Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/00e33e-fd74-4583-984e-c6b84cc58610/1/1-oeq7VPk6uR-deS2Ye8AXCsitjU.roa
File: 1-oeq7VPk6uR-deS2Ye8AXCsitjU.roa (raw, json)
Hash identifier: +zc9eLcJ9qfHRbilXhCYQG1bqx29WxRcTal34tTn7K8=
Subject key identifier: FA:87:AA:ED:53:E4:EA:E4:7E:75:E4:B6:61:EF:00:5C:2B:22:B6:35
Certificate issuer: /CN=04a5ec5f52668be50b4518b687cf8bd95930ae39
Certificate serial: 184F39E8
Authority key identifier: 04:A5:EC:5F:52:66:8B:E5:0B:45:18:B6:87:CF:8B:D9:59:30:AE:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BKXsX1Jmi-ULRRi2h8-L2Vkwrjk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/00e33e-fd74-4583-984e-c6b84cc58610/1/1-oeq7VPk6uR-deS2Ye8AXCsitjU.roa
Signing time: Sat 01 Jan 2022 14:56:52 +0000
ROA not before: Sat 01 Jan 2022 14:56:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13101
IP address blocks: 185.60.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 407845352 (0x184f39e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04a5ec5f52668be50b4518b687cf8bd95930ae39
Validity
Not Before: Jan 1 14:56:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa87aaed53e4eae47e75e4b661ef005c2b22b635
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:9e:e3:76:2e:ac:32:55:57:18:02:4e:4b:bf:
65:66:ed:48:57:fe:89:0e:15:d1:a6:c9:dc:e5:ba:
62:53:b1:27:27:f6:fd:56:18:20:d6:4e:47:31:36:
70:43:d1:ad:49:ec:30:ac:43:7c:89:7a:97:1b:81:
8b:35:70:62:4a:b8:e9:bd:9d:21:45:8a:89:0b:14:
e6:31:e6:19:76:bd:6b:70:28:ab:01:5a:84:09:1d:
2b:7d:18:83:e1:b5:26:2a:06:ed:95:63:85:fc:b9:
e2:d2:f8:c1:6b:12:00:87:c2:d6:8e:25:7b:78:81:
18:58:97:ca:91:6c:93:a1:38:b4:f7:9a:a8:65:5a:
49:6b:b1:fb:df:47:4e:eb:24:c8:2e:10:5e:2c:67:
97:78:df:23:bc:22:03:fc:66:c7:3a:3d:2d:31:f6:
b3:a6:4e:25:ff:a2:11:87:8e:d4:fd:90:fc:0a:49:
0a:46:13:6a:ae:66:f3:cf:35:0e:75:f7:2b:84:66:
d4:c7:c2:5f:72:52:57:9e:df:0d:00:17:b5:63:9a:
aa:a8:ff:7a:0e:cc:e4:f2:f8:56:46:f6:fe:30:6b:
cb:b5:67:e2:71:e7:9b:b4:10:83:8f:4f:49:f2:b5:
03:d6:7a:64:4a:d1:f9:38:1f:1a:84:03:46:83:f8:
89:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:87:AA:ED:53:E4:EA:E4:7E:75:E4:B6:61:EF:00:5C:2B:22:B6:35
X509v3 Authority Key Identifier:
keyid:04:A5:EC:5F:52:66:8B:E5:0B:45:18:B6:87:CF:8B:D9:59:30:AE:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BKXsX1Jmi-ULRRi2h8-L2Vkwrjk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/00e33e-fd74-4583-984e-c6b84cc58610/1/1-oeq7VPk6uR-deS2Ye8AXCsitjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/00e33e-fd74-4583-984e-c6b84cc58610/1/BKXsX1Jmi-ULRRi2h8-L2Vkwrjk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.60.21.0/24
Signature Algorithm: sha256WithRSAEncryption
29:2c:0c:c3:cc:14:13:6a:aa:c8:47:cd:80:2c:e7:98:ef:55:
06:8a:65:6c:a3:83:ef:70:21:89:a6:b4:b9:90:e1:d7:f8:68:
2f:0f:d0:42:2c:6e:4b:f6:4d:51:d5:cb:6b:19:ed:6e:63:3e:
6f:45:d7:69:da:a0:9d:d6:0d:9e:50:fa:fc:2c:c2:e5:22:c4:
30:d8:dc:d0:bb:4e:a5:96:0e:cc:b2:98:60:47:f6:c8:3c:35:
f0:5d:e4:1e:9f:d6:7d:83:4d:8d:e8:21:4a:7f:cf:f1:d2:f0:
3b:6e:f4:22:64:f7:a9:ca:8c:06:d7:73:14:f6:09:5c:ad:54:
aa:97:8e:3d:09:72:41:6a:7c:8a:d0:13:4d:0b:59:83:8f:38:
f4:e3:00:dc:5f:4d:8a:9e:b9:0c:60:c5:e4:be:c9:31:33:d1:
3b:f5:53:99:58:68:4c:12:58:38:82:c6:a5:46:e5:59:e0:0e:
50:fe:a3:79:c4:ad:a3:2c:33:e6:6e:f6:f6:6a:ce:0f:25:6e:
04:b9:d5:49:45:f8:db:27:d2:78:3b:e9:76:6c:0f:d6:5e:e6:
9a:f7:e5:44:0a:2e:44:c3:a8:45:a7:ba:b7:41:48:95:f4:23:
e6:7f:4d:7d:22:ed:6c:55:0b:0d:d8:6a:01:7b:85:09:1e:0a:
cf:da:26:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:25 2023 by rpki-client on console-fra.rpki-client.org