Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/E7sh3xQA_QBKN-OqxKExX1-RJ94.roa
File: E7sh3xQA_QBKN-OqxKExX1-RJ94.roa (raw, json)
Hash identifier: uxUdF5lwwSTr4rkXAj9c2DzgUUSrXgDfqWf3TiyhqM8=
Subject key identifier: 13:BB:21:DF:14:00:FD:00:4A:37:E3:AA:C4:A1:31:5F:5F:91:27:DE
Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Certificate serial: 0189D6E28B0D81622567E31A27AA1E38A71D
Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/E7sh3xQA_QBKN-OqxKExX1-RJ94.roa
Signing time: Tue 08 Aug 2023 20:41:58 +0000
ROA not before: Tue 08 Aug 2023 20:41:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59891
IP address blocks: 185.73.242.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d6:e2:8b:0d:81:62:25:67:e3:1a:27:aa:1e:38:a7:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Validity
Not Before: Aug 8 20:41:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=13bb21df1400fd004a37e3aac4a1315f5f9127de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:0e:fe:44:d9:70:86:3f:4b:bf:b9:54:cb:f0:
da:4f:47:b8:31:61:4f:28:65:8c:32:24:34:0f:82:
84:36:86:e9:a9:67:1f:fb:f0:f8:c8:25:db:fb:0e:
ee:3f:2e:75:b9:36:7e:9f:eb:0b:b8:70:f6:86:0e:
91:e9:1c:80:ae:6d:6b:c3:fc:98:d9:af:44:98:a9:
4a:34:5a:a9:32:4f:16:2d:e9:04:c8:40:8c:a0:8e:
ea:de:11:de:9f:cd:c2:14:94:02:bd:af:c8:95:69:
be:86:bc:e2:a4:7c:66:fe:0a:4b:81:a1:ac:ef:85:
02:a4:6e:75:12:c3:0b:03:23:5e:79:f6:cf:1b:e0:
7a:59:e1:21:6e:60:df:4d:36:24:b9:1e:4f:26:a5:
e9:37:29:f2:1f:b9:90:1c:6d:d7:8c:10:e1:80:30:
e9:01:26:7a:6b:a3:a4:c0:e9:6f:6e:6e:09:0b:52:
45:44:66:23:8b:53:8e:bf:ac:f3:05:8a:50:a9:89:
82:19:0d:9a:fd:55:06:55:bc:87:00:66:0a:0d:3f:
0f:01:63:9a:66:a7:e9:9f:68:9e:e6:04:21:34:e4:
9a:6b:9c:08:4c:0d:55:8c:89:80:e8:88:22:6b:4c:
f8:52:81:fd:c5:df:0c:49:b0:42:2f:5f:d3:f6:0e:
d8:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:BB:21:DF:14:00:FD:00:4A:37:E3:AA:C4:A1:31:5F:5F:91:27:DE
X509v3 Authority Key Identifier:
keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/E7sh3xQA_QBKN-OqxKExX1-RJ94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.73.242.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:1b:6e:e1:0a:2f:b9:65:4e:d4:9f:26:e5:76:4e:f4:35:37:
bf:9e:75:e5:0b:a7:ae:4b:fd:df:d5:83:00:a7:8a:c4:ce:db:
2f:3f:36:68:9f:b8:09:21:f8:77:51:88:2e:da:aa:5e:71:d0:
8d:8f:60:f3:0c:e6:b8:8d:b9:ac:b4:88:55:ab:eb:2f:f9:2c:
32:95:c6:df:a2:b0:ed:7c:03:2f:a7:12:2b:0d:79:f0:b6:74:
f5:71:89:fd:dc:12:6e:61:26:46:25:4e:02:39:f1:34:38:90:
6d:eb:f1:c9:1e:bd:2f:39:fa:9b:4c:53:dc:19:59:a1:73:6a:
9d:36:5a:b9:87:72:79:13:28:1f:6c:6c:5c:05:f7:ed:9d:2a:
08:2f:dc:5f:98:f9:1a:ec:2d:73:79:6e:99:1d:b8:c7:50:da:
fa:b5:bb:71:f3:19:f7:1a:7e:8c:02:b5:a7:04:a9:e9:a5:17:
c8:69:1f:73:9b:09:29:b4:f7:0e:1c:0b:a8:3f:de:75:39:55:
a5:bc:87:3d:88:3e:c9:cc:74:59:3f:b1:38:3b:ed:cf:e8:54:
e3:35:44:17:fc:97:be:47:91:f3:5a:60:5b:b7:68:ba:41:64:
0c:9f:e7:e1:ba:0a:2d:50:95:3d:2c:ff:3d:c9:d1:14:72:e4:
e0:ff:91:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:28:17 2025 by rpki-client