Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/eNVILKsCpARybEpTb6snltJS7bY.roa
File: eNVILKsCpARybEpTb6snltJS7bY.roa (raw, json)
Hash identifier: GtDOiZhmu1YMZCQjsMvMFVv0B0fwLPJc6ZuGC2QMnVQ=
Subject key identifier: 78:D5:48:2C:AB:02:A4:04:72:6C:4A:53:6F:AB:27:96:D2:52:ED:B6
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 1A696776
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/eNVILKsCpARybEpTb6snltJS7bY.roa
Signing time: Fri 10 Jun 2022 23:06:03 +0000
ROA not before: Fri 10 Jun 2022 23:06:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 185.172.147.0/24 maxlen: 32
185.177.80.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 443115382 (0x1a696776)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jun 10 23:06:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=78d5482cab02a404726c4a536fab2796d252edb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:51:cf:d5:d6:5e:bd:9e:c7:01:39:06:44:ad:
62:05:fa:21:88:fb:13:0d:b8:03:61:2c:7b:06:99:
e9:7f:9b:58:87:bc:3a:29:ee:bc:31:c6:a9:85:4c:
51:a6:62:b2:8f:93:d7:c1:2e:81:8f:44:a8:49:62:
e9:85:26:78:22:bd:2c:0e:a4:79:a4:69:0d:66:0f:
d2:d3:3c:34:92:7c:61:4c:06:d3:60:ac:9f:7e:5e:
6b:d2:28:01:aa:73:e7:1b:c9:96:66:94:5e:67:91:
a9:43:6c:dc:5c:aa:2d:6b:d5:27:77:6f:bd:23:00:
a2:67:b6:08:18:6e:7d:99:0d:a3:9c:de:3c:03:29:
fd:62:76:5b:e2:0f:5f:1c:d3:c7:1d:be:aa:d7:3c:
41:01:e3:0f:7d:f8:e0:86:db:ce:da:b0:f1:cd:e8:
1d:98:fc:51:11:ce:8f:bf:44:ca:54:24:b1:fd:6a:
f7:4a:ff:a1:56:2e:44:72:f0:d6:9e:35:13:e1:84:
bc:23:7c:4e:14:c6:13:d6:ff:4c:31:4e:52:21:e4:
8e:ff:1a:3f:9f:b0:2f:6f:f6:e9:02:ef:46:3a:8d:
a1:61:01:11:3c:9f:b7:23:6d:b8:a1:da:58:00:fe:
e5:a6:df:04:8e:b3:3b:dc:12:c4:94:31:1b:70:3a:
e9:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:D5:48:2C:AB:02:A4:04:72:6C:4A:53:6F:AB:27:96:D2:52:ED:B6
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/eNVILKsCpARybEpTb6snltJS7bY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.147.0/24
185.177.80.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:d3:3e:78:93:cd:ee:2d:a7:09:19:e4:5c:90:bc:53:6a:97:
c5:cc:d6:87:a2:4e:ee:e2:25:6d:c0:ec:85:15:bd:1e:69:59:
36:53:ed:68:31:40:ae:94:47:d2:e2:dd:b9:00:c7:be:77:e1:
83:2a:e5:c1:90:17:b0:85:59:3a:fc:f7:e2:16:3d:30:b2:26:
a6:3f:b7:be:a9:fc:8b:ae:83:07:70:f5:78:bb:9a:ec:5e:1d:
86:9e:23:18:d9:1b:1a:b3:40:93:78:98:98:d6:36:c8:96:b0:
5d:e3:71:6f:71:71:57:7f:67:15:ea:a6:b0:50:25:09:31:fe:
73:70:0d:c4:56:37:91:7b:25:63:15:ac:6c:59:bd:33:57:f0:
5c:cd:46:5e:ea:2a:8e:70:cd:46:6e:cd:93:e4:e9:fb:86:48:
9b:94:5d:6a:1b:55:81:40:78:51:4b:58:9b:77:8f:e6:5a:97:
0f:f8:3b:e4:81:36:8f:5f:e7:75:8f:d4:3d:93:c6:0f:35:e1:
bb:16:ab:89:00:c4:20:3e:ae:89:77:e4:0b:02:7d:49:fd:01:
3d:00:94:13:cd:93:8d:3a:45:a0:97:2d:52:62:fe:86:52:ad:
b1:d7:05:1b:9b:d8:60:cb:76:a1:d7:d0:32:e6:cc:86:37:0d:
38:73:fe:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org