Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/7slI96TRRM2Sml_McpZvNMTwbC8.roa
File: 7slI96TRRM2Sml_McpZvNMTwbC8.roa (raw, json)
Hash identifier: LiEMrUXFEzEd63QpzR20paqyOWkKPhQVqTJEw6eOwVs=
Subject key identifier: EE:C9:48:F7:A4:D1:44:CD:92:9A:5F:CC:72:96:6F:34:C4:F0:6C:2F
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0A73A0A1
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/7slI96TRRM2Sml_McpZvNMTwbC8.roa
Signing time: Sat 01 Jan 2022 16:07:04 +0000
ROA not before: Sat 01 Jan 2022 16:07:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34577
IP address blocks: 85.187.19.0/24 maxlen: 24
85.187.19.5/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 175349921 (0xa73a0a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 1 16:07:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eec948f7a4d144cd929a5fcc72966f34c4f06c2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ef:e4:b2:f0:03:fc:09:2b:5d:6b:bb:99:d8:
36:2a:b0:c8:66:d5:b2:17:ca:8d:e6:e1:8e:4e:6f:
f3:1a:23:39:61:46:70:10:77:3f:27:7b:b5:9b:84:
f8:5d:2d:4d:fc:da:34:d7:07:c0:56:41:29:fb:13:
cb:5a:aa:70:9f:34:d4:9c:7c:94:8c:8d:1e:59:83:
de:13:f4:03:9d:d3:ad:66:1a:90:58:47:46:f9:82:
79:de:28:c3:53:eb:3e:c2:12:7f:1f:41:73:32:0b:
37:78:66:39:41:41:65:f3:94:6e:bb:e3:b4:27:3d:
18:b1:92:5f:5a:78:d2:6b:c6:b7:8a:29:ac:b5:17:
c2:86:a3:85:7e:1f:21:e4:5e:a3:11:71:27:c0:0e:
1a:4d:cd:dd:a7:96:6e:e9:84:5a:0d:ac:df:cc:3f:
66:a6:88:96:4e:1e:d5:f4:b8:67:df:94:e2:7b:df:
0c:99:16:ae:25:7e:d6:d9:9e:53:97:77:77:16:31:
7b:15:40:4c:7b:1e:e5:84:1c:2e:8a:42:8e:18:c8:
c6:f1:9b:f5:5f:93:21:20:d3:39:31:06:40:c3:26:
7f:d6:e9:20:4d:a6:88:0d:d7:ba:98:91:11:26:f3:
b2:0f:e2:7d:0e:91:ca:6b:b7:9d:7e:86:81:9b:0f:
69:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:C9:48:F7:A4:D1:44:CD:92:9A:5F:CC:72:96:6F:34:C4:F0:6C:2F
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/7slI96TRRM2Sml_McpZvNMTwbC8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.187.19.0/24
Signature Algorithm: sha256WithRSAEncryption
36:32:10:a3:c6:3f:de:c4:02:58:54:8d:b6:fc:f0:29:90:3c:
01:3c:3a:9f:24:fb:52:a7:d1:0a:58:e3:c9:74:df:07:b3:ac:
40:ed:b9:27:43:87:34:f6:72:b8:26:a2:eb:57:4c:95:e6:e8:
98:86:6c:89:17:9f:e0:97:98:21:e6:75:7f:fa:c5:d5:3a:8f:
a2:e2:e3:4e:ac:61:cd:d5:d4:c4:88:5f:e9:e9:fd:f6:92:18:
8e:51:b4:6b:42:9a:2d:62:2c:32:d6:4b:82:a0:d9:96:f3:10:
2d:27:91:3d:16:dc:fd:79:b3:a0:42:f2:c5:ad:a0:ee:e0:59:
5e:df:35:b9:48:52:62:7a:d7:be:05:19:61:3e:5e:51:2d:a3:
51:a6:13:13:e2:e6:62:d6:3b:e3:6e:a1:aa:ea:65:3d:50:ad:
fb:21:08:2b:97:88:36:ae:de:9f:67:9c:51:3d:14:02:43:fd:
19:81:3b:69:3d:96:69:44:92:6d:30:95:85:21:aa:e1:dc:e1:
59:76:c5:2d:ad:56:87:56:e8:93:3f:a5:24:5e:3e:05:27:83:
4e:84:a5:9f:d5:23:60:d7:e2:ad:39:b4:56:ce:2c:14:66:59:
9a:80:2b:41:f0:04:7b:c7:61:cf:40:d0:12:36:2d:46:b3:25:
0a:90:8c:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:11 2024 by rpki-client on console-fra.rpki-client.org