Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/095ecf-7d6a-4881-88e7-fe24ed2adcff/1/7eq3hUM8B-_1Q7awKxZYwSUB-Kg.roa
File: 7eq3hUM8B-_1Q7awKxZYwSUB-Kg.roa (raw, json)
Hash identifier: wIKHzuX9Cs8Io9CNCwf0XFlIXv2a6pYNuADPuetcd+M=
Subject key identifier: ED:EA:B7:85:43:3C:07:EF:F5:43:B6:B0:2B:16:58:C1:25:01:F8:A8
Certificate issuer: /CN=25717849a69ad8df87088da658b2305b8594c8c4
Certificate serial: 017C8CC8
Authority key identifier: 25:71:78:49:A6:9A:D8:DF:87:08:8D:A6:58:B2:30:5B:85:94:C8:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JXF4Saaa2N-HCI2mWLIwW4WUyMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/095ecf-7d6a-4881-88e7-fe24ed2adcff/1/7eq3hUM8B-_1Q7awKxZYwSUB-Kg.roa
Signing time: Sat 01 Jan 2022 13:06:43 +0000
ROA not before: Sat 01 Jan 2022 13:06:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211204
IP address blocks: 185.205.9.0/24 maxlen: 24
185.205.10.0/24 maxlen: 24
185.205.8.0/24 maxlen: 24
185.205.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24939720 (0x17c8cc8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25717849a69ad8df87088da658b2305b8594c8c4
Validity
Not Before: Jan 1 13:06:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=edeab785433c07eff543b6b02b1658c12501f8a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:91:98:76:f5:bb:52:b2:44:f4:14:26:dc:56:
66:bd:37:86:25:e4:6e:d5:0f:0d:97:e6:91:da:ff:
88:87:20:5d:09:24:ce:41:20:3f:e8:e8:a2:10:1d:
99:9c:8f:ea:13:22:74:62:58:16:a6:3f:e4:31:2b:
44:8d:02:a2:2a:40:cc:99:9a:67:4f:18:80:0c:8b:
b6:47:c2:7c:02:f0:07:9b:f3:da:f6:1b:06:f0:c7:
b0:16:b4:9b:5e:19:be:28:de:9c:3a:02:7b:2d:ef:
5b:13:7a:8e:26:83:e4:24:48:08:c6:dd:cf:d5:9f:
46:92:cd:4b:5b:8b:a6:4e:66:8d:97:10:da:05:13:
8c:21:cf:f1:fd:87:06:9d:3f:ed:4a:dd:54:3c:9b:
39:b8:3f:5e:0e:67:eb:a9:00:4b:b5:93:e6:df:00:
fa:0d:13:48:ae:e9:c7:97:29:12:02:68:25:90:f4:
e0:d4:ce:f9:21:27:26:20:42:81:61:e8:e5:41:7f:
41:49:10:41:59:98:14:a9:55:f9:2f:23:ee:ed:2f:
2a:21:3a:db:58:2e:35:38:76:92:26:78:4f:e7:4c:
57:2d:05:73:ca:ad:4b:04:7e:80:8c:64:15:4a:59:
0d:9c:b0:24:12:4c:5b:fc:ee:39:4a:0f:eb:f4:1a:
bf:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:EA:B7:85:43:3C:07:EF:F5:43:B6:B0:2B:16:58:C1:25:01:F8:A8
X509v3 Authority Key Identifier:
keyid:25:71:78:49:A6:9A:D8:DF:87:08:8D:A6:58:B2:30:5B:85:94:C8:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JXF4Saaa2N-HCI2mWLIwW4WUyMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/095ecf-7d6a-4881-88e7-fe24ed2adcff/1/7eq3hUM8B-_1Q7awKxZYwSUB-Kg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/095ecf-7d6a-4881-88e7-fe24ed2adcff/1/JXF4Saaa2N-HCI2mWLIwW4WUyMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.8.0/22
Signature Algorithm: sha256WithRSAEncryption
80:31:8d:72:ff:ca:33:65:43:b2:b2:66:eb:75:ad:03:8f:5e:
ba:6b:62:95:4c:2f:84:fb:95:e7:9d:e3:4e:01:5f:b7:58:48:
d0:14:51:f9:04:46:80:fc:ad:46:17:32:0e:bf:b7:d3:de:5d:
77:58:67:49:9a:c2:c1:c0:59:29:63:27:56:23:73:9e:12:c0:
3d:22:ce:cd:8f:97:5e:01:15:39:d8:a7:98:bf:ec:dd:bd:08:
53:d7:23:97:ce:1e:a8:24:1e:5c:5a:27:84:0e:b8:f9:e3:e5:
80:4d:c8:0e:32:67:6a:be:80:dc:92:53:94:bd:e2:a4:47:0c:
cc:69:e7:bf:32:ed:1d:b9:3b:dc:00:5d:3b:3d:51:55:e7:24:
eb:c5:52:46:38:c2:b9:9b:0e:76:2a:a6:d2:05:b6:7e:6a:57:
7f:77:9b:41:b4:88:b4:89:79:30:d7:dc:76:6c:fd:a4:24:30:
fa:74:1a:80:0c:ec:d9:59:4d:00:03:bf:bc:95:04:36:b3:14:
e7:5a:ac:8b:f4:e5:54:dd:57:ce:3a:2f:d9:8b:86:37:65:6d:
a4:9e:41:da:bf:31:d5:15:0b:80:a4:86:89:03:05:a2:0d:25:
fc:03:75:d3:1e:8a:45:09:89:9d:10:a9:4d:17:68:42:0b:87:
40:c6:ad:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:16 2024 by rpki-client on console-ams.rpki-client.org