoESA55Cb52_r-Q8-VI_cUQ.roa (raw, json)
Hash identifier: n3ZmDlLf8RHfq2jtNIr0k7iFl+sg42JevkhvXMNnFm0=
Subject key identifier: 93:4F:80:66:81:12:03:9E:42:6F:9D:BF:AF:E4:3C:F9:52:3F:71:44
Certificate issuer: /CN=78703e7a62309bf027c1f10536926a19b7f14b1e
Certificate serial: 018701B1
Authority key identifier: 78:70:3E:7A:62:30:9B:F0:27:C1:F1:05:36:92:6A:19:B7:F1:4B:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eHA-emIwm_AnwfEFNpJqGbfxSx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/5fd4bf-74d9-4072-b557-084cca1c8623/1/k0-AZoESA55Cb52_r-Q8-VI_cUQ.roa
Signing time: Sat 01 Jan 2022 10:00:31 +0000
ROA not before: Sat 01 Jan 2022 10:00:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3624
IP address blocks: 185.117.213.0/24 maxlen: 24
2a06:8782::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25625009 (0x18701b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78703e7a62309bf027c1f10536926a19b7f14b1e
Validity
Not Before: Jan 1 10:00:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=934f80668112039e426f9dbfafe43cf9523f7144
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:f5:5a:9e:10:7e:f5:40:01:c0:12:69:2f:99:
ee:1b:1c:05:83:f6:3d:b1:38:23:d2:b0:b0:ce:28:
aa:f2:a7:ea:5c:3e:37:94:b2:89:6d:16:4c:46:c6:
bc:60:f5:7f:13:fb:23:43:4e:75:cd:f4:65:7e:f3:
4f:ed:02:a6:69:58:46:bd:5a:2d:f5:7e:91:78:7a:
c9:26:8c:d3:08:ce:9b:f3:fe:2f:b5:87:21:6b:d3:
32:2b:6c:3b:44:90:7c:db:81:5f:1f:ad:33:ea:6c:
98:67:6b:04:18:08:30:f4:b0:30:15:67:10:d6:b4:
02:17:55:36:1f:49:76:5c:f3:77:44:74:df:58:eb:
5b:e3:48:2e:ed:6a:dd:4e:02:ca:ec:01:86:9e:fe:
37:18:0b:5a:bf:7f:5a:78:22:c4:f1:3d:2e:ed:c3:
a3:c4:55:96:15:52:e9:d4:31:47:0b:db:0c:19:84:
98:c1:c0:05:ff:51:e2:9e:af:a8:55:a3:d5:17:8c:
f2:26:d5:c3:9f:7f:6f:95:d1:7a:d1:e2:13:37:54:
c6:91:c1:94:b1:89:c0:4c:06:9b:55:82:8c:ac:98:
da:60:0c:65:ca:ec:d5:c1:ad:a1:bd:be:f9:e1:2d:
f0:db:04:21:ba:80:d4:a3:e2:dd:b8:7f:19:37:31:
4f:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:4F:80:66:81:12:03:9E:42:6F:9D:BF:AF:E4:3C:F9:52:3F:71:44
X509v3 Authority Key Identifier:
keyid:78:70:3E:7A:62:30:9B:F0:27:C1:F1:05:36:92:6A:19:B7:F1:4B:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eHA-emIwm_AnwfEFNpJqGbfxSx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/5fd4bf-74d9-4072-b557-084cca1c8623/1/k0-AZoESA55Cb52_r-Q8-VI_cUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/5fd4bf-74d9-4072-b557-084cca1c8623/1/eHA-emIwm_AnwfEFNpJqGbfxSx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.213.0/24
IPv6:
2a06:8782::/32
Signature Algorithm: sha256WithRSAEncryption
0c:30:fe:8e:5f:01:8d:19:41:de:89:b8:91:ba:81:c7:42:dc:
00:29:88:d1:c6:a5:bc:04:b1:66:df:b6:21:8b:e2:eb:d7:dc:
be:65:ab:5f:64:a3:4e:be:a4:2e:8a:e9:63:d8:e3:51:ce:a5:
10:77:b0:b8:3b:c9:57:4e:54:67:2b:69:35:a6:06:f0:b8:89:
27:64:c3:01:e4:18:69:5a:29:9a:52:7f:b2:93:8a:d3:0f:54:
d0:ae:aa:10:d3:45:15:0b:b0:3d:f0:d2:3c:86:6c:bf:49:80:
9b:d1:93:d8:4b:19:a5:9e:ab:de:5b:f1:f5:50:2f:b4:15:53:
fa:1e:7a:5a:73:c8:3d:2e:af:79:c6:70:7d:8a:3b:2e:da:5e:
7a:52:32:d4:74:76:8a:17:4d:07:22:00:c8:f7:e5:2e:d4:fb:
98:9e:79:8d:a5:fa:e4:a1:d6:5c:ee:ab:9e:8a:7f:d5:c1:63:
10:d1:27:6a:69:47:71:bc:84:17:ba:df:2a:9b:fe:6c:a1:2e:
f0:7e:c6:1b:eb:21:d0:71:04:92:a2:9e:35:23:f1:dd:b0:b1:
da:5f:14:9b:24:ce:d3:43:fd:30:3b:5e:0b:e4:8d:65:19:c9:
dd:e5:34:e0:4f:7f:75:0d:17:cb:a0:44:1d:0e:de:50:49:d7:
d1:2a:68:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:06 2023 by rpki-client on console-fra.rpki-client.org