Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/7SYeHfX5ITG_eLhC-YXIWFU5aH0.roa
File: 7SYeHfX5ITG_eLhC-YXIWFU5aH0.roa (raw, json)
Hash identifier: Vq+GYdvOJbePUOTQnTfnJK8phIyVNuYoNs0E2wqqABI=
Subject key identifier: ED:26:1E:1D:F5:F9:21:31:BF:78:B8:42:F9:85:C8:58:55:39:68:7D
Certificate issuer: /CN=92e720465c5cd0da9c6a13b44fa0d86f649e5055
Certificate serial: 018510A95E604EB94342D4AFF271616AC478
Authority key identifier: 92:E7:20:46:5C:5C:D0:DA:9C:6A:13:B4:4F:A0:D8:6F:64:9E:50:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kucgRlxc0NqcahO0T6DYb2SeUFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/7SYeHfX5ITG_eLhC-YXIWFU5aH0.roa
Signing time: Wed 14 Dec 2022 12:43:33 +0000
ROA not before: Wed 14 Dec 2022 12:43:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212384
IP address blocks: 185.189.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:10:a9:5e:60:4e:b9:43:42:d4:af:f2:71:61:6a:c4:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92e720465c5cd0da9c6a13b44fa0d86f649e5055
Validity
Not Before: Dec 14 12:43:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed261e1df5f92131bf78b842f985c8585539687d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:9d:5f:b0:a7:56:2a:68:9e:96:ce:b7:26:8d:
41:95:7f:9f:fe:2e:4c:45:a7:71:99:39:22:34:05:
4b:65:9d:71:9d:36:e2:e3:ad:b4:7a:19:74:b8:52:
6e:50:d7:cb:c8:57:eb:29:53:3b:32:77:6d:d2:33:
0f:bd:3b:a9:35:32:f7:89:72:04:40:3d:cc:bc:4e:
43:0a:59:be:6a:84:94:50:22:c3:45:2b:99:aa:d9:
c5:c6:5f:ec:d0:be:6b:59:c3:58:f2:a3:24:40:cd:
3a:17:27:1d:79:67:79:8b:75:94:00:33:6a:4d:fd:
90:0f:8a:27:d5:6a:23:4e:68:32:9e:92:19:f1:b1:
4c:45:95:cb:65:d9:ca:2a:42:0a:77:ba:59:61:a1:
1c:b5:ea:0b:8f:73:3e:ab:ae:fe:ff:91:9e:cf:74:
0c:19:7f:22:ad:22:f4:e9:79:bb:6a:e9:ab:6b:41:
72:dd:63:2e:28:f0:5c:d8:77:4c:a4:9e:d2:67:8a:
3c:f2:50:fa:e2:d5:4c:71:df:da:d8:f8:f4:31:d6:
50:ff:49:69:bd:46:b6:cf:6a:cd:bb:2e:de:00:6c:
fd:80:77:9c:00:5e:f0:0f:78:69:73:41:af:37:f9:
51:19:e3:70:78:3b:12:72:56:15:b4:6d:9c:d5:07:
76:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:26:1E:1D:F5:F9:21:31:BF:78:B8:42:F9:85:C8:58:55:39:68:7D
X509v3 Authority Key Identifier:
keyid:92:E7:20:46:5C:5C:D0:DA:9C:6A:13:B4:4F:A0:D8:6F:64:9E:50:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kucgRlxc0NqcahO0T6DYb2SeUFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/7SYeHfX5ITG_eLhC-YXIWFU5aH0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/kucgRlxc0NqcahO0T6DYb2SeUFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.189.33.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:89:97:c3:03:1e:02:d3:ac:2a:29:85:03:ac:06:a3:21:b2:
48:5f:cc:64:90:f7:05:d7:7f:d4:98:70:c8:bb:b0:ec:91:79:
7b:bd:bd:d6:14:eb:f6:42:15:07:5b:48:d9:62:f7:7b:42:ca:
a7:33:a1:a7:b7:77:63:f3:6b:76:a0:d3:f5:94:8e:d3:1f:10:
5e:4d:8f:82:88:db:e6:a5:6b:a2:c8:e0:71:7d:d2:40:41:82:
0b:8a:51:f8:f8:fb:07:05:3c:8e:f7:f5:bd:f0:0e:d7:c5:ce:
2f:f6:d2:93:09:2b:53:0c:be:b8:91:28:3b:07:08:1a:c9:2a:
d4:8a:2d:66:18:8d:28:a3:4a:a3:ee:3c:7e:ef:2b:09:a2:e6:
3c:78:f9:62:96:b6:7a:16:6d:30:5d:df:39:d6:71:3b:50:c4:
be:e2:b5:fe:80:3e:cf:57:51:db:23:e3:b4:a2:eb:a3:e3:e1:
30:d7:12:67:24:3e:50:fd:15:e3:4a:9e:ac:fc:31:ff:60:f8:
56:0f:72:bb:9b:2c:f1:e1:f4:70:bb:e5:65:f8:5e:c9:00:b9:
a6:39:72:fb:8c:b9:c2:22:bc:a4:ea:2a:b4:74:b3:eb:e3:c3:
19:fe:be:4a:72:ac:c3:90:39:ac:b0:59:5c:bd:3e:41:95:30:
c0:cf:01:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:20 2024 by rpki-client on console-fra.rpki-client.org