Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1XuMJNoIMClaPPXVgAc6xXfmcF8.roa
File: 1XuMJNoIMClaPPXVgAc6xXfmcF8.roa (raw, json)
Hash identifier: 8oQybS9SehdB3KRj7l4+oWRtFrVXW4g1Yi7VxXnYxt8=
Subject key identifier: D5:7B:8C:24:DA:08:30:29:5A:3C:F5:D5:80:07:3A:C5:77:E6:70:5F
Certificate issuer: /CN=fb751302af7b5cd6bef3717b68367e02b617d2dc
Certificate serial: 01833FB6
Authority key identifier: FB:75:13:02:AF:7B:5C:D6:BE:F3:71:7B:68:36:7E:02:B6:17:D2:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-3UTAq97XNa-83F7aDZ-ArYX0tw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1XuMJNoIMClaPPXVgAc6xXfmcF8.roa
Signing time: Sat 01 Jan 2022 11:54:51 +0000
ROA not before: Sat 01 Jan 2022 11:54:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211067
IP address blocks: 185.213.192.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25378742 (0x1833fb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb751302af7b5cd6bef3717b68367e02b617d2dc
Validity
Not Before: Jan 1 11:54:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d57b8c24da0830295a3cf5d580073ac577e6705f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:d6:db:26:eb:59:77:f8:32:f2:5b:a1:84:f0:
83:1b:e2:61:0b:98:1b:9b:2c:20:d0:3f:d5:37:fd:
f7:2d:4d:29:58:8b:96:46:f0:68:1d:59:17:91:f5:
01:75:81:fe:31:37:6a:6c:c3:71:b3:0c:7c:76:12:
5b:5b:5c:7a:9d:8c:c2:42:0d:ab:9f:55:84:4e:dc:
41:77:d9:19:1a:f9:67:be:a2:fb:44:70:aa:dc:33:
fe:02:46:c2:1e:b4:db:bb:76:2b:4f:ee:2f:9c:0d:
e5:63:aa:dc:91:0b:e1:f2:f9:ab:d7:7b:e2:66:47:
a4:aa:30:3a:b2:5b:48:72:64:a1:82:25:9b:bb:9a:
42:57:ba:f9:dd:07:88:03:1c:b2:d4:dc:98:bb:4d:
e0:d2:74:6c:93:41:69:77:25:a9:cd:7a:e5:a7:2d:
3b:b1:94:7e:dc:76:21:32:8f:f6:77:e6:7e:49:a2:
2e:a7:f7:2d:dd:56:30:d9:e4:7c:72:d6:cc:ca:09:
bb:28:e6:fc:ca:a2:24:1b:60:17:f5:5b:c5:dc:47:
72:f6:ce:96:a7:0d:24:e0:64:d9:81:aa:4f:8c:0f:
cd:28:89:4d:56:60:ff:8e:75:25:59:63:f4:53:37:
33:73:24:4c:bf:61:80:45:0a:f0:a7:7a:b9:5a:10:
b2:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:7B:8C:24:DA:08:30:29:5A:3C:F5:D5:80:07:3A:C5:77:E6:70:5F
X509v3 Authority Key Identifier:
keyid:FB:75:13:02:AF:7B:5C:D6:BE:F3:71:7B:68:36:7E:02:B6:17:D2:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-3UTAq97XNa-83F7aDZ-ArYX0tw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1XuMJNoIMClaPPXVgAc6xXfmcF8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.192.0/24
Signature Algorithm: sha256WithRSAEncryption
96:8a:43:78:1f:5d:95:0f:4b:5b:dd:f0:90:d5:22:65:a4:0b:
f7:62:c9:e0:40:44:a8:7c:d3:79:80:0e:ea:ba:1c:37:36:c5:
c1:c1:83:9b:40:3c:ac:9b:ef:93:5a:88:7f:13:42:b9:d4:7d:
3d:d3:a4:1a:3e:fd:1c:d0:a6:ef:dd:1d:ec:b0:a5:9c:83:b0:
9e:bd:f5:0c:10:67:05:4f:86:51:a1:e7:07:e8:c7:8e:fe:91:
99:be:47:e7:7b:16:b9:85:29:fe:6d:be:12:4e:36:32:e9:e4:
8b:95:9e:29:08:9e:76:ed:8d:0a:1a:2b:5b:0f:6e:fe:9a:be:
3c:07:d1:91:35:3e:ef:d0:a5:ad:de:7d:55:57:9f:35:3e:0f:
a7:6b:94:7c:fd:12:1e:7c:8c:9f:f7:b3:78:f7:39:4d:4a:25:
72:10:9d:51:64:e6:ce:c6:8b:7a:a9:3e:09:1e:13:12:b2:4e:
5d:1a:8e:a6:a4:f3:d7:cf:a2:b1:e4:d4:a0:8b:fa:b9:aa:53:
4b:12:ab:1c:c5:23:cd:c3:84:d9:ac:ef:a0:7e:d0:bb:18:4e:
48:d7:9e:d8:58:e5:e4:2d:81:1a:93:b8:6b:70:e0:28:71:bf:
2f:53:c5:20:b5:66:fc:1c:a9:b5:31:51:9d:2e:88:f5:c0:bc:
cd:a2:e1:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:36 2023 by rpki-client on console-fra.rpki-client.org