Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/ew-YgYXT5_SiNHeyNLrB5MZTgEQ.roa
File: ew-YgYXT5_SiNHeyNLrB5MZTgEQ.roa (raw, json)
Hash identifier: n9L5vn6ZkDE3SohSGFSLIZ6U2ibqYPR8FoQFINNDA8w=
Subject key identifier: 7B:0F:98:81:85:D3:E7:F4:A2:34:77:B2:34:BA:C1:E4:C6:53:80:44
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 043FB50A
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/ew-YgYXT5_SiNHeyNLrB5MZTgEQ.roa
Signing time: Tue 07 Jun 2022 17:17:02 +0000
ROA not before: Tue 07 Jun 2022 17:17:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 185.255.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71283978 (0x43fb50a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Jun 7 17:17:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b0f988185d3e7f4a23477b234bac1e4c6538044
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:a5:a4:62:06:f2:c4:df:e2:3e:41:ec:66:0b:
4e:c4:76:6a:92:31:02:3f:30:7e:33:2b:27:66:8e:
6d:39:6b:0c:1a:54:7c:43:7e:f4:b8:55:73:00:34:
2d:1e:ca:8e:a6:46:7d:20:06:e6:45:1c:c3:eb:79:
af:73:f3:f7:cd:f4:61:6e:f6:dc:6a:4c:43:47:1a:
da:b3:c6:a7:56:b6:a6:3e:d5:fa:2a:fc:17:b0:d9:
bd:b7:4a:77:69:54:3d:50:44:22:06:4c:1a:21:b3:
1c:a3:0f:2f:be:0e:2d:14:f1:f0:c1:88:48:a7:48:
02:6c:7e:f1:63:6e:a0:33:49:7b:ce:ec:c2:97:b4:
dc:04:da:ab:df:1c:cb:c1:14:a7:8a:41:eb:9e:93:
b6:ed:02:b3:ae:b7:63:01:f0:c1:bf:1c:13:37:e9:
ad:4d:14:d1:63:40:7b:d5:7b:d1:b0:dd:0a:8b:e5:
93:c0:6b:f9:b1:01:f8:d3:03:af:66:e8:ab:d5:30:
57:29:1c:5a:d7:80:fb:3e:cc:c0:41:97:d5:98:ae:
a3:23:de:10:ad:1b:7f:28:93:11:26:b9:12:a4:c4:
07:5b:87:ce:53:ca:30:56:9a:04:cf:25:f9:39:ea:
ba:c4:59:4f:e9:68:ba:eb:08:cc:fb:47:9d:92:8e:
c4:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:0F:98:81:85:D3:E7:F4:A2:34:77:B2:34:BA:C1:E4:C6:53:80:44
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/ew-YgYXT5_SiNHeyNLrB5MZTgEQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.6.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:ba:9e:ac:73:0a:d2:3d:36:f0:d0:8a:7c:17:56:f9:54:ee:
36:8f:df:1e:4c:92:b2:05:a7:67:21:ce:c0:ea:73:18:fa:4b:
bb:28:54:d8:54:c4:8d:a9:a2:e3:a5:f4:ea:43:63:17:98:7c:
da:1c:be:a2:64:97:60:44:06:c5:65:e1:d5:53:e2:44:2a:6d:
5f:11:92:e8:c9:69:6e:da:13:db:29:b6:97:be:bb:2c:f0:f3:
36:e0:ef:fd:1d:0f:d0:6f:25:f4:20:15:2b:d3:5b:38:a5:7c:
c2:fa:13:87:e3:6c:84:40:0b:31:6a:01:68:ea:61:d7:e0:d8:
97:9a:cb:f1:8b:ca:38:94:6d:ed:c1:62:fd:52:78:26:de:56:
6b:5c:47:46:68:3a:d7:a7:a5:f2:ab:1f:c3:26:5b:b4:68:c5:
d5:84:0b:35:43:fa:ea:68:a8:96:f3:80:23:b3:f1:80:1b:21:
61:c4:a5:4d:48:4b:8a:a2:f8:2e:d1:9f:d2:a5:39:dd:ec:3d:
89:cb:f7:4b:b9:44:24:a3:24:12:89:e2:a9:6e:11:cc:99:09:
32:f9:cb:e9:10:63:81:63:28:a3:2a:ff:b4:14:ba:1e:fc:ae:
a9:a1:bc:4b:50:26:9a:e0:f6:a2:8b:c8:de:dc:0a:36:32:81:
ec:6f:e6:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:48 2024 by rpki-client on console-ams.rpki-client.org