Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/etz7NE-adr1dH4F7Da6M6KwnFQs.roa
File: etz7NE-adr1dH4F7Da6M6KwnFQs.roa (raw, json)
Hash identifier: CAbHADYscHPJ7LxWbeleB8J0zMEEqfQhN1QWcC1VPqc=
Subject key identifier: 7A:DC:FB:34:4F:9A:76:BD:5D:1F:81:7B:0D:AE:8C:E8:AC:27:15:0B
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 01843857364CB7671EDFFE75514D5595E6DE
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/etz7NE-adr1dH4F7Da6M6KwnFQs.roa
Signing time: Wed 02 Nov 2022 12:35:50 +0000
ROA not before: Wed 02 Nov 2022 12:35:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 134098
IP address blocks: 185.207.176.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:38:57:36:4c:b7:67:1e:df:fe:75:51:4d:55:95:e6:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Nov 2 12:35:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7adcfb344f9a76bd5d1f817b0dae8ce8ac27150b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:a2:89:d6:45:90:61:cd:84:52:ae:d0:b5:80:
fd:e9:a8:c8:2a:b2:61:8d:03:71:70:ac:3b:bf:35:
53:da:24:3f:45:44:8c:2c:db:b8:7b:f8:d8:88:4d:
fa:72:36:31:98:e9:b0:2c:ad:0c:7c:12:0c:a4:eb:
fb:1b:3e:a0:e2:4a:0e:55:8f:b9:f6:a8:78:cf:be:
2e:74:51:c1:54:da:d0:8b:95:91:07:83:39:73:aa:
6b:7f:41:e8:d3:23:34:91:19:9c:31:52:23:15:98:
1a:04:d7:e0:ec:71:e5:d0:82:ad:da:65:57:68:0b:
4a:e2:df:2c:02:75:19:15:80:2b:01:ba:a4:40:06:
c4:a5:75:14:5c:63:1f:71:0a:15:37:74:a4:22:fd:
e4:94:b2:cc:57:69:17:1e:63:a0:de:26:2f:7e:41:
8d:b1:c3:75:04:5a:bd:48:33:e2:d8:a6:d3:a5:49:
e4:85:c2:22:83:52:7d:de:b0:9f:39:99:05:06:29:
fa:4c:8b:b4:56:07:35:fd:4e:13:27:d1:71:0b:ba:
72:18:ad:12:10:94:45:e3:4d:fd:17:8c:0c:60:ca:
dd:89:00:ef:06:ae:c8:c7:e1:8b:75:6d:35:8b:97:
72:58:49:92:72:0e:7f:c8:b9:1b:ed:65:4f:af:57:
5d:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:DC:FB:34:4F:9A:76:BD:5D:1F:81:7B:0D:AE:8C:E8:AC:27:15:0B
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/etz7NE-adr1dH4F7Da6M6KwnFQs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.176.0/24
Signature Algorithm: sha256WithRSAEncryption
71:0a:27:cf:01:9d:af:82:ab:56:79:0d:1d:34:0b:fb:3c:cf:
9b:b2:a4:60:71:33:2a:db:76:50:8e:fd:9c:52:6e:9e:2d:ef:
a3:58:bd:74:1a:df:ba:eb:19:b1:52:d0:75:4a:7b:53:14:8c:
73:a0:44:4c:9a:8f:30:de:97:0c:09:2c:d7:58:85:98:1a:f0:
e7:59:66:b3:a9:7e:0b:86:8f:a9:4e:dc:48:b8:e1:b6:68:33:
f6:ab:26:8f:a2:b2:c7:77:08:5a:5f:28:d0:1c:02:ca:27:39:
c2:de:59:d4:d9:34:4d:4a:60:c6:69:3a:cd:2a:e4:b4:bf:47:
5f:e2:79:01:55:e2:a4:38:c1:a2:7a:27:62:be:92:38:40:13:
1e:aa:75:d7:05:eb:3c:ae:00:76:ae:a0:f9:65:95:93:a7:46:
53:05:80:f2:cf:2e:3f:73:91:b1:af:5b:0b:b5:c9:e8:e9:14:
c5:91:7a:39:80:91:cc:cb:58:18:44:2d:67:7b:f1:60:4f:33:
20:90:f0:f4:57:fa:b4:90:17:44:35:bc:34:4d:aa:d9:64:1b:
eb:93:a0:6d:28:70:34:35:4c:79:30:84:48:fc:83:65:eb:01:
5e:de:40:99:3b:7b:69:44:db:fe:b5:11:84:b1:a7:db:d3:6d:
2b:00:dc:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org