Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/EeOxx-r4evCjocVMfHWyB6O6Nqo.roa
File: EeOxx-r4evCjocVMfHWyB6O6Nqo.roa (raw, json)
Hash identifier: MMOhpvTOl5nW/R75YdwDDq2+NbqpUfdLWRgNF5kswyI=
Subject key identifier: 11:E3:B1:C7:EA:F8:7A:F0:A3:A1:C5:4C:7C:75:B2:07:A3:BA:36:AA
Certificate issuer: /CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Certificate serial: 0A4F5989
Authority key identifier: 72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/EeOxx-r4evCjocVMfHWyB6O6Nqo.roa
Signing time: Mon 20 Jun 2022 12:25:44 +0000
ROA not before: Mon 20 Jun 2022 12:25:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 46562
IP address blocks: 92.249.29.0/24 maxlen: 24
185.253.122.0/24 maxlen: 24
104.232.36.0/24 maxlen: 24
2a0c:3ac0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 172972425 (0xa4f5989)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Validity
Not Before: Jun 20 12:25:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=11e3b1c7eaf87af0a3a1c54c7c75b207a3ba36aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:80:fa:c3:d7:63:e5:92:24:2b:0c:ea:ea:3a:
6f:bd:b8:c2:3d:0c:07:9f:15:7b:21:c6:00:89:98:
73:3a:3d:88:5b:94:a4:22:00:08:48:4d:c1:cc:eb:
33:19:4d:49:f9:7b:ad:7c:09:78:bb:be:33:70:3f:
12:b7:15:e9:7c:92:30:22:c7:41:9c:6b:97:f1:b6:
30:be:63:74:99:79:65:b9:be:73:a9:bf:24:17:47:
66:83:19:22:38:6f:8f:b6:6a:1e:49:12:05:8b:ca:
68:51:c5:92:14:0a:8a:76:ac:c8:84:1d:14:f7:80:
d3:84:c9:f6:88:cf:c7:3c:18:a2:be:d4:d7:6c:af:
6e:29:f9:b3:40:bb:3a:73:4c:55:21:7e:d5:86:ae:
13:00:fd:73:b7:25:f6:5a:e4:e2:99:9a:fc:a5:84:
13:8d:c4:dc:b6:fd:29:e3:a1:31:93:8b:01:22:3d:
b5:3a:56:34:52:08:02:08:0e:56:3c:e3:5c:21:df:
67:e9:e2:13:67:18:49:9f:41:87:81:e4:7d:29:92:
e0:83:0d:69:18:89:6c:de:9d:64:68:69:bc:70:ca:
82:51:9f:41:27:f6:c8:32:0b:66:9c:1b:e9:79:17:
c1:6b:20:d4:a9:4c:61:62:1f:77:f3:d2:13:da:52:
47:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:E3:B1:C7:EA:F8:7A:F0:A3:A1:C5:4C:7C:75:B2:07:A3:BA:36:AA
X509v3 Authority Key Identifier:
keyid:72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/EeOxx-r4evCjocVMfHWyB6O6Nqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/crePZoL8OcVbQdSPgLiDjV0tvwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.249.29.0/24
104.232.36.0/24
185.253.122.0/24
IPv6:
2a0c:3ac0::/48
Signature Algorithm: sha256WithRSAEncryption
8e:24:95:55:fa:90:ce:a5:c6:8f:a1:10:de:0a:14:f6:54:4c:
15:e6:3a:b5:dd:e7:58:46:66:ae:2d:af:24:04:d8:24:91:dd:
51:26:26:32:70:70:06:35:e0:f6:aa:86:43:06:44:ff:b2:a0:
48:96:b1:82:fb:7c:88:fc:20:59:e6:ba:07:20:fe:29:b5:1d:
88:8b:0f:ee:f3:fb:ed:a9:f5:80:b9:03:54:13:e7:69:4d:0b:
c0:75:36:4b:62:58:8c:65:66:c3:fd:e1:68:33:aa:74:e7:44:
cb:89:6c:7f:b7:c2:56:37:57:3d:ef:c1:4d:b9:51:6e:e5:f6:
ac:ea:e5:fc:84:e5:87:8e:b9:6d:27:b4:dd:9d:82:eb:79:76:
6a:91:09:da:dd:08:7d:a4:f8:6b:9f:c2:af:df:1e:41:b0:30:
3a:20:6a:56:63:ac:9e:66:1b:63:e2:e7:67:08:d6:4c:41:ce:
57:fd:27:60:f9:69:7b:ea:63:8b:50:c1:3b:b8:41:84:e6:03:
7a:4b:c3:bb:d7:76:39:29:80:16:ff:b4:2f:2e:09:8c:1d:52:
ec:36:dc:2c:6e:3b:e9:10:36:49:e5:67:3b:e1:03:35:ea:eb:
3c:55:ac:d3:4d:dd:c3:3f:c8:f9:8c:50:35:96:75:26:db:49:
79:49:0a:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:49 2023 by rpki-client on console-ams.rpki-client.org